mirrors/bitcoin-bips
1
0
Fork 0
mirror of https://github.com/bitcoin/bips.git synced 2025-03-05 20:06:47 +01:00
Code Issues Projects Releases Wiki Activity
2119 commits 6 branches 0 tags 43 MiB
Commit graph

82 commits

Author SHA1 Message Date
Pieter Wuille
7c7aead1c1
Merge pull request #179 from real-or-random/patch-14 
Mention that we don't change the hash function
 2019-12-14 16:24:52 -05:00
Pieter Wuille
6b50893798
Merge pull request #178 from sipa/201912_schnorr_consensus_exact 
Consistent validity
 2019-12-14 16:24:32 -05:00
Tim Ruffing
ad1eba008c Update bip-schnorr.mediawiki 2019-12-14 22:11:47 +01:00
Pieter Wuille
431ebd2f44
Merge pull request #177 from sipa/201912_lows_ecdsa_nonmalleable 
Low-S ECDSA is non-malleable under nonstandard assumptions
 2019-12-13 18:34:31 -05:00
Pieter Wuille
f1380bdc11 Completely specified 2019-12-13 15:31:18 -08:00
Jonas Nick
633cca9b1c Replace private key with secret key 2019-12-13 13:25:16 +00:00
Tim Ruffing
ff2b53737c
Mention that we don't change the hash function 2019-12-13 12:11:50 +01:00
Pieter Wuille
aa18fdb07e Low-S ECDSA is non-malleable under nonstandard assumptions 2019-12-12 16:26:50 -08:00
Tim Ruffing
92582c2a33
Clarify why we don't want short hashes 
This is supposed to supersede https://github.com/sipa/bips/pull/158.
I tried to say this carefully. I don't think that multiparty signing is in general broken with short hashes. For example the attack in #158 could be avoided by letting everybody not only commit to the nonce but also to the message. It's just that using a collision-resistant hash just eliminates the problem entirely...
 2019-12-12 22:49:21 +01:00
Pieter Wuille
b1d93cdd2c
Merge pull request #174 from hebasto/patch-1 
Fix reference formatting
 2019-12-11 20:25:49 -05:00
Pieter Wuille
2a2d4231ff
Merge pull request #154 from OrfeasLitos/replace-66-with-146 
Replace BIP66 link with BIP146
 2019-12-11 19:59:33 -05:00
Hennadii Stepanov
2e0c9435a8
Fix reference formatting 2019-12-11 15:33:39 +02:00
Pieter Wuille
4b25ff7b92
Merge pull request #148 from OrfeasLitos/link-implicit-y-proof-sketch 
Link to proof sketch of security of implicit Y
 2019-12-10 18:58:28 -05:00
Pieter Wuille
a9190ff92b
Merge pull request #172 from jonasnick/footnote9 
Improve clarity of footnotes for lift_x
 2019-12-10 18:45:19 -05:00
Pieter Wuille
034e97bd6e
Merge pull request #170 from jonasnick/footnote7 
Fix footnote 7 and remove references to Euler's criterion
 2019-12-10 17:20:22 -05:00
Kalle Rosenbaum
adf4d78e6c Nits 2019-12-09 21:20:40 +01:00
Jonas Nick
93e1921d83 Improve clarity of footnotes for lift_x 2019-12-04 20:21:52 +00:00
Jonas Nick
382a1d19a0 Replace references to Euler's criterion with Legendre symbol in bip-schnorr 2019-11-29 15:48:22 +00:00
Jonas Nick
3acb150829 Fix bip-schnorr footnote 7 by specifying that we're referring to P's y coordinate and not some undefined 'x' 2019-11-29 15:48:02 +00:00
Pieter Wuille
1650cacac0
Merge pull request #156 from hebasto/20191123-grammar-and-reference 
Fix paragraph naming and typo
 2019-11-26 07:07:20 -08:00
Pieter Wuille
3d3bd7660c
Merge pull request #160 from OrfeasLitos/clarify-choices 
Rephrase "previous design choice" to "list above"
 2019-11-26 06:54:21 -08:00
Pieter Wuille
9648889b4f
Merge pull request #150 from stefanwouldgo/patch-1 
grammar typo fix: inserted "be"
 2019-11-26 06:42:10 -08:00
Orfeas Stefanos Thyfronitis Litos
8ca122e8fe
Rephrase "previous design choice" to "list above" 2019-11-25 12:25:19 +00:00
Hennadii Stepanov
4fa7cba641
Fix paragraph naming and typo 2019-11-23 21:27:44 +02:00
Orfeas Stefanos Thyfronitis Litos
fbd304575f
Replace BIP66 link with BIP146 
BIP66 does not mention the inherent ECDSA malleability, but BIP146 does
 2019-11-22 11:41:36 +00:00
Dmitry Petukhov
75b464ad76
Add missing dots that denote multiplication 
Throughout the document, elliptic curve multiplication is denoted with dots,
as in `d'â‹…G` as opposed to `d'G`.
This is not the case in one place in the 'Default Signing' section,
and one place in 'Adaptor Signatures' section

Missing dots are added for consistency.
 2019-11-22 00:21:05 +05:00
stefanwouldgo
09c12e4052
grammar typo fix: inserted "be" 2019-11-19 10:10:34 +01:00
Orfeas Stefanos Thyfronitis Litos
314e9fd904
Add missing quote 2019-11-18 17:00:39 +00:00
Orfeas Stefanos Thyfronitis Litos
e544fc66ba
Link to proof sketch of security of implicit Y 
Thanks to @ajtowns for providing the link
 2019-11-18 16:50:01 +00:00
Orfeas Stefanos Thyfronitis Litos
cacb82fc6d
Fix typo in schnorr, footnote 2 2019-11-18 14:47:27 +00:00
Hennadii Stepanov
7e98e2fd84
G refers to secp256k1 base point rather generator 2019-11-11 20:09:55 +02:00
Pieter Wuille
857dd625b5
Merge pull request #114 from real-or-random/patch-11 
improve rationale for key prefixing
 2019-11-04 16:06:29 -08:00
Pieter Wuille
0c6a9cffad Settle on notation: is_square(y), has_square_y(P) 2019-11-04 13:42:24 -08:00
Tim Ruffing
db1973ffba improve rationale for key prefixing 2019-10-30 01:32:07 +01:00
Tim Ruffing
73b8e3aeeb
typos 2019-10-30 01:27:26 +01:00
Pieter Wuille
da4721cdc6
Update bip-schnorr.mediawiki 
Co-Authored-By: Tim Ruffing <tim@timruffing.de>
 2019-10-25 10:18:29 -07:00
Pieter Wuille
322ce53625
Update bip-schnorr.mediawiki 
Co-Authored-By: Tim Ruffing <tim@timruffing.de>
 2019-10-25 10:18:17 -07:00
Pieter Wuille
f95ac70606 Elaborate on default and alternative signing 2019-10-24 16:03:33 -07:00
Tim Ruffing
0176ed1871 Change reference for ECDSA proofs 
Refer to Manuel Fersch's dissertation for provable security of ECDSA. It's freely accessible and multiple results put well in context.
 2019-10-21 13:27:59 +02:00
Pieter Wuille
ae32d243cd
Merge pull request #93 from sipa/201910_clarify_keygen 
Clarify interaction x-only keys with verification
 2019-10-15 18:05:59 -07:00
Pieter Wuille
2a9a70c92a More on key generation 2019-10-15 18:03:31 -07:00
Pieter Wuille
0a45ecbf04 Clarify interaction x-only keys with verification 2019-10-15 17:38:10 -07:00
Pieter Wuille
d434c18af8 Update bip-schnorr.mediawiki 
Co-Authored-By: Tim Ruffing <tim@timruffing.de>
 2019-10-15 17:33:33 -07:00
Pieter Wuille
59ac6a9683 Explain that MuSig needs key prefixing 2019-10-15 17:31:15 -07:00
Tim Ruffing
2d9877e6e1 bip-schnorr: more on (e,s) 2019-10-15 17:26:45 -07:00
Tim Ruffing
e139975eff
bip-schnorr: more on provable security 
I'll try to get a link to the CCS paper that does not have a paywall...
 2019-10-15 16:02:09 -07:00
Pieter Wuille
348110ec52 Typo 2019-10-15 12:29:52 -07:00
Pieter Wuille
cdf7dd8cca Drop other curve comment 2019-10-15 12:26:21 -07:00
Pieter Wuille
8c0b29cc94 Prefix infinite with is_ 2019-10-15 12:24:21 -07:00
Pieter Wuille
1e00d6ef6a
Apply suggestions from code review 
Co-Authored-By: Tim Ruffing <tim@timruffing.de>
 2019-10-15 12:22:31 -07:00