From nicolas.dorier at gmail.com Fri Nov 27 07:37:04 2015 From: nicolas.dorier at gmail.com (Nicolas Dorier) Date: Fri, 27 Nov 2015 16:37:04 +0900 Subject: [Lightning-dev] Payment channel without timeout protected from malleability Message-ID: <CA+1nnrkdW7GX4QokdnL4z7UDPGnHQEXaNsse6cdFOZc3-5va6A@mail.gmail.com> By adapting an idea from gmaxwell ( https://bitcointalk.org/index.php?topic=303088.0) it is possible to open a channel without suffering from malleability attack. The process for A to open channel with B is the following: * A asks B pubkey * A create the first commitment transaction * A extract the hash that B needs to sign to be able to broadcast the commitment * A asks B to sign the hash, but do not disclose the commitment * A broadcast the anchor * After confirmation, A announce the anchor to B. B can't identify A's anchor before announcement because he does not know the P2SH of the multisig. Am I missing something ? -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.linuxfoundation.org/pipermail/lightning-dev/attachments/20151127/f2d6361b/attachment.html>