1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
|
Received: from sog-mx-1.v43.ch3.sourceforge.com ([172.29.43.191]
helo=mx.sourceforge.net)
by sfs-ml-2.v29.ch3.sourceforge.com with esmtp (Exim 4.76)
(envelope-from <edmund.edgar@gmail.com>) id 1WMBAL-0000Ga-N2
for bitcoin-development@lists.sourceforge.net;
Sat, 08 Mar 2014 06:55:25 +0000
Received-SPF: pass (sog-mx-1.v43.ch3.sourceforge.com: domain of gmail.com
designates 209.85.192.177 as permitted sender)
client-ip=209.85.192.177; envelope-from=edmund.edgar@gmail.com;
helo=mail-pd0-f177.google.com;
Received: from mail-pd0-f177.google.com ([209.85.192.177])
by sog-mx-1.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128)
(Exim 4.76) id 1WMBAJ-0005Bk-WC
for bitcoin-development@lists.sourceforge.net;
Sat, 08 Mar 2014 06:55:25 +0000
Received: by mail-pd0-f177.google.com with SMTP id g10so4958206pdj.36
for <bitcoin-development@lists.sourceforge.net>;
Fri, 07 Mar 2014 22:55:18 -0800 (PST)
MIME-Version: 1.0
X-Received: by 10.68.129.201 with SMTP id ny9mr27225928pbb.70.1394261718204;
Fri, 07 Mar 2014 22:55:18 -0800 (PST)
Sender: edmund.edgar@gmail.com
Received: by 10.68.32.5 with HTTP; Fri, 7 Mar 2014 22:55:18 -0800 (PST)
Date: Sat, 8 Mar 2014 15:55:18 +0900
X-Google-Sender-Auth: u_4LKXWZhpIESb4NZ9HQm-5AJzU
Message-ID: <CA+su7OUMgeWgkMFAmmMEpW3eN=cvU47MKt51idDrmCWEiCb+VQ@mail.gmail.com>
From: Edmund Edgar <ed@realitykeys.com>
To: bitcoin-development@lists.sourceforge.net
Content-Type: multipart/alternative; boundary=047d7b10cae57005af04f412dae3
X-Spam-Score: -0.5 (/)
X-Spam-Report: Spam Filtering performed by mx.sourceforge.net.
See http://spamassassin.org/tag/ for more details.
-1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for
sender-domain
0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider
(edmund.edgar[at]gmail.com)
-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/,
no trust [209.85.192.177 listed in list.dnswl.org]
-0.0 SPF_PASS SPF: sender matches SPF record
1.0 HTML_MESSAGE BODY: HTML included in message
0.1 DKIM_SIGNED Message has a DKIM or DK signature,
not necessarily valid
-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
X-Headers-End: 1WMBAJ-0005Bk-WC
Subject: Re: [Bitcoin-development] Is this a safe thing to be doing with ECC
addition? (Oracle protocol)
X-BeenThere: bitcoin-development@lists.sourceforge.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <bitcoin-development.lists.sourceforge.net>
List-Unsubscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>,
<mailto:bitcoin-development-request@lists.sourceforge.net?subject=unsubscribe>
List-Archive: <http://sourceforge.net/mailarchive/forum.php?forum_name=bitcoin-development>
List-Post: <mailto:bitcoin-development@lists.sourceforge.net>
List-Help: <mailto:bitcoin-development-request@lists.sourceforge.net?subject=help>
List-Subscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>,
<mailto:bitcoin-development-request@lists.sourceforge.net?subject=subscribe>
X-List-Received-Date: Sat, 08 Mar 2014 06:55:25 -0000
--047d7b10cae57005af04f412dae3
Content-Type: text/plain; charset=UTF-8
On 4 March 2014 14:07, Odinn Cyberguerrilla <odinn.cyberguerrilla@riseup.net
> wrote:
> Nothing is safe.
>
This is true. To rephrase, imagine I gave you an ECC public key <ed_pub>,
you gave me back a public key <odinn_pub> of your own devising, then I paid
some money to the address resulting from add_pubkeys(<ed_pub>,<odinn_pub>)
[1]. Can anyone either:
a) Think of a way that Odinn could make an <odinn_pub> such that they could
spend the resulting money without having <ed_priv>.
b) Opine, somewhat knowledgeably, that this probably wouldn't be an easy
thing to do, and they wouldn't be alarmed to see people running software
that did this kind of thing.
[1]
https://github.com/vbuterin/pybitcointools/blob/master/pybitcointools/main.py#L173
--
Edmund Edgar
Founder, Social Minds Inc (KK)
Twitter: @edmundedgar
Linked In: edmundedgar
Skype: edmundedgar
http://www.socialminds.jp
Reality Keys
@realitykeys
ed@realitykeys.com
https://www.realitykeys.com
--047d7b10cae57005af04f412dae3
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><div class=3D"gmail_extra"><div class=3D"gmail_quote">On 4=
March 2014 14:07, Odinn Cyberguerrilla <span dir=3D"ltr"><<a href=3D"ma=
ilto:odinn.cyberguerrilla@riseup.net" target=3D"_blank">odinn.cyberguerrill=
a@riseup.net</a>></span> wrote:<br>
<blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-=
left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;p=
adding-left:1ex">Nothing is safe.<br></blockquote><div><br></div><div>This =
is true. To rephrase, imagine I gave you an ECC public key <ed_pub>, =
you gave me back a public key <odinn_pub> of your own devising, then =
I paid some money to the address resulting from add_pubkeys(<ed_pub>,=
<odinn_pub>) [1]. Can anyone either:</div>
<div><br></div><div>a) Think of a way that Odinn could make an <odinn_pu=
b> such that they could spend the resulting money without having <ed_=
priv>.</div><div>b) Opine, somewhat knowledgeably, that this probably wo=
uldn't be an easy thing to do, and they wouldn't be alarmed to see =
people running software that did this kind of thing.</div>
<div><br></div><div>[1]=C2=A0<a href=3D"https://github.com/vbuterin/pybitco=
intools/blob/master/pybitcointools/main.py#L173" target=3D"_blank">https://=
github.com/vbuterin/pybitcointools/blob/master/pybitcointools/main.py#L173<=
/a><br>
<br></div></div><div dir=3D"ltr"><div>--=C2=A0</div><div>Edmund Edgar</div>=
<div>Founder, Social Minds Inc (KK)</div><div>Twitter: @edmundedgar</div><d=
iv>Linked In: edmundedgar</div><div>Skype: edmundedgar</div><div><a href=3D=
"http://www.socialminds.jp" target=3D"_blank">http://www.socialminds.jp</a>=
</div>
<div><br></div><div>Reality Keys</div><div>@realitykeys</div><div><a href=
=3D"mailto:ed@realitykeys.com" target=3D"_blank">ed@realitykeys.com</a></di=
v><div><a href=3D"https://www.realitykeys.com" target=3D"_blank">https://ww=
w.realitykeys.com</a></div>
</div>
</div></div>
--047d7b10cae57005af04f412dae3--
|
