|
Title: Support for Hierarchical Multi-Signature Transactions? Post by: LurbQBurdock on April 18, 2013, 11:42:05 PM There is currently support for threshold multi-signature transactions where, for instance, 2 of 3 people must sign a transaction before it is valid.
Will there ever be support for hierarchy among the signers of a transaction? A google search of "hierarchy secret sharing" shows that some hierarchies can be implemented. Title: Re: Support for Hierarchical Multi-Signature Transactions? Post by: Vitalik Buterin on April 19, 2013, 11:03:54 AM Bitcoin multisig has nothing to do with cryptographic secret sharing schemes. Traditional secret sharing relies on fancy mathematical tricks like representing some secret as a polynomial and handing out, say, 10 points on that polynomial, such that any 5 of them are enough to determine what the original polynomial is. Bitcoin does not need that because its job isn't hiding secrets - rather, it's verification. In the case of Bitcoin, you simply have everyone make their signatures and then have miners directly check if at least 5 of the 10 signatures are valid. So the Bitcoin protocol can theoretically be extended to support any kind of hierarchical, anarchical, pseudorandom or whatever other ruleset for transaction validation (that's right, we could implement gambling right in the blockchain!) provided that no human judgement is required to determine validity (so, "redeemable by the owner of 178gb... if <insert name here> is deceased" won't work without a trusted authority).
As for what is possible right now, I'm looking at https://en.bitcoin.it/wiki/Script (https://en.bitcoin.it/wiki/Script), and it looks like there's a lot of opcodes that nobody seems to be taking advantage of yet. Might something like (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL for a "2-of-3 per group, 2 groups out of 3" transaction work? Title: Re: Support for Hierarchical Multi-Signature Transactions? Post by: kjj on April 19, 2013, 11:53:42 AM The script system should be able to handle nearly arbitrary complexity in signing schemes.
Right now, the bulk of the network only supports a few simple script types, so the best you can do is M-of-N. The good news is that M-of-N can, with a little cleverness, emulate just about any more complex scheme. Title: Re: Support for Hierarchical Multi-Signature Transactions? Post by: kokjo on April 19, 2013, 11:55:57 AM hmm. The scripting language is not turing-complete, no loops. What are the limits of scripts?
Title: Re: Support for Hierarchical Multi-Signature Transactions? Post by: LurbQBurdock on April 20, 2013, 03:32:31 AM As for what is possible right now, I'm looking at https://en.bitcoin.it/wiki/Script (https://en.bitcoin.it/wiki/Script), and it looks like there's a lot of opcodes that nobody seems to be taking advantage of yet. Might something like (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG (sig) (pubkey) OP_CHECKSIG OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL OP_ADD OP_ADD 2 OP_GREATERTHANOREQUAL for a "2-of-3 per group, 2 groups out of 3" transaction work? Ah thank you Vitalik. That's exactly what I was looking for. But most of this is not yet implemented? That is sad Title: Re: Support for Hierarchical Multi-Signature Transactions? Post by: TierNolan on April 20, 2013, 01:09:34 PM Ah thank you Vitalik. That's exactly what I was looking for. But most of this is not yet implemented? That is sad Looks like all those opcodes are active? |