1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
|
Received: from sog-mx-4.v43.ch3.sourceforge.com ([172.29.43.194]
helo=mx.sourceforge.net)
by sfs-ml-4.v29.ch3.sourceforge.com with esmtp (Exim 4.76)
(envelope-from <gavinandresen@gmail.com>) id 1WFr56-00060x-AQ
for bitcoin-development@lists.sourceforge.net;
Tue, 18 Feb 2014 20:15:52 +0000
Received-SPF: pass (sog-mx-4.v43.ch3.sourceforge.com: domain of gmail.com
designates 209.85.213.49 as permitted sender)
client-ip=209.85.213.49; envelope-from=gavinandresen@gmail.com;
helo=mail-yh0-f49.google.com;
Received: from mail-yh0-f49.google.com ([209.85.213.49])
by sog-mx-4.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128)
(Exim 4.76) id 1WFr54-0001pw-QS
for bitcoin-development@lists.sourceforge.net;
Tue, 18 Feb 2014 20:15:52 +0000
Received: by mail-yh0-f49.google.com with SMTP id t59so15810237yho.22
for <bitcoin-development@lists.sourceforge.net>;
Tue, 18 Feb 2014 12:15:45 -0800 (PST)
MIME-Version: 1.0
X-Received: by 10.236.120.17 with SMTP id o17mr6014865yhh.121.1392754545293;
Tue, 18 Feb 2014 12:15:45 -0800 (PST)
Received: by 10.170.133.213 with HTTP; Tue, 18 Feb 2014 12:15:45 -0800 (PST)
In-Reply-To: <5303B110.70603@bitpay.com>
References: <le05ca$qn5$1@ger.gmane.org>
<5303B110.70603@bitpay.com>
Date: Tue, 18 Feb 2014 15:15:45 -0500
Message-ID: <CABsx9T2Sz+_OubqUpA1LsZxn5sUCN6A2M-BKjrW-sdzh9NK4fg@mail.gmail.com>
From: Gavin Andresen <gavinandresen@gmail.com>
To: "Ryan X. Charles" <ryan@bitpay.com>
Content-Type: multipart/alternative; boundary=20cf3010e96bee7e2404f2b3ef1a
X-Spam-Score: -0.6 (/)
X-Spam-Report: Spam Filtering performed by mx.sourceforge.net.
See http://spamassassin.org/tag/ for more details.
-1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for
sender-domain
0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider
(gavinandresen[at]gmail.com)
-0.0 SPF_PASS SPF: sender matches SPF record
1.0 HTML_MESSAGE BODY: HTML included in message
-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from
author's domain
0.1 DKIM_SIGNED Message has a DKIM or DK signature,
not necessarily valid
-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
X-Headers-End: 1WFr54-0001pw-QS
Cc: Bitcoin Dev <bitcoin-development@lists.sourceforge.net>
Subject: Re: [Bitcoin-development] BIP70 proposed changes
X-BeenThere: bitcoin-development@lists.sourceforge.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <bitcoin-development.lists.sourceforge.net>
List-Unsubscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>,
<mailto:bitcoin-development-request@lists.sourceforge.net?subject=unsubscribe>
List-Archive: <http://sourceforge.net/mailarchive/forum.php?forum_name=bitcoin-development>
List-Post: <mailto:bitcoin-development@lists.sourceforge.net>
List-Help: <mailto:bitcoin-development-request@lists.sourceforge.net?subject=help>
List-Subscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>,
<mailto:bitcoin-development-request@lists.sourceforge.net?subject=subscribe>
X-List-Received-Date: Tue, 18 Feb 2014 20:15:52 -0000
--20cf3010e96bee7e2404f2b3ef1a
Content-Type: text/plain; charset=ISO-8859-1
Fantastic feedback, thanks Ryan and Andreas!
Please don't let me being busy get in the way of progress, so submit pull
requests to the BIP (the UTC timezone issue seems obvious and
non-controversial) or write up draft specs for extensions.
RE: wallets checking the status of payment: excellent idea. A URL that can
be polled to check payment processing status sounds like the right thing to
do.
That feels very similar to the proposal for recurring payments; I think
they would be separate mechanisms, but maybe their specs could share some
of the same concepts / field names....
On Tue, Feb 18, 2014 at 2:14 PM, Ryan X. Charles <ryan@bitpay.com> wrote:
> Here are my complementary thoughts after working on the payment protocol
> on the merchant side at BitPay.
>
> The most important missing piece of the payment protocol is that is has
> no concept of the status of a payment after it has been made. What if
> the payment is too little? Too much? What if it is never confirmed? What
> if it is confirmed, but very late? These are regular occurrences at
> BitPay (although hopefully they will be a lot fewer after the payment
> protocol is widely adopted).
>
> One way to handle this would be to add another type of message, say with
> content-type bitcoin-paymentstatus, that can return the merchant's view
> of the status of the transaction(s). Are the transactions under or
> overpaid? Are they confirmed? How many confirmations? Is the payment
> "accepted" even if the transactions aren't confirmed?
>
> I think it would be great if wallets could check the status of a
> payment, and if anything goes wrong, request a refund, all within the
> payment protocol.
>
> The payment protocol is also the perfect opportunity to implement merge
> avoidance to increase customer and merchant privacy. The merchant can
> simply deliver multiple outputs in the payment details, say 10 or so,
> and the customer can spend multiple outputs to those outputs in separate
> transactions. It would be great if BitPay could work with wallet authors
> to make merge avoidance a reality in the near-term.
>
> Merge avoidance would increase the need to have a bitcoin-paymentstatus
> message since it's possible that some, but not all, of the transactions
> would confirm, and so knowing the status of payment would be a complex
> question that should be handled automatically by the software.
>
> On an unrelated note, X.509 is a terrible standard that should be
> abandoned as quickly as possible. BitPay is working on a new standard
> based on bitcoin-like addresses for authentication. It would be great if
> we could work with the community to establish a complete, decentralized
> authentication protocol. The sooner we can evolve beyond X.509 the better.
>
> One more thing. The new bitcoin URI in BIP 72 is extremely long and
> makes for very dense QR codes. BitPay has proposed a new standard, BIP
> 73, for shorter URIs and less dense QR codes. We hope wallet authors
> will implement this better standard.
>
> My response to Andreas' thoughts:
>
> On 2/18/14, 12:31 PM, Andreas Schildbach wrote:
> > I'm starting a thread on proposed changes on BIP70 based on my
> > experience in implementing the payment protocol in Bitcoin Wallet:
> >
> > - certificate chain in pki_data: I think it should be required that is
> > most contain the first certificate PLUS all intermediate certificates
> > (if any), but NOT the root certificate. Reason: We want to be able to
> > verify offline.
>
> So long as the root certificate remains an optional addition, this seems
> like a good idea. My experience with tls in node is that it is required
> for the root certificate to be present, so we don't want to require that
> the root certificate be absent, since that would make it painful to make
> code that is interoperable between the two. IIRC setting
> rejectUnauthorized=true will reject connections that do not deliver the
> root certificate, so allowing the root certificate to be present would
> be compatible with this and presumably other tls code.
>
> Would be great if someone with more experience with tls weighed in on
> whether the root certificate can/should be present.
>
> >
> > - definition of timezone: Its not clear if times (e.g. expires) are in
> > UTC or local. I suggest to require UTC. If if we can't agree on this,
> > there should be a sentence about timezones in the spec.
>
> The world needs to abandon timezones altogether for everything and only
> use UTC. So, agreed. Require UTC.
>
> >
> > (probably more to be added...)
> >
> >
> >
> ------------------------------------------------------------------------------
> > Managing the Performance of Cloud-Based Applications
> > Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
> > Read the Whitepaper.
> >
> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk
> > _______________________________________________
> > Bitcoin-development mailing list
> > Bitcoin-development@lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/bitcoin-development
> >
>
> --
> Ryan X. Charles
> Software Engineer, BitPay
>
>
> ------------------------------------------------------------------------------
> Managing the Performance of Cloud-Based Applications
> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
> Read the Whitepaper.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk
> _______________________________________________
> Bitcoin-development mailing list
> Bitcoin-development@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
>
>
--
--
Gavin Andresen
--20cf3010e96bee7e2404f2b3ef1a
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr">Fantastic feedback, thanks Ryan and Andreas!<div><br></div=
><div>Please don't let me being busy get in the way of progress, so sub=
mit pull requests to the BIP (the UTC timezone issue seems obvious and non-=
controversial) or write up draft specs for extensions.</div>
<div><br></div><div>RE: wallets checking the status of payment: =A0excellen=
t idea. A URL that can be polled to check payment processing status sounds =
like the right thing to do.</div><div><br></div><div>That feels very simila=
r to the proposal for recurring payments; I think they would be separate me=
chanisms, but maybe their specs could share some of the same concepts / fie=
ld names....</div>
</div><div class=3D"gmail_extra"><br><br><div class=3D"gmail_quote">On Tue,=
Feb 18, 2014 at 2:14 PM, Ryan X. Charles <span dir=3D"ltr"><<a href=3D"=
mailto:ryan@bitpay.com" target=3D"_blank">ryan@bitpay.com</a>></span> wr=
ote:<br>
<blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p=
x #ccc solid;padding-left:1ex">Here are my complementary thoughts after wor=
king on the payment protocol<br>
on the merchant side at BitPay.<br>
<br>
The most important missing piece of the payment protocol is that is has<br>
no concept of the status of a payment after it has been made. What if<br>
the payment is too little? Too much? What if it is never confirmed? What<br=
>
if it is confirmed, but very late? These are regular occurrences at<br>
BitPay (although hopefully they will be a lot fewer after the payment<br>
protocol is widely adopted).<br>
<br>
One way to handle this would be to add another type of message, say with<br=
>
content-type bitcoin-paymentstatus, that can return the merchant's view=
<br>
of the status of the transaction(s). Are the transactions under or<br>
overpaid? Are they confirmed? How many confirmations? Is the payment<br>
"accepted" even if the transactions aren't confirmed?<br>
<br>
I think it would be great if wallets could check the status of a<br>
payment, and if anything goes wrong, request a refund, all within the<br>
payment protocol.<br>
<br>
The payment protocol is also the perfect opportunity to implement merge<br>
avoidance to increase customer and merchant privacy. The merchant can<br>
simply deliver multiple outputs in the payment details, say 10 or so,<br>
and the customer can spend multiple outputs to those outputs in separate<br=
>
transactions. It would be great if BitPay could work with wallet authors<br=
>
to make merge avoidance a reality in the near-term.<br>
<br>
Merge avoidance would increase the need to have a bitcoin-paymentstatus<br>
message since it's possible that some, but not all, of the transactions=
<br>
would confirm, and so knowing the status of payment would be a complex<br>
question that should be handled automatically by the software.<br>
<br>
On an unrelated note, X.509 is a terrible standard that should be<br>
abandoned as quickly as possible. BitPay is working on a new standard<br>
based on bitcoin-like addresses for authentication. It would be great if<br=
>
we could work with the community to establish a complete, decentralized<br>
authentication protocol. The sooner we can evolve beyond X.509 the better.<=
br>
<br>
One more thing. The new bitcoin URI in BIP 72 is extremely long and<br>
makes for very dense QR codes. BitPay has proposed a new standard, BIP<br>
73, for shorter URIs and less dense QR codes. We hope wallet authors<br>
will implement this better standard.<br>
<br>
My response to Andreas' thoughts:<br>
<div class=3D""><br>
On 2/18/14, 12:31 PM, Andreas Schildbach wrote:<br>
> I'm starting a thread on proposed changes on BIP70 based on my<br>
> experience in implementing the payment protocol in Bitcoin Wallet:<br>
><br>
> - certificate chain in pki_data: I think it should be required that is=
<br>
> most contain the first certificate PLUS all intermediate certificates<=
br>
> (if any), but NOT the root certificate. Reason: We want to be able to<=
br>
> verify offline.<br>
<br>
</div>So long as the root certificate remains an optional addition, this se=
ems<br>
like a good idea. My experience with tls in node is that it is required<br>
for the root certificate to be present, so we don't want to require tha=
t<br>
the root certificate be absent, since that would make it painful to make<br=
>
code that is interoperable between the two. IIRC setting<br>
rejectUnauthorized=3Dtrue will reject connections that do not deliver the<b=
r>
root certificate, so allowing the root certificate to be present would<br>
be compatible with this and presumably other tls code.<br>
<br>
Would be great if someone with more experience with tls weighed in on<br>
whether the root certificate can/should be present.<br>
<div class=3D""><br>
><br>
> - definition of timezone: Its not clear if times (e.g. expires) are in=
<br>
> UTC or local. I suggest to require UTC. If if we can't agree on th=
is,<br>
> there should be a sentence about timezones in the spec.<br>
<br>
</div>The world needs to abandon timezones altogether for everything and on=
ly<br>
use UTC. So, agreed. Require UTC.<br>
<div class=3D"HOEnZb"><div class=3D"h5"><br>
><br>
> (probably more to be added...)<br>
><br>
><br>
> ----------------------------------------------------------------------=
--------<br>
> Managing the Performance of Cloud-Based Applications<br>
> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.=
<br>
> Read the Whitepaper.<br>
> <a href=3D"http://pubads.g.doubleclick.net/gampad/clk?id=3D121054471&a=
mp;iu=3D/4140/ostg.clktrk" target=3D"_blank">http://pubads.g.doubleclick.ne=
t/gampad/clk?id=3D121054471&iu=3D/4140/ostg.clktrk</a><br>
> _______________________________________________<br>
> Bitcoin-development mailing list<br>
> <a href=3D"mailto:Bitcoin-development@lists.sourceforge.net">Bitcoin-d=
evelopment@lists.sourceforge.net</a><br>
> <a href=3D"https://lists.sourceforge.net/lists/listinfo/bitcoin-develo=
pment" target=3D"_blank">https://lists.sourceforge.net/lists/listinfo/bitco=
in-development</a><br>
><br>
<br>
</div></div><span class=3D"HOEnZb"><font color=3D"#888888">--<br>
Ryan X. Charles<br>
Software Engineer, BitPay<br>
</font></span><br>---------------------------------------------------------=
---------------------<br>
Managing the Performance of Cloud-Based Applications<br>
Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.<br>
Read the Whitepaper.<br>
<a href=3D"http://pubads.g.doubleclick.net/gampad/clk?id=3D121054471&iu=
=3D/4140/ostg.clktrk" target=3D"_blank">http://pubads.g.doubleclick.net/gam=
pad/clk?id=3D121054471&iu=3D/4140/ostg.clktrk</a><br>__________________=
_____________________________<br>
Bitcoin-development mailing list<br>
<a href=3D"mailto:Bitcoin-development@lists.sourceforge.net">Bitcoin-develo=
pment@lists.sourceforge.net</a><br>
<a href=3D"https://lists.sourceforge.net/lists/listinfo/bitcoin-development=
" target=3D"_blank">https://lists.sourceforge.net/lists/listinfo/bitcoin-de=
velopment</a><br>
<br></blockquote></div><br><br clear=3D"all"><div><br></div>-- <br>--<br>Ga=
vin Andresen<br>
</div>
--20cf3010e96bee7e2404f2b3ef1a--
|
