|
i think you are confused about what bitcoin is and what it isn't.
bitcoin is a currency, it is NOT a charity to give away free money to the poor. it is not supposed to create "free" or easy ways of anybody to mine it and earn bitcoin. you have to do "hard work" to earn bitcoin and the more valuable it gets the more work you have to do. and that work is increasing by difficulty and is the computing power you spend with your device. whether that device is a GPU or an ASIC is not going to make a difference. ASIC is not some evil creation it is just like CPU, GPU,... but it is re purposed to do only one special thing in an efficient way.
|
|
|
|
|
does this company (CipherTrace) do anything useful other than releasing nonsense statistics every couple of days? i mean we get it, they have started a new company and working on blockchain analysis but advertising their services like this with meaningless numbers that most of the times are wrong (like their stats on usage of bitcoin for illegal activities) is only going to be bad for their business.
|
|
|
|
@pooya87: I didn't mean to send it to an address owned by a family member. The private key is stored in the paper wallet accompanying the signed message.
i guess i missed that. i thought the paper wallet was the cold storage. removed my post because the solution makes sense now  i still think playing with SIGHASH types is a cool way of doing it though. |
|
|
|
@ pooya87 - your proposed solution will not be provably fair, and is described in the OP's other thread. In your example, if Alice is a sockpuppet of the casino, it could wait until Bob reveals his seed based if the three combined seeds are a winning hand for the casino. as i explained in condition 3, the player that refuses to reveal its seed is disqualified and if games on such casino have more occurrence of something like this then the game and the casino will lose its reputation and nobody will play there anymore. besides what is being explained here could be the case with any game not just this. for example in dice if you roll something that is supposed to win you a big reward the casino can show you an error saying something unknown went wrong instead of revealing their seed and giving you the number and reward. they wouldn't need a third player "sockpuppet" either. |
|
|
|
since you love the bullshit different people say about bitcoin i am sure you will love this website: https://99bitcoins.com/bitcoin-obituaries/it is the list of all the bullshits that they have been saying about bitcoin for many years starting from 2010, it doesn't include all of them but has the biggest ones that make noise happy reading. |
|
|
|
|
well when you start with altcoins and tokens that is the experience you are going to get! over in the altcoin market everyone is just trying to earn more money and to do that they have succumb to creating garbage and selling it to the newcomers by advertising the shit out of it. consequently you shouldn't expect anything more than that from altcoins either, if you do, you will be disappointed.
start from bitcoin and stick to that as a beginner and you will see how your entire experience is going to be different.
as for your new reddit sub, i don't like it because it has a lot of altcoin stuff in it, specifically ICOs (with all their alternative names). as i said beginners must stick to bitcoin then if they liked, move on to altcoins after they gained some insight.
|
|
|
|
|
if you want increased usage then it is not a question of "where" but a question of people themselves and their willingness to spend bitcoin. i think that is the first step otherwise as long as people who own bitcoin don't want to spend it, then it won't matter where it is accepted as payment, they won't use it!
that willingness comes from price stability in my opinion which means we may be away from that target by at least a decade because price will continue rising for that long at least and that rise makes it remain volatile too.
another incentive would be lower fees. for example during 2017 Steam stopped accepting bitcoin payments because the fees were higher than most of the games they were selling! and we don't want that.
|
|
|
|
With halving expected in May 2020, Bitcoin is building up momentum to rise to the next level. Bitcoin bulls tout rising hash rate, halving reward, lightning network, global instability as major reasons for price appreciation.
the only thing that has ever led to any major price rising and will continue to do so is real adoption of bitcoin in real world as a currency. the rest such as halving, LN stats,... are short term hypes. and hashrate of all things has nothing to do with leading to price rise, it changes based on price not the other way around. in short what you are explaining here as something needed for the future has been happening all along but on a smaller scale. The 2018 bull run was catalyzed with altcoins and ICOs.
first of all it was 2017 not 2018. secondly ICOs had nothing to do with bitcoin, people bought ETH to invest in ICOs and that is why it got pumped up to 0.15 BTC and that is why ETH got dumped hard 90% as they died without recovering. When they need to spend, they use or convert the needed amount of Bitcoin.
that doesn't make bitcoin centralized! that only shows that the mass adoption has not yet happened so people still have to convert their bitcoin to another currency to use. and that is not always the case though, there still are a lot of places where they can spend and are spending their bitcoins directly. Can Bitcoin ever be used for direct spending?
I think the answer is mostly No. The reason for it is mostly psychological.
well when we are theorycrafting anything is possible but the real question is how close to reality are our theories. to answer that you'll have to check the stats. one thing i like to quote is the annual stats that BitPay (a bitcoin payment processors for merchants) reports. it always shows a great annually increase in amount of bitcoin they process. and the interesting part is that it shoots up during price rises. A crypto currency for spending gets users familiar with crypto software. User can swap between Bitcoin Store of Value (saving) and spending coins. Spending tokens are also less valuable than bitcoins. Account separation provides additional layers of security and peace of mind.
then you just removed one problem and replaced it with the same problem but with a different face. your arguments started with people who convert their bitcoin to fiat and then spend that. now you are saying they should convert it to another cryptocurrency and spend that. the way i see it, this is the same problem! |
|
|
|
|
one issue you will face is when you switch between step 2 and 3.
in one of your comments you said you expect 10% (maximum 30%) return in a year as net profit. but the switch you are making is practically from a 10%-30% in a month. for example bitcoin went up 2100% in 2017 alone. this year it has gone up >250% in 6 months. making that kind of switch requires sticking to a solid plan and not getting greedy for more profit as you would be reducing it significantly.
|
|
|
|
all the secrets lie in the bytes if you look under the hood! as the other poster said these are Omni layer transactions. the way to recognize them is first their OP_Return output which you would see as a red text on blockchain.com saying "Unable to decode output address" but looking under the hood you could see the output is this: 6a146f6d6e69000000000000001f0000000e45c3c500
the initial 4 bytes being 6f6d6e69 is an indicator of Omni in case you are more interested: 6f6d6e69 Omni marker 0000 version 00000000001f tether marker 0000000e45c3c500 amount = 61,300,000,000 |
|
|
|
Assuming the server seed commitment is known before placing a bet, the server can't alter the outcome in any way. Is is the idea that a server could predict betting patterns for an individual user (and shuffle cards / pick numbers accordingly)? That's the only thing I could think of which a client seed does prevent.
Yes, gamblers tend to be very predictable in their bets. If the gambler has the opportunity to add unique random data to the calculation of the result, the casino cannot predict the outcome of the bet ahead of time. I see, so my assumption was correct. I just wanted to make sure it didn't serve some other purpose I hadn't thought of. I am actually developing a multi party provably fair scheme (e.g. multiple players betting on the same "roll") but I'm slowly coming to the realization it might be impossible  At least, not the perfect fairness that 2 party schemes enjoy. continued: https://bitcointalk.org/index.php?topic=5179222.msg52280258but there are no "patterns" to predict in these games that involve randomness (dice, random card pick, coin flip) not choice (poker). you are supposed to have come up with a random number that neither one of the people involved in it could predict. so they split the "input" into two parts, and that is why client seed exists. as for your topic it seems to me that doing these three would solve the issue: 1. every player deposits his money with the house first (as they do with any other game like dice) so that they couldn't disconnect and run away from the unfavorable game 2. each party shares the hash of their seed before sharing the real seed. so that they couldn't change it and also so that sharing it wouldn't make it possible for others to calculate the final result. 3. a deadline to reveal the real seed. if any player fails to provide it in that time frame they are disqualified and the game will continue with the remaining players. example: hash sharing stage: house: 58d2691facf7a8f32a321b7733a72fb3868c0cacb3a6ed39ff517b3e156694e6
Alice: 6778de0d2f12a06b2642e070bdbdac0c9198b0220e4a1a04848512b20ce3888f
Bob: 9b72133b264d521ec5ccf4a28b0d9eac765d37c8336d6ba0c46e29afd43d5430
move to real seed sharing: this is house seed
The Alice SEED
and finallly bob's seed
compute the final hash: Keccak_256(this is house seed The Alice SEED and finallly bob's seed) =
d7b35184cf3c0386ce56c532e0e6dd46cfee4f0ed16f1d24240106b91e50b854
i also changed the final hash to eliminate any possibility of exploit! |
|
|
|
If it were that easy, I wouldn't have asked the question in the first place as I've been banging my head against the Internet for over a year trying to figure this algorithm out.
To help your understanding, the word Algorithm means "a step by step procedure to solve a problem from the beginning to the end," and not, look here and here and here and here and try to figure it out.
well the problem is that the algorithm is complicated and long to explain step by step. and you didn't ask for that kind of explanation in your initial question which is why the type of response you've gotten is "look here and there" additionally these are resources that explain the algorithm a lot better than we can do. usually you have to first look at them then ask about only parts that you don't get not from scratch. How about I make the challenge interesting and offer $250 USD in BTC at the Bitstamp current market price based on the date that the correct and complete algorithm is submitted here?
alright, challenge accepted! LOL (you can skip to step 4.1 if you don't have the mnemonic) 1. using PBKDF2 (RFC8018) derive the BIP32 entropy from the mnemonic byte[] pass = UTF8_Decode(mnemonic)
byte[] salt = UTF8_Decode("mnemonic" + passphrase)
Bip32_entropy = PBDKF2.GetBytes(pass, salt, c=2048, dkLen=64, PRF=HMACSHA512)
2. use the entropy to get the private key and chain code for the master private key byte[] ba512 = HMACSHA512(data=entropy, key=UTF8_Decode("Bitcoin seed"))
byt[] firstHalf = ba512.SubArray(startIndex=0, count=32)
byt[] secondHalf = ba512.SubArray(startIndex=32, count=32)
int256 k = firstHalf.ToInt(BigEndian=true)
if (k == 0 OR k > Secp256k1.Order)
fail;
else
continue;
byte[] privateKey = firstHalf
byte[] chainCode = secondHalf
int depth = 0
ParentFingerPrint = {0,0,0,0}
ChildNumber = {0,0,0,0}
3. choose a desired path m/49'/0'/0'/0/0 4. derive child keys step by step for each index in the path (`|` is concatination) - we already have m - 49' (index=49 + 2^31) - 0' (index=0 + 2^31) - 0' (index=0 + 2^31) - 0 (index=0) loop for each index above: if(index > 2^31)
byte[] dataToHash = 0x00 | privateKey | (index).ToBytes
else
byte[] pubKeyBytes = privateKey.ToPublicKey.TobytesCompressed
byte[] dataToHash = pubKeyBytes | (index).ToBytes
byte[] ba512 = HMACSHA512(data=dataToHash, key=chainCode)
byt[] firstHalf = ba512.SubArray(startIndex=0, count=32)
byt[] secondHalf = ba512.SubArray(startIndex=32, count=32)
int256 k = privateKey.ToInt
k = k + firstHalf.ToInt(BigEndian=true) MOD Secp256k1.Order
if (k == 0)
fail;
else
continue;
byte[] privateKey = firstHalf
byte[] chainCode = secondHalf
int depth = depth + 1
4.1. the case for not having the mnemonic and only having the extended public key at index m/49'/0'/0'/0 (bold part above) and wanting to derive the /0 and /1 and /2 etc public keys byte[] ba78 = Base58WithChecksum.Decode_Check_and_removeChecksum(ypubString)
byte[] ver = ba78.SubArray(0,4)
check(ver == SLIP0132_version)
byte depth = ba78.SubArray(4,1)
check(depth == depthOfTheCurrentIndex)
byte[] pubKeyBytes = ba78.SubArray(45, 33)
check(pubKeyBytes[0] != 0)
for final index: - 0 if(index > 2^31)
fail;
else
byte[] dataToHash = pubKeyBytes | (index).ToBytes
byte[] ba512 = HMACSHA512(data=dataToHash, key=chainCode)
byt[] firstHalf = ba512.SubArray(startIndex=0, count=32)
EllipticCurvePoint p = (firstHalf.ToInt(BigEndian=true) * Secp256k1.Generator) + (pubKeyBytes.ToEllipticCurvePoint)
note: `*` and `+` in last line above are point multiplication and point addition on an elliptic curve! 5. getting public key Check(p is on Secp256k1 curve)
publicKey pub = p
6. getting the address: keyhash = RIPEMD160(SHA256(pub))
redeemScript = OP_0 <keyhash>
scriptPubKey = OP_HASH160 RIPEMD160(SHA256(redeemScript)) OP_EQUAL
checksum = SHA256(SHA256(0x05 | RIPEMD160(SHA256(redeemScript)))).SubArray(0,4)
address = Base58Encode(0x05 | RIPEMD160(SHA256(redeemScript)) | checksum)
example: pub = 039b3b694b8fc5b5e07fb069c783cac754f5d38c3e08bed1960e31fdb1dda35c24
keyhash = f990679acafe25c27615373b40bf22446d24ff44
redeemScript = 0014f990679acafe25c27615373b40bf22446d24ff44
scriptPubKey = a9143fb6e95812e57bb4691f9a4a628862a61a4f769b87
checksum = ca97ac44
address = Base58Encode(053fb6e95812e57bb4691f9a4a628862a61a4f769bca97ac44) = 37VucYSaXLCAsxYyAPfbSi9eh4iEcbShgf
good luck  |
|
|
|
a block explorer is not a proof of ownership. anybody can choose any address with any balance and claim to own it. you need to sign a message from that key to prove that you actually own that address. as for the site itself, using a free host/domain simply means nobody will trust you enough to pay to play a game that may not even be well designed (the riddles may not be solvable!) specially since you have no prior history either. |
|
|
|
|
the roll results are the result of a hash digest acquired from a hash function. what you feed to that hash function determines the result. so the point of these systems is to come up with a message (to be hashed) which is a concatenation of two or more parts that neither party could predict the result to.
so what the server does is that it generates a random seed, then doesn't reveal that to you. it only reveals the hash of it. this ensures that the server can not decide to change it later but at the same time you will not know what the seed is so you also can't predict the result of the final hash (like keep selecting different seeds to come up with your desired result and then publish your own seed).
then you come up with a seed and share it with the server, it combines your seed with their seed and runs the hash algorithm on it to come up with the final result. then they publish both final result and the seed so you could now verify it.
by the way, it might be a typo but the term is "provably" meaning "capable of being proved" not probably.
|
|
|
|
I don't like BTC paper wallet because of the possibility of losing it or it gets too damaged for me to read it.
then use something else to "print" on. even laminating the paper would increase its durability but you could use a metal plate and engrave your mnemonic on it. there are also already available tools such as Cryptosteel that you could use to make it easier. Now, here is my solution. I can create a private key using 20 words. And I can make the last 5 words something only I know. I can email my family (and myself) the first 15 words. Then, I can email them the clues of my last 5 words. Of course, I have to do a damn good job that only the ones I fully trust know the answers. So, I guess my method is 3/4 paper - 1/4 brain wallet?
I would appreciate some feedback on this idea of mine.
the problem with paper wallets in general is similar to the problem with choosing a password. people (most of the times) are always choosing things that are weak. take a look at this topic to get the gist of what i am saying: https://bitcointalk.org/index.php?topic=4768828.0as for your idea, it is two parts: - choosing the words. this is the same risk as i just mentioned, lack of "randomness". besides if you are actually writing them down, even if it is only a part of it, that defeats the "brain wallet" thing. stick to BIP39 and choose 24 words and let the wallet generate a good entropy for you. - splitting. based on how the words are chosen, the remaining 5 might be brute forced specially if you are also providing clues on what they are. additionally you should avoid using Emails or anything that has to do with the internet (like a computer that was or is going to be connected to the internet) when you are creating a cold storage. and finally, like i always say: it is best that you don't try to re-invent the methods that already exist and have something to do with cryptography. all those methods (like BIP39) are well designed and have taken a lot of things into consideration. not to mention reviewed by other experts. |
|
|
|
That means 500k bitcoin and that means that craig wright fell to his own lies.
did he "legally" claim to have a certain amount of bitcoin (in this case 1 million) or is it just the assumption? the article on Coindesk[1] only says "50 percent of the bitcoin that Wright held prior to Dec. 31, 2013" without mentioning any numbers. of course i haven't really been following the case, so maybe the value was mentioned before? [1] https://www.coindesk.com/judge-recommends-ruling-in-favor-of-kleiman-in-craig-wright-case |
|
|
|
I created it while I was mining, 17 long prefix.
you do know that the hash algorithm used in mining (which is double SHA256) has nothing to do with the hash algorithm used in generating an address (which is RIPEMD160 of SHA256), right? even if it was an altcoin mining, none of them use HASH160 algorithm for mining! in other words hashes that you compute during mining are not the same algorithm, nor same value nor even the same length. |
|
|
|
|
i don't think leaving trolls alone to spread their misleading nonsense without at least one response is such a good idea, specially when their comments are reported they aren't being removed by mods, or maybe they are in that grey area where you can't just brand them as trolls.
but at the same time feeding the trolls is not a good idea either. they have a way of sucking you into a long discussion without any conclusions.
maybe a balance must be reached, where you don't get sucked in while still not letting them mislead.
|
|
|
|
|
i don't think we can come close to ATH this year because ATH is still considered a very strong resistance and the closer we get the more sell pressure from those who think they made a mistake by buying bitcoin and want out (just like $1200 which was the previous ATH in 2017 before breakout).
and no i don't think we can ever see any pump in bitcoin anymore. the days of "pump" have been over ever since Mt Gox was closed.
we will probably see a more slower rise with some small jumps towards the end of the year and sit somewhere close to $15k+ unless we can see some real differences in the market that could start a big momentum bringing up the price by a lot more.
|
|
|
|
|
Show Posts
