 Show Posts
|
|
Pages: [1]
|
|
1
|
Bitcoin / Development & Technical Discussion / Taproot and Schnorr
|
on: December 06, 2020, 08:52:35 AM
|
|
Hello! My sincere apologies for creating so many topics on my queries but I figured it'll be best if I could clarify my doubts and leave it open to the others as well.
So here goes:
My understanding of Schnorr and Taproot is that it alleviates the problems associated with multisig like it's lack of privacy as well as space. They allow the signatures of the multiple keys to be congregated into a single signature. But if the several signatures can be congregated into one, why can't it be used to reduce transaction size by aggregating the multiple signatures of several unspent transaction outputs into a single one? Surely if it can combine signatures of multisig, it could combine the individual signatures used to sign a normal transaction with many inputs?
|
|
|
|
|
2
|
Other / Beginners & Help / About Segwit
|
on: December 06, 2020, 04:04:52 AM
|
|
I have taken the initiative to read up on the scripting of the standard Bitcoin transactions but I do not really understand how beneficial segwit is to bitcoin. For one, I understand that segwit is primarily a backwards compatible increment of the block space as it strips the signature data and put it into the witness.
I am aware of the new virtual bytes or the weight units that are associated with the transactions. However, I do not understand how there are some claims that segwit also helps to make the transaction smaller. As segwit transactions includes the witness as well as the scripts that are used for regular transactions, does it make the transaction bigger than P2PKH or P2SH transactions?
If so, it is less of an optimization and more of a block size increase right?
|
|
|
|
|
3
|
Bitcoin / Development & Technical Discussion / Clarifications on RFC 6979
|
on: December 05, 2020, 12:45:24 PM
|
|
Hello all!
I have read the whitepaper and some of the more indepth aspects of Bitcoin. I have come across the implementation of RFC 6979. As far as I can tell, the motivation behind it is to eliminate the randomness of the PRNG being a weak link and resulting in the 'r' values being reused in subsequent signatures.
I have a few questions :
How does RFC 6979 ensure that the generation of the initial seed(?) to be random? Is this being implemented during the generation of the hierarchical deterministic seed to ensure randomness of the seed? To what extent is it effective if, lets say the source of the randomness is weak? Does Bitcoin Core use this, and if it does, can someone point me to the segment which this is implemented?
Thank you in advance.
|
|
|
|
|
