📅 Original date posted:2014-03-08 📝 Original message:On 8 March 2014 17:10, ...

Edmund Edgar [ARCHIVE] /

npub1ass…u5p3

2023-06-07 15:14:38

in reply to nevent1q…qx4t

📅 Original date posted:2014-03-08
📝 Original message:On 8 March 2014 17:10, Alan Reiner <etotheipi at gmail.com> wrote:

> I create a new keypair, <c_pub> with <c_priv> which I know (it can be any
> arbitrary key pair). But I don't give you <c_pub>, I give you <b_pub> =
> <c_pub> minus <a_pub> (which I can do because I've seen <a_pub> before
> doing this).
>
> Sure, I don't know the private key for <b_pub>, but it doesn't matter...
> because what
>
> <b_pub> + <a_pub> = <c_pub> (mine)
>
> You have no way to detect this condition, because you don't know what
> c_pub/c_priv I created, so you can only detect this after it's too late
> (after I abuse the private key)
>

Thanks Alan and Forrest, that makes sense. So to salvage the situation in
the original case, we have to make sure the parties exchange their public
keys first, before they're allowed to see the public keys they'll be
combining them with.

--
--
Edmund Edgar
Founder, Social Minds Inc (KK)
Twitter: @edmundedgar
Linked In: edmundedgar
Skype: edmundedgar
http://www.socialminds.jp

Reality Keys
@realitykeys
ed at realitykeys.com
https://www.realitykeys.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20140308/ef8e3571/attachment.html>;

Author Public Key

npub1assqju94qjdpunps2yck2vtzfhnme5pclv0aantfajkjs5w2057quzu5p3

Seen on

wss://relay.noswhere.com wss://relay.nostr.band

Show more details

Published at

2023-06-07 15:14:38

Kind type

1 Short Text Note

Event JSON

{ "id": "af21335c6f1538c62811809d1b75ea617356ef99df2d0d9e9a3f01dcaf506291", "pubkey": "ec200970b5049a1e4c3051316531624de7bcd038fb1fdecd69ecad2851ca7d3c", "created_at": 1686150878, "kind": 1, "tags": [ [ "e", "a6dc4c63eb9cc184811ab757ec03e54259d685e9ca9a0fa081c9c1805eb862b9", "", "root" ], [ "e", "ae0eee785e73fa099a6f5649cd99f035ee351a10124fe3070e342f15c44bbcbe", "", "reply" ], [ "p", "86f42bcb76a431c128b596c36714ae73a42cae48706a9e5513d716043447f5ec" ] ], "content": "📅 Original date posted:2014-03-08\n📝 Original message:On 8 March 2014 17:10, Alan Reiner \u003cetotheipi at gmail.com\u003e wrote:\n\n\n\u003e I create a new keypair, \u003cc_pub\u003e with \u003cc_priv\u003e which I know (it can be any\n\u003e arbitrary key pair). But I don't give you \u003cc_pub\u003e, I give you \u003cb_pub\u003e =\n\u003e \u003cc_pub\u003e minus \u003ca_pub\u003e (which I can do because I've seen \u003ca_pub\u003e before\n\u003e doing this).\n\u003e\n\u003e Sure, I don't know the private key for \u003cb_pub\u003e, but it doesn't matter...\n\u003e because what\n\u003e\n\u003e \u003cb_pub\u003e + \u003ca_pub\u003e = \u003cc_pub\u003e (mine)\n\u003e\n\u003e You have no way to detect this condition, because you don't know what\n\u003e c_pub/c_priv I created, so you can only detect this after it's too late\n\u003e (after I abuse the private key)\n\u003e\n\nThanks Alan and Forrest, that makes sense. So to salvage the situation in\nthe original case, we have to make sure the parties exchange their public\nkeys first, before they're allowed to see the public keys they'll be\ncombining them with.\n\n-- \n-- \nEdmund Edgar\nFounder, Social Minds Inc (KK)\nTwitter: @edmundedgar\nLinked In: edmundedgar\nSkype: edmundedgar\nhttp://www.socialminds.jp\n\nReality Keys\n@realitykeys\ned at realitykeys.com\nhttps://www.realitykeys.com\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20140308/ef8e3571/attachment.html\u003e", "sig": "fa6236bc6beec895fa79d0c8846dba37c5a07c158a7a87715978e533295fcd0f748a1de137818b005c57fc86c18aa8ad05d0e7e1978d17cc0556126e1401cc97" }