📅 Original date posted:2023-08-04 🗒️ Summary of this message: Wallet ...

Samson Mow [ARCHIVE] /

npub1kak…ucdz

2023-08-06 23:37:35

in reply to nevent1q…en9a

📅 Original date posted:2023-08-04
🗒️ Summary of this message: Wallet addresses generated from compromised or lost wallets can result in lost funds. Silent Payment addresses should have an expiration date, such as 180 years, to prevent this.
📝 Original message:
Why the 180 year limit? imho should plan for longer.

On Fri, Aug 4, 2023 at 10:41 AM Peter Todd via bitcoin-dev <
bitcoin-dev at lists.linuxfoundation.org> wrote:

> tl;dr: Wallets don't last forever. They are often compromised or lost. When
> this happens, the addresses generated from those wallets become a form of
> toxic
> data: funds sent to those addresses can be easily lost forever.
>
> All Bitcoin addresses have this problem. But at least existing Bitcoin
> addresses aren't supposed to be reused. Silent Payments are: the whole
> point is
> to have a single address that you can safely pay to multiple times, without
> privacy concerns. Failing to make Silent Payment addresses eventually
> expire in
> a reasonable amount of time is thus a particularly harmful mistake.
>
> Fixing this is easy: add a 3 byte field to silent payments addresses,
> encoding
> the expiration date in terms of days after some epoch. 2^24 days is 45,000
> years, more than enough. Indeed, 2 bytes is probably fine too: 2^16 days
> is 180
> years. We'll be lucky if Bitcoin still exists in 180 years.
>
> Wallets should pick a reasonable default, eg 1 year, for newly created
> addresses. Attempts to pay an expired address should just fail with a
> simple
> "address expired". Lightning invoices are a good example here: while
> invoices
> does not require expiration from a technical point of view, they do expire
> for
> similar UX reasons as applies to silent payments.
>
> --
> https://petertodd.org 'peter'[:-1]@petertodd.org
> _______________________________________________
> bitcoin-dev mailing list
> bitcoin-dev at lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20230804/fc013648/attachment-0001.html>;

Author Public Key

npub1kak8yfezzae4wds05nj6kr0k43hv6c524tqx8qggafnqak5r2hqqyeucdz

Seen on

wss://relay.nostr.band

Show more details

Published at

2023-08-06 23:37:35

Kind type

1 Short Text Note

Event JSON

{ "id": "38ceba829486b64cce86e3444a1b7f999c751727fbf8ef97cbc815483f58f4fe", "pubkey": "b76c722722177357360fa4e5ab0df6ac6ecd628aaac0638108ea660eda8355c0", "created_at": 1691365055, "kind": 1, "tags": [ [ "e", "c08d8bfe5e8ab2894e9fbdb020ab2bbb281ca98857e700a8e90822dc365f2c84", "", "root" ], [ "e", "a025f82dbc979ec0b7efdbd8c8fd991a239b8cf8bf558d6eb31c8d70e8f75357", "", "reply" ], [ "p", "daa2fc676a25e3b5b45644540bcbd1e1168b111427cd0e3cf19c56194fb231aa" ] ], "content": "📅 Original date posted:2023-08-04\n🗒️ Summary of this message: Wallet addresses generated from compromised or lost wallets can result in lost funds. Silent Payment addresses should have an expiration date, such as 180 years, to prevent this.\n📝 Original message:\nWhy the 180 year limit? imho should plan for longer.\n\nOn Fri, Aug 4, 2023 at 10:41 AM Peter Todd via bitcoin-dev \u003c\nbitcoin-dev at lists.linuxfoundation.org\u003e wrote:\n\n\u003e tl;dr: Wallets don't last forever. They are often compromised or lost. When\n\u003e this happens, the addresses generated from those wallets become a form of\n\u003e toxic\n\u003e data: funds sent to those addresses can be easily lost forever.\n\u003e\n\u003e All Bitcoin addresses have this problem. But at least existing Bitcoin\n\u003e addresses aren't supposed to be reused. Silent Payments are: the whole\n\u003e point is\n\u003e to have a single address that you can safely pay to multiple times, without\n\u003e privacy concerns. Failing to make Silent Payment addresses eventually\n\u003e expire in\n\u003e a reasonable amount of time is thus a particularly harmful mistake.\n\u003e\n\u003e Fixing this is easy: add a 3 byte field to silent payments addresses,\n\u003e encoding\n\u003e the expiration date in terms of days after some epoch. 2^24 days is 45,000\n\u003e years, more than enough. Indeed, 2 bytes is probably fine too: 2^16 days\n\u003e is 180\n\u003e years. We'll be lucky if Bitcoin still exists in 180 years.\n\u003e\n\u003e Wallets should pick a reasonable default, eg 1 year, for newly created\n\u003e addresses. Attempts to pay an expired address should just fail with a\n\u003e simple\n\u003e \"address expired\". Lightning invoices are a good example here: while\n\u003e invoices\n\u003e does not require expiration from a technical point of view, they do expire\n\u003e for\n\u003e similar UX reasons as applies to silent payments.\n\u003e\n\u003e --\n\u003e https://petertodd.org 'peter'[:-1]@petertodd.org\n\u003e _______________________________________________\n\u003e bitcoin-dev mailing list\n\u003e bitcoin-dev at lists.linuxfoundation.org\n\u003e https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev\n\u003e\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20230804/fc013648/attachment-0001.html\u003e", "sig": "af2fc06565306c6af740cae2dcb34a36994c6d0842427aa9ef70ef9c1ebc492450e0529697db6df00d5aecdb0f969d79eeffdc59c9f3a9e88a36bf832f24e97f" }