08:05:17kornbluth.freenode.net:topic is: This channel is not about short-term Bitcoin development | http://bitcoin.ninja/ | This channel is logged. | For logs and more information, visit http://bitcoin.ninja
08:05:17kornbluth.freenode.net:Users on #bitcoin-wizards: andy-logbot lclc p15 NewLiberty pgokeeffe yoleaux deepcore Crowley2k b_lumenkraft hktud0 go1111111 orik Mably coiner RoboTeddy TheSeven ThinThread koshii prodatalab_ rnvk ebfull Starduster molec Dr-G2 Luke-Jr d1ggy_ lmacken grandmaster DougieBot5000 shesek Emcy PaulCapestany ajweiss moa arubi dc17523be3 SDCDev rustyn pollux-bts HM2 napedia espes__ melvster1 melvster elevation devrandom luny JonTitor c0rw1n null x98gvyn bedeho kyletorpey
08:05:17kornbluth.freenode.net:Users on #bitcoin-wizards: adam3us xerox austeritysucks andytoshi amiller sl01 Transisto stevenroose LeMiner justanotheruser waxwing binaryatrocity antgreen huseby dignork Cory airbreather gavinandresen cornus_ammonis kefkius thrasher` maaku Pan0ram1x jgarzik sneak coblee nuke__ SwedFTP aakselrod EasyAt GAit larraboj spinza mkarrer gmaxwell midnightmagic lnovy Iriez nsh bosma forrestv Adlai hylyt face jonasschnelli berndj gabridome s1w dgenr8 PRab Apocalyptic
08:05:17kornbluth.freenode.net:Users on #bitcoin-wizards: copumpkin DoctorBTC jaekwon_ adams_ SubCreative AdrianG roasbeef jcorgan Tiraspol harrow tromp_ [d__d] kyuupichan NikolaiToryzin ahmed_ betarigs_admin Visheate phedny yorick petertodd kanzure michagogo yrashk catcow Muis cfields Zouppen coryfields_ gribble LarsLarsen cryptowest_ kinlo Logicwax crescendo wizkid057 otoburb wumpus GreenIsMyPepper phantomcircuit BlueMatt jaromil gwillen dasource fenn tromp eordano nickler Alanius BananaLotus
08:05:17kornbluth.freenode.net:Users on #bitcoin-wizards: guruvan ryan-c sdaftuar veorq helo Hunger- runeks null_radix epscy nanotube bliljerk101 starsoccer comboy Taek livegnik optimator fluffypony Meeh cursive dansmith_btc morcos Fistful_of_Coins dardasaba isis smooth Xzibit17 artifexd kumavis mariorz Krellan platinuum Oizopower Keefe catlasshrugged eric mappum jbenet wiz heath gnusha warren lechuga_ jessepollak Graet Eliel veox warptangent indolering K1773R TD-Linux leakypat CryptOprah Anduck
08:05:17kornbluth.freenode.net:Users on #bitcoin-wizards: a5m0 d9b4bef9 mr_burdell NeatBasis davout brand0 @ChanServ throughnothing btc___ azariah MRL-Relay hguux__ so BrainOverfl0w
10:12:12veorq:veorq has left #bitcoin-wizards
14:07:46fluffypony:adam3us: re: reddit, Monero splits outputs up by orders of magnitude, and throws in some additional change to obscure which outputs are change and which are going to the "payee", so not multiple transactions, just multiple outputs
14:51:40zooko`:zooko` is now known as zooko
14:59:45ThinThread:ThinThread has left #bitcoin-wizards
15:12:49instagibbs:andytoshi: sad to say the explicit calling out of "phoning a friend" was needed, but good to see it written down!
15:14:45instagibbs:"It is correspondingly vulnurable to legal pressure, attacks on “trusted” entities, and network attacks." or, say, trusted websites running homebrew versions of your consensus
15:40:27MRL-Relay:[tacotime] fluffypony: well, we are stopping that soon though and breaking it into multiple tx. as per MRL-0004.
15:40:59MRL-Relay:[tacotime] to prevent combinatorial and associative attacks against amounts sent.
16:51:46kanzure:"Provable security in the real world" http://www.ibiblio.org/weidai/temp/Provable_Security.pdf
17:00:40waxwing__:waxwing__ is now known as waxwing
17:08:32NewLiberty:Kanzure, it cites nothing more recent than 2010. So missing some of the recent interesting things from Ben-Sasson, et al
17:08:48stonecoldpat:kanzure: it reads really well i like it
17:41:05zooko:What's the best intro to SNARKs?
17:41:56andytoshi:zooko: the original ben-sasson et al paper (oct 2013 on eprint.iacr.org) has a long introduction with historical context
17:42:48andytoshi:and explains the division between what they're doing (half is efficiently translating C programs to arithmetic circuits, half is the "real" zero-knowledge stuff)
17:43:23andytoshi:amiller i think knows SNARKs better than anyone here now, highlighting him..
18:06:14binaryatrocity:binaryatrocity is now known as ThatOneGuy
18:06:30ThatOneGuy:ThatOneGuy is now known as binaryatrocity
18:07:31kanzure:zooko: that's funny, i've been linking to your wiki as an introduction for snarks
18:40:54betarigs_admin:betarigs_admin is now known as zz_betarigs_admi
18:45:32ahmed_:ahmed_ is now known as zz_ahmed_
18:58:54NewLiberty:NewLiberty is now known as NewNew
18:59:07NewNew:NewNew is now known as NewNewNewNew-
18:59:19NewNewNewNew-:NewNewNewNew- is now known as NewLiberty
19:40:29zz_ahmed_:zz_ahmed_ is now known as ahmed__
19:42:55elevation:elevation is now known as Guest22925
19:53:21Anduck:any re-thoughts about the 'k-derived from privatekey' thing i described some time ago?
19:54:23gmaxwell:What you're talking about is called a "single show signature".
19:55:04gmaxwell:There is currently no way to enforce single-showness in Script, in bitcoin, at least as it's currently constructed. They way you'd do that for ecdsa/schnorr is just make r part of the pubkey (or be committed to by the pubkey).
19:55:46gmaxwell:(so others don't need to grep their logs: )
19:55:46gmaxwell:11:17 < Anduck> what if k-value were calculated from private key (each priv key has one corresponding k-value) so every transaction re-using address would reveal the private key
19:56:18gmaxwell:I'm dubious about the utility of single show signatures, in that they're super fragile... if your transaction gets stuck or something and you need to reissue with greater fees, you leak your private key.
19:56:49gmaxwell:In terms of discouraging double spending the attacker will just arrange things so that the loss of the private key is no big deal. (e.g. by ripping off lots of people at once).
20:21:14Guest22925:Guest22925 is now known as elevation_
20:22:58NewLiberty:NewLiberty is now known as NewLiberty_afk
23:39:04FartNozzle:سمَـَّوُوُحخ ̷̴̐خ ̷̴̐خ ̷̴̐خ امارتيخ ̷̴̐خ
23:39:04FartNozzle:FartNozzle has left #bitcoin-wizards
23:39:41zooko:zooko has left #bitcoin-wizards
23:39:58aakselrod:don't know if any of the ops got it, but FartNozzle just sent me a DCC
23:40:11aakselrod:or tried, anyway
23:40:14fluffypony:سمَـَّوُوُحخ ̷̴̐خ ̷̴̐خ ̷̴̐خ امارتيخ ̷̴̐خ
23:40:33fluffypony:which Google translates as: "Smoouhkh ̷̴̐kh ̷̴̐kh ̷̴̐kh Amartykh ̷̴̐kh"
23:43:47aakselrod:lol.. mine just said "STARTKEYLOGGER"
23:44:04aakselrod:oh, and then what you pasted too i guess
23:45:24fluffypony:fun time
23:54:33lechuga_:just ctcp jupe'd his ass