Bitcoin Forum

Bitcoin => Development & Technical Discussion => Topic started by: jubalix on January 05, 2018, 12:26:40 PM


Title: Does repeatedly signing the same address weaken it?
Post by: jubalix on January 05, 2018, 12:26:40 PM
If you sign the same address repeatedly the security?

and/or if you sign messages with the same address priv key as well does this weaken the security

if so...by how much?





Title: Re: Does repeatedly signing the same address weaken it?
Post by: ranochigo on January 05, 2018, 01:37:15 PM
It does not, if your wallet creates the signature correctly.

When you spend the transaction/sign a message, you are giving out the public key only, together with the public key. The signatures are signed using ECDSA. As of now, the repeated signing of a signature using the private key does not weaken the address by any extent. However, it would be a different story if your client is flawed. If your client generates the same "K" value for each signature, it is possible to derive the private key using the public key. If quantum computing were to be more advanced, it can potentially break ECDSA.

I've had addresses which were used for more than 3 years, with 700+ transactions and nothing happened. I trust ECDSA to be safe enough, at least for now. The only concerns regarding address reuse is privacy.

Title: Re: Does repeatedly signing the same address weaken it?
Post by: jubalix on January 06, 2018, 09:06:07 AM
Quote from: ranochigo on January 05, 2018, 01:37:15 PM
It does not, if your wallet creates the signature correctly.

When you spend the transaction/sign a message, you are giving out the public key only, together with the public key. The signatures are signed using ECDSA. As of now, the repeated signing of a signature using the private key does not weaken the address by any extent. However, it would be a different story if your client is flawed. If your client generates the same "K" value for each signature, it is possible to derive the private key using the public key. If quantum computing were to be more advanced, it can potentially break ECDSA.

I've had addresses which were used for more than 3 years, with 700+ transactions and nothing happened. I trust ECDSA to be safe enough, at least for now. The only concerns regarding address reuse is privacy.

Thanks!


Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines