Replying to Avatar Comte de Sats Germain

I think I read somewhere that ECDSA was broken and if it were the only encryption our keys would be toast, so basically bitcoin is standing on two remaining legs since there are three layers of encryption. This is all far beyond my level. Oh, it was saying that's why spending from the same address twice endangers your keys. The only take away that I understood well enough to stick was that you should always spend the whole txo and change should go to new address.

But that seems worrying. Seems like there are two ways Bitcoin has already broken - doubling blocksize means miners have to centralize, and ECDSA being knocked out means future attackers have less work to do. At least, that's how I hear it. I'm painfully aware of my lack of understanding.
Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 1y ago

yeah, there is both cryptographic security and privacy reasons to never reuse an address xapo bank's bitcoin devs need to have schooling on this because they make only one address per account that never changes and this is not how you do it, it's the biggest quibble i have with their operation

taproot solves most of this problem btw, they just muddled it up with some shitcoin bullshit, it finally added schnorr signatures to bitcoin... there is nothing on the protocol level stopping you from using taproot addresses the same way except without the malleability problem... they could be used by lightning protocols too, with minimal complexity to upgrade

Reply to this note

Please Login to reply.

Discussion

Avatar
Etherfi 1y ago

✅ EtherFi Airdrop Is Live!.

👉 https://telegra.ph/EtherFi-06-23 Claim your free $ETHFI.

Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 1y ago

yeah, to be clear, the more times you sign with the secret key associated with a bitcoin address, the less difficult it is to reverse the public key and get the secret, and spend that UTXO

Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 1y ago

nostr:npub180cvv07tjdrrgpa0j7j7tmnyl2yr6yr7l8j4s3evf6u64th6gkwsyjh6w6 decided to use schnorr signatures on secp256k1 curve just because it seemed like a cool idea, mostly, with taproot in the process of congealing into the protocol (it's now pretty much supported by most of bitcoin nodes) but it was a good idea to use schnorr instead of ecdsa because the security of our nostr identities would be considerably worse with the number of times we sign events with this one secret in nostr