Greg Sanders [ARCHIVE] on Nostr: 📅 Original date posted:2018-05-08 📝 Original message: >From what I understand ...
📅 Original date posted:2018-05-08
📝 Original message:
>From what I understand talking to folks, the linear properties of these
signature tricks are maintained under a number of post-quantum schemes.
On Tue, May 8, 2018 at 8:44 AM, Benjamin Mord <ben at mord.family> wrote:
>
> If I'm not mistaken, the scriptless scripts concept (as currently
> formulated) falls to Schor's algorithm, and at present there is no
> alternative implementation of the concept to fall back on. Correct? Lest we
> build a house of cards, I'd strongly urge everyone to not depend on
> functional concepts whose underlying cryptographic primitives cannot be
> swapped in an emergency.
>
> Sure, we use ecdsa for example (which is also vulnerable to Schor's
> algorithm), but in contrast to scriptless scripts we have a variety of
> backup primitives at our disposal that fulfill the same functional
> objective.
>
> If scriptless scripts are found possible under lattice-based cryptography
> for example, that would be something I suppose. The functional concept of
> scriptless scripts is indeed very awesome - we just need to add some
> cryptographic conservatism before we build on it.
>
>
> _______________________________________________
> Lightning-dev mailing list
> Lightning-dev at lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/lightning-dev
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/lightning-dev/attachments/20180508/5b5bfa6b/attachment.html>;
📝 Original message:
>From what I understand talking to folks, the linear properties of these
signature tricks are maintained under a number of post-quantum schemes.
On Tue, May 8, 2018 at 8:44 AM, Benjamin Mord <ben at mord.family> wrote:
>
> If I'm not mistaken, the scriptless scripts concept (as currently
> formulated) falls to Schor's algorithm, and at present there is no
> alternative implementation of the concept to fall back on. Correct? Lest we
> build a house of cards, I'd strongly urge everyone to not depend on
> functional concepts whose underlying cryptographic primitives cannot be
> swapped in an emergency.
>
> Sure, we use ecdsa for example (which is also vulnerable to Schor's
> algorithm), but in contrast to scriptless scripts we have a variety of
> backup primitives at our disposal that fulfill the same functional
> objective.
>
> If scriptless scripts are found possible under lattice-based cryptography
> for example, that would be something I suppose. The functional concept of
> scriptless scripts is indeed very awesome - we just need to add some
> cryptographic conservatism before we build on it.
>
>
> _______________________________________________
> Lightning-dev mailing list
> Lightning-dev at lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/lightning-dev
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/lightning-dev/attachments/20180508/5b5bfa6b/attachment.html>;