| 08:05:17 | kornbluth.freenode.net: | topic is: This channel is not about short-term Bitcoin development | http://bitcoin.ninja/ | This channel is logged. | For logs and more information, visit http://bitcoin.ninja |
| 08:05:17 | kornbluth.freenode.net: | Users on #bitcoin-wizards: andy-logbot lclc p15 NewLiberty pgokeeffe yoleaux deepcore Crowley2k b_lumenkraft hktud0 go1111111 orik Mably coiner RoboTeddy TheSeven ThinThread koshii prodatalab_ rnvk ebfull Starduster molec Dr-G2 Luke-Jr d1ggy_ lmacken grandmaster DougieBot5000 shesek Emcy PaulCapestany ajweiss moa arubi dc17523be3 SDCDev rustyn pollux-bts HM2 napedia espes__ melvster1 melvster elevation devrandom luny JonTitor c0rw1n null x98gvyn bedeho kyletorpey |
| 08:05:17 | kornbluth.freenode.net: | Users on #bitcoin-wizards: adam3us xerox austeritysucks andytoshi amiller sl01 Transisto stevenroose LeMiner justanotheruser waxwing binaryatrocity antgreen huseby dignork Cory airbreather gavinandresen cornus_ammonis kefkius thrasher` maaku Pan0ram1x jgarzik sneak coblee nuke__ SwedFTP aakselrod EasyAt GAit larraboj spinza mkarrer gmaxwell midnightmagic lnovy Iriez nsh bosma forrestv Adlai hylyt face jonasschnelli berndj gabridome s1w dgenr8 PRab Apocalyptic |
| 08:05:17 | kornbluth.freenode.net: | Users on #bitcoin-wizards: copumpkin DoctorBTC jaekwon_ adams_ SubCreative AdrianG roasbeef jcorgan Tiraspol harrow tromp_ [d__d] kyuupichan NikolaiToryzin ahmed_ betarigs_admin Visheate phedny yorick petertodd kanzure michagogo yrashk catcow Muis cfields Zouppen coryfields_ gribble LarsLarsen cryptowest_ kinlo Logicwax crescendo wizkid057 otoburb wumpus GreenIsMyPepper phantomcircuit BlueMatt jaromil gwillen dasource fenn tromp eordano nickler Alanius BananaLotus |
| 08:05:17 | kornbluth.freenode.net: | Users on #bitcoin-wizards: guruvan ryan-c sdaftuar veorq helo Hunger- runeks null_radix epscy nanotube bliljerk101 starsoccer comboy Taek livegnik optimator fluffypony Meeh cursive dansmith_btc morcos Fistful_of_Coins dardasaba isis smooth Xzibit17 artifexd kumavis mariorz Krellan platinuum Oizopower Keefe catlasshrugged eric mappum jbenet wiz heath gnusha warren lechuga_ jessepollak Graet Eliel veox warptangent indolering K1773R TD-Linux leakypat CryptOprah Anduck |
| 08:05:17 | kornbluth.freenode.net: | Users on #bitcoin-wizards: a5m0 d9b4bef9 mr_burdell NeatBasis davout brand0 @ChanServ throughnothing btc___ azariah MRL-Relay hguux__ so BrainOverfl0w |
| 10:12:12 | veorq: | veorq has left #bitcoin-wizards |
| 14:07:46 | fluffypony: | adam3us: re: reddit, Monero splits outputs up by orders of magnitude, and throws in some additional change to obscure which outputs are change and which are going to the "payee", so not multiple transactions, just multiple outputs |
| 14:51:40 | zooko`: | zooko` is now known as zooko |
| 14:59:45 | ThinThread: | ThinThread has left #bitcoin-wizards |
| 15:12:49 | instagibbs: | andytoshi: sad to say the explicit calling out of "phoning a friend" was needed, but good to see it written down! |
| 15:14:45 | instagibbs: | "It is correspondingly vulnurable to legal pressure, attacks on “trusted” entities, and network attacks." or, say, trusted websites running homebrew versions of your consensus |
| 15:40:27 | MRL-Relay: | [tacotime] fluffypony: well, we are stopping that soon though and breaking it into multiple tx. as per MRL-0004. |
| 15:40:59 | MRL-Relay: | [tacotime] to prevent combinatorial and associative attacks against amounts sent. |
| 15:44:55 | fluffypony: | word |
| 16:51:46 | kanzure: | "Provable security in the real world" http://www.ibiblio.org/weidai/temp/Provable_Security.pdf |
| 17:00:40 | waxwing__: | waxwing__ is now known as waxwing |
| 17:08:32 | NewLiberty: | Kanzure, it cites nothing more recent than 2010. So missing some of the recent interesting things from Ben-Sasson, et al |
| 17:08:48 | stonecoldpat: | kanzure: it reads really well i like it |
| 17:41:05 | zooko: | What's the best intro to SNARKs? |
| 17:41:56 | andytoshi: | zooko: the original ben-sasson et al paper (oct 2013 on eprint.iacr.org) has a long introduction with historical context |
| 17:42:48 | andytoshi: | and explains the division between what they're doing (half is efficiently translating C programs to arithmetic circuits, half is the "real" zero-knowledge stuff) |
| 17:43:23 | andytoshi: | amiller i think knows SNARKs better than anyone here now, highlighting him.. |
| 18:06:14 | binaryatrocity: | binaryatrocity is now known as ThatOneGuy |
| 18:06:30 | ThatOneGuy: | ThatOneGuy is now known as binaryatrocity |
| 18:07:31 | kanzure: | zooko: that's funny, i've been linking to your wiki as an introduction for snarks |
| 18:40:54 | betarigs_admin: | betarigs_admin is now known as zz_betarigs_admi |
| 18:45:32 | ahmed_: | ahmed_ is now known as zz_ahmed_ |
| 18:58:54 | NewLiberty: | NewLiberty is now known as NewNew |
| 18:59:07 | NewNew: | NewNew is now known as NewNewNewNew- |
| 18:59:19 | NewNewNewNew-: | NewNewNewNew- is now known as NewLiberty |
| 19:40:29 | zz_ahmed_: | zz_ahmed_ is now known as ahmed__ |
| 19:42:55 | elevation: | elevation is now known as Guest22925 |
| 19:53:21 | Anduck: | any re-thoughts about the 'k-derived from privatekey' thing i described some time ago? |
| 19:54:23 | gmaxwell: | What you're talking about is called a "single show signature". |
| 19:55:04 | gmaxwell: | There is currently no way to enforce single-showness in Script, in bitcoin, at least as it's currently constructed. They way you'd do that for ecdsa/schnorr is just make r part of the pubkey (or be committed to by the pubkey). |
| 19:55:46 | gmaxwell: | (so others don't need to grep their logs: ) |
| 19:55:46 | gmaxwell: | 11:17 < Anduck> what if k-value were calculated from private key (each priv key has one corresponding k-value) so every transaction re-using address would reveal the private key |
| 19:56:18 | gmaxwell: | I'm dubious about the utility of single show signatures, in that they're super fragile... if your transaction gets stuck or something and you need to reissue with greater fees, you leak your private key. |
| 19:56:49 | gmaxwell: | In terms of discouraging double spending the attacker will just arrange things so that the loss of the private key is no big deal. (e.g. by ripping off lots of people at once). |
| 20:21:14 | Guest22925: | Guest22925 is now known as elevation_ |
| 20:22:58 | NewLiberty: | NewLiberty is now known as NewLiberty_afk |
| 23:39:04 | FartNozzle: | سمَـَّوُوُحخ ̷̴̐خ ̷̴̐خ ̷̴̐خ امارتيخ ̷̴̐خ |
| 23:39:04 | FartNozzle: | FartNozzle has left #bitcoin-wizards |
| 23:39:39 | fluffypony: | wut |
| 23:39:41 | zooko: | zooko has left #bitcoin-wizards |
| 23:39:58 | aakselrod: | don't know if any of the ops got it, but FartNozzle just sent me a DCC |
| 23:40:11 | aakselrod: | or tried, anyway |
| 23:40:12 | fluffypony: | yeah |
| 23:40:14 | fluffypony: | سمَـَّوُوُحخ ̷̴̐خ ̷̴̐خ ̷̴̐خ امارتيخ ̷̴̐خ |
| 23:40:33 | fluffypony: | which Google translates as: "Smoouhkh ̷̴̐kh ̷̴̐kh ̷̴̐kh Amartykh ̷̴̐kh" |
| 23:43:47 | aakselrod: | lol.. mine just said "STARTKEYLOGGER" |
| 23:44:04 | aakselrod: | oh, and then what you pasted too i guess |
| 23:45:24 | fluffypony: | fun time |
| 23:45:28 | fluffypony: | *times |
| 23:54:33 | lechuga_: | just ctcp jupe'd his ass |