|
Title: Blockchain as login system Post by: Stingery64 on July 08, 2014, 02:00:15 AM hi, we al know how much suxs having all the data and password you use to register over so many forums, shops, webs, blogs, social networks and so on,
its truly a pain in the ass and a lose of time, Bitcoins and Trezor Hardware wallet is making the wish of any security bank, as trezor just sen to the comptuer the signed data without sharing the private keys, and as its like electrem, and it uses deterministic address generation, even if you lose it, you can recover all your bitcoins. Now: this is in my opinion top grade security where a mecanical button push is the single way to confirm a payment. What about use some system like that to register in webs, login into any way and have logins safe? to login you would need just to "send bitcoins" pushing a button, the system receive the bitcoins and without the need to get confirmations, you are validated and logged in, the idea is to do something like that parallel to bitcoin or so, in order that there is no need to have money, but use the idea to sign the login then be able to login and register everywhere just by saying "check out the signed data, that proofs i am the legit user, let me go in". Well, i can't think exactly about the inner working, buy maybe you can see a better shine about that, maybe in the future notebooks will have a build in "login" hardware button Title: Re: Blockchain as login system Post by: franky1 on July 08, 2014, 02:08:38 AM its already been discussed.
when registering with a website. user can give the website a bitcoin PUBLIC address.. then when logging in the website shows a random message. EG: "The Lamb Walked Into The Slaughter House. Bar Ram You. Splat! 1204856948447585 08/07/2014" the user then signs the message using their bitcoin client of the bitcoin address they submitted at registration. and then types in their username and the signed message. the website then verifies the signed message to the bitcoin public address to authorize logins. meaning although the bitcoin address is used like the password.. the bitcoin address is never actually typed in by the user to log in after registering.. only a signed message is pasted in as the password, which always changes and is also kind of a 2FA all in one because it is encrypted by the privkey, thus it cant be guessed and shows some user ownership verification, all in one. its not using the blockchain to login as thats costing people money.. but its using bitcoins "message signing" feature, which is free and faster then sending coin Title: Re: Blockchain as login system Post by: Bit_Happy on July 08, 2014, 02:55:19 AM ...meaning although the bitcoin address is used like the password.. the bitcoin address is never actually typed in by the user to log in after registering.. only a signed message is pasted in as the password, which always changes and is also kind of a 2FA all in one because it is encrypted by the privkey, thus it cant be guessed and shows some user ownership verification, all in one. its not using the blockchain to login as thats costing people money.. but its using bitcoins "message signing" feature, which is free and faster then sending coin This sounds pretty cool, has anyone produced a working demo yet? Title: Re: Blockchain as login system Post by: Mieehayii on July 08, 2014, 03:02:45 AM ...meaning although the bitcoin address is used like the password.. the bitcoin address is never actually typed in by the user to log in after registering.. only a signed message is pasted in as the password, which always changes and is also kind of a 2FA all in one because it is encrypted by the privkey, thus it cant be guessed and shows some user ownership verification, all in one. its not using the blockchain to login as thats costing people money.. but its using bitcoins "message signing" feature, which is free and faster then sending coin This sounds pretty cool, has anyone produced a working demo yet? Title: Re: Blockchain as login system Post by: franky1 on July 08, 2014, 03:57:50 AM ...meaning although the bitcoin address is used like the password.. the bitcoin address is never actually typed in by the user to log in after registering.. only a signed message is pasted in as the password, which always changes and is also kind of a 2FA all in one because it is encrypted by the privkey, thus it cant be guessed and shows some user ownership verification, all in one. its not using the blockchain to login as thats costing people money.. but its using bitcoins "message signing" feature, which is free and faster then sending coin This sounds pretty cool, has anyone produced a working demo yet? bitcoin-OTC you can register your identity with a bitcoin address.. and you can verify your identity using a signed message it gives you... its not a website login, but the same rules apply. http://wiki.bitcoin-otc.com/wiki/Bitcoin_address_authentication Title: Re: Blockchain as login system Post by: Stingery64 on July 08, 2014, 06:49:33 AM wonderful,
Title: Re: Blockchain as login system Post by: franky1 on July 08, 2014, 07:01:24 AM what i find strange is that this concept of veryfying identity has been part of bitcoin community for years now, but no website service is using it.. they all get people to sign up to google
Title: Re: Blockchain as login system Post by: Stingery64 on July 08, 2014, 11:06:05 AM i guess is more easy to just wirte the google password than copy a string, sign an address with the string, an paste back the result in order to tell the system you are the real user,
maybe some standar in HTML5 or a browser extension that allows you to register and login to websites just by pressing a mouseclick and send the string to the hardware wallet, press the hardware button that sign it, and you are logged, registered, or whatever, no need to remember password, no spam, no mails, no option to access the private keys... how could anyone hack an user account that way? maybe a "man in the middle" virus would work? i mean, the virus shows him the string to sign, he signs it, i get the signed string and i can log in? if thats possible then its not that safe... Title: Re: Blockchain as login system Post by: Velkro on July 08, 2014, 12:05:35 PM working demo would be great
Title: Re: Blockchain as login system Post by: Nerazzura on July 08, 2014, 01:17:27 PM what i find strange is that this concept of veryfying identity has been part of bitcoin community for years now, but no website service is using it.. they all get people to sign up to google then how should it happen, you can give your best ideas?Title: Re: Blockchain as login system Post by: franky1 on July 08, 2014, 01:21:31 PM i guess is more easy to just wirte the google password than copy a string, sign an address with the string, an paste back the result in order to tell the system you are the real user, google 2FAgo to website, type in username, type in password. press subitmit. get the google code, switch tabs type google.com, click sign in. type in email. type in password. click login. go to authenticator. paste it into authenticator, press ok. copy response code. switch tabs back to website, paste code. pres submit bitcoin type in username, press submit, get passphrase. go to bitcoin program. click sign message paste passphrase. press sign button, press copy to clipboard. switch back to website, paste signed message. press login hmmm bitoin seems shorter and no need for 30 second time limit to irritate people maybe some standar in HTML5 or a browser extension that allows you to register and login to websites just by pressing a mouseclick and send the string to the hardware wallet, press the hardware button that sign it, and you are logged, registered, or whatever, no need to remember password, no spam, no mails, no option to access the private keys... no need for extensions that need the privkey saved (to sign messages) i can already smell fishy implications.. most SMART bitcoiners already have their bitcoin nodes running in the background so its just a click down at the task bar.. not that hard how could anyone hack an user account that way? maybe a "man in the middle" virus would work? i mean, the virus shows him the string to sign, he signs it, i get the signed string and i can log in? if thats possible then its not that safe... [/quote] nothing is perfect. but: trying to remember a lengthy single password, people end up using a short password. trying to remember a password that changes per use, most would just use an incremental number at the end trying to remember the password at all... yea some forget. but with a bitcoin message login, no memory, no possibility of weak "entropy/dictionary attacks". simply verifying a bitcoin address safely stored in your existing wallet.. which you SHOULD!!! already have adequate precautions to secure anyways (not downloading bogus software or extensions) Title: Re: Blockchain as login system Post by: franky1 on July 08, 2014, 01:28:56 PM what i find strange is that this concept of veryfying identity has been part of bitcoin community for years now, but no website service is using it.. they all get people to sign up to google then how should it happen, you can give your best ideas?working demo would be great go to IRC #bitcoin-otc choose a username. then sing the link above follow the instructions to register, then verify.. then imagine the same copy and paste method to verify each time.. but as a webpage instead of a chat box. if you like it, find out who made the code and if thy have a javascript/php version. sorry i cant hold your hands all the way to the finish line Title: Re: Blockchain as login system Post by: DannyElfman on July 09, 2014, 04:43:07 AM its already been discussed. You would still need a public address to act as a username as the website would otherwise not know which address to validate the signature against. when registering with a website. user can give the website a bitcoin PUBLIC address.. then when logging in the website shows a random message. EG: "The Lamb Walked Into The Slaughter House. Bar Ram You. Splat! 1204856948447585 08/07/2014" the user then signs the message using their bitcoin client of the bitcoin address they submitted at registration. and then types in their username and the signed message. the website then verifies the signed message to the bitcoin public address to authorize logins. meaning although the bitcoin address is used like the password.. the bitcoin address is never actually typed in by the user to log in after registering.. only a signed message is pasted in as the password, which always changes and is also kind of a 2FA all in one because it is encrypted by the privkey, thus it cant be guessed and shows some user ownership verification, all in one. its not using the blockchain to login as thats costing people money.. but its using bitcoins "message signing" feature, which is free and faster then sending coin Title: Re: Blockchain as login system Post by: franky1 on July 09, 2014, 06:23:01 AM You would still need a public address to act as a username as the website would otherwise not know which address to validate the signature against. no, but yes, but no.. all depends on how the website sets up its registration system. scenario 1 imagine this forum whn you signed up asks for your username, password and email address... simply remove email, remove password requirement at registrations and replace with just username and bitcoin PUBLiC address at registration. so now id when logging typ in username copy th passphrase, sign it, paste th signed passphrase as the password. scenario 2 your username is your bitcoin public address so this forum, instead of being 'franky1' its 1frankyblahblahlbalhlblalhsdlsdfds but this requires me to paste in a long username, then copy the passphrase then paste the signed passphrase... and of course on sites like this having usernames as a bitcoin address is just ugly and not 'personal'/'friendly' .. either way i find it easier to trust a bitcoin signed passphrase. which means unique passwords at every use (anti-phishing) high entropy(anti-bruteforce/guessing) password is not stored as clear text on members database. (anti-insider*) *people that make "coming soon" websites to get people to sign up for updates, or nasty exchange and other services that look at the members database, and use their members usernames and passwords on other services. after all no user can prove for definite that the services they use only store a hash of a password and not clear text(which should be default, but we know thats not the case all the time) Title: Re: Blockchain as login system Post by: DannyElfman on July 10, 2014, 01:58:39 AM You would still need a public address to act as a username as the website would otherwise not know which address to validate the signature against. no, but yes, but no.. all depends on how the website sets up its registration system. scenario 1 imagine this forum whn you signed up asks for your username, password and email address... simply remove email, remove password requirement at registrations and replace with just username and bitcoin PUBLiC address at registration. so now id when logging typ in username copy th passphrase, sign it, paste th signed passphrase as the password. Title: Re: Blockchain as login system Post by: Peter R on July 10, 2014, 02:19:49 AM This is one of my hopes for the Sigsafe (http://www.coindesk.com/sigsafe-key-tag-brings-bitcoin-payments-nfc-devices/) project that I'm currently working on.
Like others have said in this thread, your username could be a bitcoin address (or pubkey). To make it even easier, a merchant or service provider could read this piece of public information from your device over NFC (possibly along with other information you want to share about yourself). To authenticate you at some point in the future, the service would send you a random nonce to sign. You would produce a bitcoin-signed message of that nonce (e.g., by tapping your bitcoin signing tag to an NFC reader), and then your signature would be relayed to the service. The service would verify the signature to SOME address (or pubkey), and if that address was YOUR address, then you would be successfully authenticated! Yesterday, I was able to produce bitcoin-signed message on a sub-$2 microcontroller (https://bitcointalk.org/index.php?topic=610453.msg7748436#msg7748436) using less than 16 kilobytes of RAM. Authentication by signing a nonce with a bitcoin private key would be so helpful because it would eliminate the concern with password re-use. The same signing device (and even the same key within the device) could authenticate you to Gmail, act as a loyalty card at a grocery store, unlock your front door, and perhaps in the future even start your car. Right now, a major obstacle IMO is that currently HTML5 browsers don't yet support the Web NFC API (http://www.w3.org/TR/nfc/). But I imagine in the future it will be possible to create webpages that request signatures from a device like Sigsafe to complete an online payment or to login to a website using (e.g.) the bitID (https://bitcointalk.org/index.php?topic=557037.0) protocol and a single tap. Title: Re: Blockchain as login system Post by: nahtnam on July 10, 2014, 03:51:26 AM ...meaning although the bitcoin address is used like the password.. the bitcoin address is never actually typed in by the user to log in after registering.. only a signed message is pasted in as the password, which always changes and is also kind of a 2FA all in one because it is encrypted by the privkey, thus it cant be guessed and shows some user ownership verification, all in one. its not using the blockchain to login as thats costing people money.. but its using bitcoins "message signing" feature, which is free and faster then sending coin This sounds pretty cool, has anyone produced a working demo yet? bitcoin-OTC you can register your identity with a bitcoin address.. and you can verify your identity using a signed message it gives you... its not a website login, but the same rules apply. http://wiki.bitcoin-otc.com/wiki/Bitcoin_address_authentication Another example would be if you are changing your ad on A-ads. Title: Re: Blockchain as login system Post by: DannyElfman on July 10, 2014, 04:37:42 PM ...meaning although the bitcoin address is used like the password.. the bitcoin address is never actually typed in by the user to log in after registering.. only a signed message is pasted in as the password, which always changes and is also kind of a 2FA all in one because it is encrypted by the privkey, thus it cant be guessed and shows some user ownership verification, all in one. its not using the blockchain to login as thats costing people money.. but its using bitcoins "message signing" feature, which is free and faster then sending coin This sounds pretty cool, has anyone produced a working demo yet? bitcoin-OTC you can register your identity with a bitcoin address.. and you can verify your identity using a signed message it gives you... its not a website login, but the same rules apply. http://wiki.bitcoin-otc.com/wiki/Bitcoin_address_authentication Another example would be if you are changing your ad on A-ads. Title: Re: Blockchain as login system Post by: laurentmt on July 11, 2014, 08:35:20 AM This sounds pretty cool, has anyone produced a working demo yet? You should check BitId.- video demo => https://www.youtube.com/watch?v=3eepEWTnRTc - forum thread => https://bitcointalk.org/index.php?topic=557037.0 - github => https://github.com/bitid/bitid It has been integrated in DarkWallet alpha 5 (https://wiki.unsystem.net/en/index.php/DarkWallet/Alpha5) and Mycelium 1.2.15 (https://mycelium.com/wallet-version-1215-released) Server-side, libraries have been developed for several languages and there's also some plugins/extensions for django (https://github.com/manuelzs/django-bitid/), wordpress (http://t.co/e6FJGKmnJ6) and mediawiki (https://github.com/sembrestels/mediawiki-bitid) Title: Re: Blockchain as login system Post by: tutkarz on July 11, 2014, 11:03:24 AM I don't see the reason for browser to not store bitcoin private key for less important sites like it already does with passwords now, and just automatically sign you to sites when you want. Also making signing up flawlessly simple by automatically sending public address to site with your username.
Title: Re: Blockchain as login system Post by: phillipsjk on July 11, 2014, 11:12:14 AM Another working demo is the Eligius mining pool (http://eligius.st/~gateway/). It is annoying because is conflates your identity with your payment address (which is supposed to be transient). When I was mining with Eligius, I could not use a cold-storage address for mining Bitcoin if I also wanted to receive namecoin.
Public-key cryptography has been around since the late 90's. The OpenPGP standard makes more sense for logging into websites. Edit: These types of authentication mechanisms don't make use of the block-chain, BTW. when registering with a website. user can give the website a bitcoin PUBLIC address.. then when logging in the website shows a random message. EG: "The Lamb Walked Into The Slaughter House. Bar Ram You. Splat! 1204856948447585 08/07/2014" the user then signs the message using their bitcoin client of the bitcoin address they submitted at registration. and then types in their username and the signed message. the website then verifies the signed message to the bitcoin public address to authorize logins. The authentication message should be plain-language, and never random. Random authentication messages open the door for Man-in-the-Middle attacks. For example facebook might use: Code: Log john_doe87@hotmail.com into facebook Fri Jul 11 05:19:25 MDT 2014 Title: Re: Blockchain as login system Post by: micaman on July 11, 2014, 11:40:11 AM Really cool idea, loved it.
But once set, you would not be able to change/reset a password, right? Title: Re: Blockchain as login system Post by: franky1 on July 11, 2014, 11:52:21 AM Another working demo is the Eligius mining pool (http://eligius.st/~gateway/). It is annoying because is conflates your identity with your payment address (which is supposed to be transient). When I was mining with Eligius, I could not use a cold-storage address for mining Bitcoin if I also wanted to receive namecoin. Public-key cryptography has been around since the late 90's. The OpenPGP standard makes more sense for logging into websites. Edit: These types of authentication mechanisms don't make use of the block-chain, BTW. when registering with a website. user can give the website a bitcoin PUBLIC address.. then when logging in the website shows a random message. EG: "The Lamb Walked Into The Slaughter House. Bar Ram You. Splat! 1204856948447585 08/07/2014" the user then signs the message using their bitcoin client of the bitcoin address they submitted at registration. and then types in their username and the signed message. the website then verifies the signed message to the bitcoin public address to authorize logins. The authentication message should be plain-language, and never random. Random authentication messages open the door for Man-in-the-Middle attacks. For example facebook might use: Code: Log john_doe87@hotmail.com into facebook Fri Jul 11 05:19:25 MDT 2014 1. openPGP has been around longer i agree, but that involves people downloading an extra program to sign a message, bitcoiners already have a program and is VERY easy to use as its already there. plus it doesnt need all the registration of keys with other services and all crap that goes with getting a PGP key.. bitcoin signaturs ar just there.. but all in all the theory is the same for the using part after registrations, just less userfriendly for noobs wen it comes to openpgp 2. your example of a message is the same as mine. they are both random, the difference is that because i added a nonce rather then just a time that changes every second. it makes it harder to guess the message 3. man in the middle attack is actually easier to achieve in your example then mine. imagine a phishing website that knew the message to display was a fixed template "log <email> into <service> <day><month><time><timezonecode><year>" that is pretty easy for a phishing site to replicate. but imagine if the message was complete random, not so easy to replicate on a copied template now is it. not impossible just slightly more code a phishing site would need to add. so lets not make it easy for scrript kiddies to just copy and paste front end code of websites to phish info. Really cool idea, loved it. But once set, you would not be able to change/reset a password, right? if you always have a wallet, you always have a way to log in, so there wouldn't (shouldnt) be any reason to say "i forgot my log-in details". who in bitcoinland would not back their wallet up. thus losing the ability to log-in wont be a problem (if they employ standard bitcoin security backups). then once logged in, the website can easily allow users to change their registered bitcoin address, just like services allow users to change emails, username, home addresses, telepone numbers, profile picture, etc. Title: Re: Blockchain as login system Post by: phillipsjk on July 11, 2014, 12:47:23 PM 1. openPGP has been around longer i agree, but that involves people downloading an extra program to sign a message, bitcoiners already have a program and is VERY easy to use as its already there. plus it doesnt need all the registration of keys with other services and all crap that goes with getting a PGP key.. bitcoin signaturs ar just there.. but all in all the theory is the same for the using part after registrations, just less userfriendly for noobs wen it comes to openpgp Quote 2. your example of a message is the same as mine. they are both random, the difference is that because i added a nonce rather then just a time that changes every second. it makes it harder to guess the message 3. man in the middle attack is actually easier to achieve in your example then mine. imagine a phishing website that knew the message to display was a fixed template "log <email> into <service> <day><month><time><timezonecode><year>" that is pretty easy for a phishing site to replicate. but imagine if the message was complete random, not so easy to replicate on a copied template now is it. not impossible just slightly more code a phishing site would need to add. so lets not make it easy for scrript kiddies to just copy and paste front end code of websites to phish info. I can easily generate <random wordx10> <Random decimal number><date>. Unless you are claiming the user will somehow recognize the challenge passphrase. If that is what you are relying on, you are not talking about a random message at all. I know banks use challenge images and phrases to "authenticate" their website, but that appears to be mainly "security theatre": designed to make naive users trust online banking. The real "security" is the reversibility of the transactions. The technology is not quite there yet, but the website can authenticate itself to you using OpenPgp as well. Code: I , pool5.facebook.com am using the IP address: 10.0.2.34 on Fri Jul 11 11:59:46 MDT 2014 Really cool idea, loved it. But once set, you would not be able to change/reset a password, right? OpenPGP supports this, but it is complicated to set up. It is called key revocation. To set that up, you need a secure master key that will not get lost/destroyed (preferably stored offline in multiple locations), much like Bitcoin "cold storage". Essentially, the master key is your "real" identity, but your would use sub-keys for your day-to-day signing. Each device you use should probably have it's own sub-key. Title: Re: Blockchain as login system Post by: franky1 on July 11, 2014, 01:24:02 PM Bitcoin users are still rare. Registering your keys with OpenPGP keyservers is optional. hello... we are talking about the bitcoin community here, if they are using a bitcoin website, they would use the bitcoin login system.......... ... i wont waffle into details but i think you missed the point that we are talking about bitcoin services here. I can easily generate <random wordx10> <Random decimal number><date>. Unless you are claiming the user will somehow recognize the challenge passphrase. If that is what you are relying on, you are not talking about a random message at all. I know banks use challenge images and phrases to "authenticate" their website, but that appears to be mainly "security theatre": designed to make naive users trust online banking. The real "security" is the reversibility of the transactions. say im a phishing scammer.. most phishing sites are a template to gather usernames and then use those at a later date i can easily make up a template site that makes up random words yea, i can get a user to sign those random words yes.. but in no way can i then use that random signature on the true website later because the true website would not have generated those random words.. see my point about it requiring more code for script kiddies to do then just use a fixd template....???????????? a phishing website would have to try to accept a users email/username, forward it to the true website, get the true websites random message, relay it on the phishing site to the user, user replies with signed true message, pastes it into phishing site and phishing site has to relay that to true site.. thus not making phishing as easy as pie. randomness is better The technology is not quite there yet, but the website can authenticate itself to you using OpenPgp as well. complicated needing master keys, blah blah... yes complicated and time consuming.. yet bitcoin signing is simple..... what are you not understanding. same security, same theory, but bitcoin is just simple and not requiring downloads of extra programs or setting up of keys"I , pool5.facebook.com am using the IP address: 10.0.2.34" Really cool idea, loved it. But once set, you would not be able to change/reset a password, right? OpenPGP supports this, but it is complicated to set up. It is called key revocation. To set that up, you need a secure master key that will not get lost/destroyed (preferably stored offline in multiple locations), much like Bitcoin "cold storage". Essentially, the master key is your "real" identity, but your would use sub-keys for your day-to-day signing. Each device you use should probably have it's own sub-key. ok ok we get it openpgp is your lover and life partner.. we understand. but bitcoin has the same principles that are available to utilise now. bitcoin users can already sign messages without needing to download programs or use complicated features.. so why push for complex features and templates (security breaches) instead of simplicity and randomness... you seem to be missing a few points Title: Re: Blockchain as login system Post by: phillipsjk on July 11, 2014, 06:40:34 PM say im a phishing scammer.. The phishing website can't replay my example later because of the included date. It should be possible to make the time-out explicit.most phishing sites are a template to gather usernames and then use those at a later date i can easily make up a template site that makes up random words yea, i can get a user to sign those random words yes.. but in no way can i then use that random signature on the true website later because the true website would not have generated those random words.. The problem with the random challenge is that the user does not know what they are signing: they may think they are signing into one website, while they are really signing into another. It may not even be a sign-in: the signature may be authorizing a large movement of funds. For example, a raw transaction script will look like noise to most Bitcoin users. Quote Really cool idea, loved it. But once set, you would not be able to change/reset a password, right? OpenPGP supports this, but it is complicated to set up. It is called key revocation. To set that up, you need a secure master key that will not get lost/destroyed (preferably stored offline in multiple locations), much like Bitcoin "cold storage". Essentially, the master key is your "real" identity, but your would use sub-keys for your day-to-day signing. Each device you use should probably have it's own sub-key. ok ok we get it openpgp is your lover and life partner.. we understand. but bitcoin has the same principles that are available to utilise now. bitcoin users can already sign messages without needing to download programs or use complicated features.. so why push for complex features and templates (security breaches) instead of simplicity and randomness... you seem to be missing a few points Contrary to my example above, OpenPGP is not ideal for authenticating websites (distinct from authenticating users). X.509 (https://en.wikipedia.org/wiki/X.509) is used for that: the only problem being that the the CA system is broken. As you have pointed out, the OpenPGP alternative: the "Web of trust" has proven to be confusing to many users. You essentially advocate that the same pseudonym be used every time. This does not prevent a Man-in-the-middle attack on the initial connection. My point about key revocation is that OpenPGP supports authentication mechanisms that Bitcoin addresses do not. Bitcoin addresses don't support key revocation because addresses are supposed to be single-use. You are advocating not allowing users to change their key since we know people will take care of it. It is a given that users will either loose their keys or have them compromised. OpenPGP can be easier to use. It is not new and exciting, so it appears few people focus on it. I myself have backed-up my Bitcoin keys in more than one geographic location (something I have not yet done with my OpenPGP keys). However, when I used Eligius, I had to create a new wallet just for being able to use message signing. The software I was using (Sx tools and Multibit) did not support signing arbitrary messages with my existing keys. I found that Eligus's set-up has a glaring weakness as well: mining shares are not signed by the miner (Edit: the block templates are not signed by the pool either). That means that a man-in-the middle can claim an arbitrary portion of your shares. OpenPGP with sub-keys can safely handle that by allowing me to give my mining machine a less-trusted, revocable key. If Bitcoin addresses are used, you need to keep the private key for your mining income in the miner's memory 24/7. Title: Re: Blockchain as login system Post by: franky1 on July 11, 2014, 07:08:33 PM i read alot of blah..
ok yet again.. bitcoins are NOT suppose to be use once. as this is how people get donations, by putting one address on a page and receive multiple donations. the only purpose Luke-Jr is strongly advocating single use is more to do with adding data bloat to transactions so that he gets a fat fee when his pool mines transaction.. yes if your a paranoid person that wants to do illegal stuff, fine use single addresses. but it is not an absolutely needed rule for everyone to use.. secondly have you ever used a website that once logged in, you go to your profile and you change your profile picture, change your email, home address, etc... there is nothing stopping a service allowing people to change their bitcoin address in the same way.. just like changing your password it will ask you to validate new address change by asking you to sign message of old address then it would accept the new address. its just that simple... Title: Re: Blockchain as login system Post by: Peter R on July 11, 2014, 07:21:30 PM The problem with the random challenge is that the user does not know what they are signing: they may think they are signing into one website, while they are really signing into another. It may not even be a sign-in: the signature may be authorizing a large movement of funds. For example, a raw transaction script will look like noise to most Bitcoin users. This is why bitcoin-signed messages are prepended with a fixed-string prior to signing. The fixed string is the byte '0x18' appended with "Bitcoin Signed Message:\n". You can confidently sign any piece of data using the bitcoin-signed message protocol without risk of being tricked into signing a bitcoin transaction. Here is the original thread: https://bitcointalk.org/?topic=6428.0 The other point about a man in the middle sending you a nonce from a different site is a valid concern. But this can be eliminated with two-way authentication (you authenticate the site prior to signing the nonce). Title: Re: Blockchain as login system Post by: franky1 on July 11, 2014, 07:37:15 PM The problem with the random challenge is that the user does not know what they are signing: they may think they are signing into one website, while they are really signing into another. It may not even be a sign-in: the signature may be authorizing a large movement of funds. For example, a raw transaction script will look like noise to most Bitcoin users. This is why bitcoin-signed messages are prepended with a fixed-string prior to signing. The fixed string is the byte '0x18' appended with "Bitcoin Signed Message:\n". You can confidently sign any piece of data using the bitcoin-signed message protocol without risk of being tricked into signing a bitcoin transaction. Here is the original thread: https://bitcointalk.org/?topic=6428.0 The other point about a man in the middle sending you a nonce from a different site is a valid concern. But this can be eliminated with two-way authentication (you authenticate the site prior to signing the nonce). good idea.. the site also having an address that you verify.. hmmm imaginging the feasibility.. website signs a message using their privkey, you verify it. then you sign that message using your privkey for them to verify... nice anti phishing measure :D Title: Re: Blockchain as login system Post by: phillipsjk on July 11, 2014, 07:37:57 PM i read alot of blah.. ok yet again.. bitcoins are NOT suppose to be use once. as this is how people get donations, by putting one address on a page and receive multiple donations. the only purpose Luke-Jr is strongly advocating single use is more to do with adding data bloat to transactions so that he gets a fat fee when his pool mines transaction.. yes if your a paranoid person that wants to do illegal stuff, fine use single addresses. but it is not an absolutely needed rule for everyone to use.. Again, (https://bitcointalk.org/index.php?topic=654937.msg7599233#msg7599233) address re-use does not avoid block-chain bloat. Because I use the slightly risky sx tools, transaction construction details are not hidden from me (https://sx.dyne.org/offlinetx.html). 10 inputs to 1 transaction will take the same amount of space: no matter if 1 or 10 addresses are used. Quote secondly have you ever used a website that once logged in, you go to your profile and you change your profile picture, change your email, home address, etc... there is nothing stopping a service allowing people to change their bitcoin address in the same way.. just like changing your password it will ask you to validate new address change by asking you to sign message of old address then it would accept the new address. its just that simple... Yes, key rotation is important. A Naive implementation will use the public key hash (address) as a universal identifier. This breaks if you want to change your address, because such identifiers must: exist, be unique, and not change over time. As far as I know, Eligius does not allow you to change your address. Title: Re: Blockchain as login system Post by: Peter R on July 11, 2014, 07:43:09 PM The problem with the random challenge is that the user does not know what they are signing: they may think they are signing into one website, while they are really signing into another. It may not even be a sign-in: the signature may be authorizing a large movement of funds. For example, a raw transaction script will look like noise to most Bitcoin users. This is why bitcoin-signed messages are prepended with a fixed-string prior to signing. The fixed string is the byte '0x18' appended with "Bitcoin Signed Message:\n". You can confidently sign any piece of data using the bitcoin-signed message protocol without risk of being tricked into signing a bitcoin transaction. Here is the original thread: https://bitcointalk.org/?topic=6428.0 The other point about a man in the middle sending you a nonce from a different site is a valid concern. But this can be eliminated with two-way authentication (you authenticate the site prior to signing the nonce). good idea.. the site also having an address that you verify.. hmmm imaginging the feasibility.. website signs a message using their privkey, you verify it. then you sign that message using your privkey for them to verify... nice anti phishing measure :D https://bitcointalk.org/index.php?topic=557037.0 ^^I haven't read through this thread in detail myself, but EricKennedy is actively working on such login systems (I'm not sure of the implementation details). He calls it BitID. Title: Re: Blockchain as login system Post by: franky1 on July 11, 2014, 08:01:56 PM Again, (https://bitcointalk.org/index.php?topic=654937.msg7599233#msg7599233) address re-use does not avoid block-chain bloat. Because I use the slightly risky sx tools, transaction construction details are not hidden from me (https://sx.dyne.org/offlinetx.html). 10 inputs to 1 transaction will take the same amount of space: no matter if 1 or 10 addresses are used. say i received.. 100 transactions of 0.01btc.. to 1franky1blahblahblah. now for me to send the total of that to someone else. my transaction out would be from: 1franky1blahblahblah signature: skgdkf;djgsdkfj;sdkf;df;dlfk;adlkfg;dkfjg;dlkfgj;dsfk value: 1btc to: 1whomeverwantsitblahblah blah now say each of those 100 transactions came to my 100 different addresses.. now for me to send out 1btc total that is then 100 signatures, 100 from addresses.. meaning im now above the limit of sending a free tx and have to pay a fee!!! Yes, key rotation is important. A Naive implementation will use the public key hash (address) as a universal identifier. This breaks if you want to change your address, because such identifiers must: exist, be unique, and not change over time. As far as I know, Eligius does not allow you to change your address. quite funny how you mention that eligius (aka luke jr) allows its users to receive fresh mined coins to a single address that oes not change but tells other people they have to bloat their transactions up and pay fee's by changing addresses per receipt of a coin.. that is a very funny point you made. the reason eligius doesnt change keys is to ensure the person that registered it gets th reward and that a hacker doesnt change the address to his own destination. its got nothing to do with key weakness.. if a login system has tight and secure way to verify the change is done by the actual user you can chage anything, username, passwords, email addresses, avatars, etc.. but eligius didnt want to add such secure coding, just a basic add address registration script and that is it. but any service can add a "edit profile" script and have it able to change anything it likes. so if one day i wanted to change my known public address to a service that uses bitcoin signature logins. i simply log-in as usual. go to profile, edit bitcoin address. it will prompt me to type in new address twice to be sure of spelling. then (like the old days of changing password) it would ask me to verify old address to be sure i am who i am before accepting the change. to add to it, it may also ask to verify new address as a way to ensure i input the new address properly, by signing a message with the new address aswell as the old address. im failing to see what your problems are Title: Re: Blockchain as login system Post by: franky1 on July 11, 2014, 08:10:59 PM https://bitcointalk.org/index.php?topic=557037.0 ^^I haven't read through this thread in detail myself, but EricKennedy is actively working on such login systems (I'm not sure of the implementation details). He calls it BitID. kind of the idea. but i prefer that each service runs decentralised. where i can hav the freedom to make an address and label it "bitcoin talk login" and have another address for an exchange i use and label it "exchange login" then i can be in full control of my #passwords# in MY WALET rather then using a service that is much like google login or facebook login where they control it.. im not saying bitID is bad in any way.. but if needing to log-in using a third party then you might aswell just use facebook or google.. i prefer to reply on third parties as least as possible. just look at the guy today that lost over 1000 btc because of drop box storing his password (third party security i am not into which is why registering a key with a pgp server is also third party, i prefer to keep my security "in-house") Title: Re: Blockchain as login system Post by: phillipsjk on July 11, 2014, 09:28:44 PM say i received.. 100 transactions of 0.01btc.. to 1franky1blahblahblah. now for me to send the total of that to someone else. my transaction out would be from: 1franky1blahblahblah signature: skgdkf;djgsdkfj;sdkf;df;dlfk;adlkfg;dkfjg;dlkfgj;dsfk value: 1btc to: 1whomeverwantsitblahblah blah now say each of those 100 transactions came to my 100 different addresses.. now for me to send out 1btc total that is then 100 signatures, 100 from addresses.. meaning im now above the limit of sending a free tx and have to pay a fee!!! That would make sense if Bitcoin addresses actually held balances: they don't. (Mastercoin uses a balance-based approach). Instead, Bitcoin works by spending "coins" that have a specified value. You can only spend whole coins at once (whose value can be any number of satoshies). Bitcoin transactions have a series of inputs and outputs. your example would look more like: Code: james@torchlight:~/coinjoin$ sx newkey > frank1.key The signature size my vary a little bit with different addresses, but it should average out. Here is a real example There are only 7+2 addresses present, yet the transaction is still over 5kB due to the large number of inputs. Second example 6 inputs, 2 outputs, all using different addresses (1kB): a74c774777510783e438a3ede0c4e83de29c2d73f0e77b73bf0c1a922fea9102 (https://blockexplorer.com/tx/a74c774777510783e438a3ede0c4e83de29c2d73f0e77b73bf0c1a922fea9102) Title: Re: Blockchain as login system Post by: laurentmt on July 12, 2014, 03:26:53 PM kind of the idea. but i prefer that each service runs decentralised. where i can hav the freedom to make an address and label it "bitcoin talk login" and have another address for an exchange i use and label it "exchange login" then i can be in full control of my #passwords# in MY WALET rather then using a service that is much like google login or facebook login where they control it.. So you should really like BitId since it does not rely on any third party to log-in and is completely decentralized ! The keypairs used for auth are generated and managed by user's wallet. If not already done, you should try Dark Wallet alpha5 (integrates BitId and is really fast to install) and test it against this demo website (http://bitid.bitcoin.blue/)im not saying bitID is bad in any way.. but if needing to log-in using a third party then you might aswell just use facebook or google.. i prefer to reply on third parties as least as possible. just look at the guy today that lost over 1000 btc because of drop box storing his password (third party security i am not into which is why registering a key with a pgp server is also third party, i prefer to keep my security "in-house") Imho, in the future, BitID could be extended in order to propose authentication using more centralized identity systems (like SINs (https://en.bitcoin.it/wiki/Identity_protocol_v1)) for people who want to authenticate with a unique identity, whatever the website. But in its core, BitId will always provide the decentralized option and the possibility to anonymously log-in to a website. I guess this is one of the reasons why dark wallet has integrated BitId ;) Title: Re: Blockchain as login system Post by: fullintegrity on July 12, 2014, 04:02:09 PM Hi all, new poster and miner here, have had ok luck, (yeah i see diff level) on other pools, but want to spread it out so to speak.
2 questions: Is it ok to use Eligius and mine to my blockchain public address? I am still massively confused about the signing messages part of eligius. Normally i have been just mining and not had to do the sign messages part, since mining to other btc addys seems to be fine.... Thanks for any help you got. :-\ Title: Re: Blockchain as login system Post by: franky1 on July 12, 2014, 04:20:56 PM So you should really like BitId since it does not rely on any third party to log-in and is completely decentralized ! my initial understanding months ago was that bitID was going to be a service on a website (much like these password storage services and others like blockchain.info offers address tagging, google and facebook, identity logins).. but to my astonishment i learnt today that bitID is absolutely the method of using an address i own as the log-in.. brilliant. laurentmt you are correct, i do like it. and i think the link you provided is the great example of the idea in working order. all it needs to satisfy philipsjk, is a profile page (username needed) where people can change the bitcoin address associated to the username. that way people can type in a username and then sign the "challenge string" without needing to also paste a message and address. but to me this working idea is better then usernames and passwords which are fixed everytime. so thank you for posting the working demo laurenmt. separate subject: one step closer to the next idea that should come soon.. where mobile apps dont connect to web services to store bitcoin privkeys or use web services to form transactions.. but a simple mobile app that from the phone can sign a raw transaction. and then send the signed bitcoin transaction to all the pools/service relays (PUSHTX portals) thus not needing online webwallets.(hardware and litewallet applications) 2014 the year of the multisig, and single signature applications Title: Re: Blockchain as login system Post by: laurentmt on July 12, 2014, 05:09:20 PM my initial understanding months ago was that bitID was going to be a service on a website (much like these password storage services and others like blockchain.info offers address tagging, google and facebook, identity logins).. but to my astonishment i learnt today that bitID is absolutely the method of using an address i own as the log-in.. BitId has got some press coverage a few months ago. It was nice but there was some misunderstandings about the protocol : BitId is not centralized, BitId is not a startup and is in fact very open: everybody is welcome to contribute ideas or code and to shape what the protocol will be.brilliant. laurentmt you are correct, i do like it. and i think the link you provided is the great example of the idea in working order. all it needs to satisfy philipsjk, is a profile page (username needed) where people can change the bitcoin address associated to the username. To my knowledge, it was not implemented in demo apps but it's for sure doable.There's also a few improvements which have been discussed / proposed (github & forum thread) but which have not been implemented for now: - decentralized management of personal data and transfer to websites, when desired. - integration of BitId with the payment protocol, - ... Title: Re: Blockchain as login system Post by: phillipsjk on July 13, 2014, 02:57:44 AM brilliant. laurentmt you are correct, i do like it. and i think the link you provided is the great example of the idea in working order. all it needs to satisfy philipsjk, is a profile page (username needed) where people can change the bitcoin address associated to the username. To my knowledge, it was not implemented in demo apps but it's for sure doable.There's also a few improvements which have been discussed / proposed (github & forum thread) but which have not been implemented for now: - decentralized management of personal data and transfer to websites, when desired. - integration of BitId with the payment protocol, - ... I don't think changing addresses the way franky1 describes is doable for a specific technical reason. Primary database keys must:
That is why Eligius does not let you change your payment address: it is being used as a database key. Assigning the proceeds of one address to another also opens them up to fraud. Of course, the |