Bitcoin Forum
September 25, 2016, 08:49:27 AM *
News: Due to DDoS attacks, there may be periodic downtime.
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Message Encryption as a built-in feature?  (Read 2907 times)
BrightAnarchist
Donator
Legendary
*
Offline Offline

Activity: 853



View Profile
September 14, 2010, 05:44:11 AM
 #1

Bitcoin clients should have a built in simple message encryption/decryption system, perhaps based off of your actual Bitcoin addresses themselves.

This would make doing trades on sites like biddingpond much easier, since you don't need to both agree on a separate app like PGP before communicating over email.

Most of the time I bet people don't even bother to use encryption, but I think it's a good idea to use it when doing trades in Bitcoins.

Thoughts?
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1474793367
Hero Member
*
Offline Offline

Posts: 1474793367

View Profile Personal Message (Offline)

Ignore
1474793367
Reply with quote  #2

1474793367
Report to moderator
1474793367
Hero Member
*
Offline Offline

Posts: 1474793367

View Profile Personal Message (Offline)

Ignore
1474793367
Reply with quote  #2

1474793367
Report to moderator
1474793367
Hero Member
*
Offline Offline

Posts: 1474793367

View Profile Personal Message (Offline)

Ignore
1474793367
Reply with quote  #2

1474793367
Report to moderator
em3rgentOrdr
Sr. Member
****
Offline Offline

Activity: 434


youtube.com/ericfontainejazz now accepts bitcoin


View Profile WWW
September 14, 2010, 05:56:05 AM
 #2

I like that idea!  Simply integrate an opensource library library like pgp into bitcoin. 

BTW, are the messages attached when sending bitcoins to ip addresses currently clear text or encrypted?

"We will not find a solution to political problems in cryptography, but we can win a major battle in the arms race and gain a new territory of freedom for several years.

Governments are good at cutting off the heads of a centrally controlled networks, but pure P2P networks are holding their own."
theymos
Administrator
Legendary
*
Offline Offline

Activity: 2422


View Profile
September 14, 2010, 12:42:04 PM
 #3

BTW, are the messages attached when sending bitcoins to ip addresses currently clear text or encrypted?

They're not encrypted, and there's no authentication, so you shouldn't send to an IP over the Internet.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
BioMike
Legendary
*
Offline Offline

Activity: 1218


View Profile
September 14, 2010, 04:54:29 PM
 #4

You could attach an already encrypted text to it, right?
theymos
Administrator
Legendary
*
Offline Offline

Activity: 2422


View Profile
September 14, 2010, 05:56:43 PM
 #5

You could attach an already encrypted text to it, right?

You could, but any MITM could modify it / steal your coins...

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
jgarzik
Legendary
*
Offline Offline

Activity: 1470


View Profile
September 14, 2010, 06:58:21 PM
 #6

There should be a UTF8 text field "memo" attached to each transaction.
  • encrypt by default, with payee's public key
  • limit to 256 chars or so
  • optionally disable encryption (similar to Pecunix feature which makes a single transaction publicly visible)

Jeff Garzik, bitcoin core dev team and BitPay engineer; opinions are my own, not my employer.
Donations / tip jar: 1BrufViLKnSWtuWGkryPsKsxonV2NQ7Tcj
theymos
Administrator
Legendary
*
Offline Offline

Activity: 2422


View Profile
September 14, 2010, 07:04:39 PM
 #7

You could use your Bitcoin keys for authentication, but ECDSA doesn't support encryption.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
Gavin Andresen
Legendary
*
Offline Offline

Activity: 1652


Chief Scientist


View Profile WWW
September 14, 2010, 07:35:34 PM
 #8

encrypt by default, with payee's public key
... but a payer typically has only the bitcoin address, and not the payee's full public key.  There'd have to be some way to get the full public key for a bitcoin address.

I like the idea of being able to send encrypted messages to "whoever has bitcoin address BLAH", but I'm not sure that functionality should be piggybacked on the "send BLAH X.YZ bitcoins".

If they were implemented under the covers as separate functions, then a "Send a message along with payment" could easily be implemented as:
  1. Send BLAH X.YZ bitcoins, and note the transaction ID.
  2. Send BLAH an encrypted message:   "txid:{transaction_id}:Please send the sixteen My Little Pony DVDs to..."

How often do you get the chance to work on a potentially world-changing project?
teppy
Full Member
***
Offline Offline

Activity: 183


View Profile
September 15, 2010, 02:09:55 PM
 #9

I've been wanting something like this since day 1.

A Tale in the Desert V accepts Bitcoins now. Each month, the procedure is:

1. Player clicks an in-game menu item "Pay for my subscription using Bitcoins." A unique address is created.
2. The game says "Send 150BTC to this address: xxxxxxx" (There's a "Copy to Clipboard" button on the dialog.)
3. The player sends the BTC
4. The player clicks "I have sent the Bitcoins." (System then verifies and activates account.)

The procedure only takes 15-30 seconds total - probably quicker than typing in a credit card number. However, with the ability to attach a message, the procedure becomes:

1. Player sends 150BTC to the standard ATITD Bitcoin address with his character name in the message field.
2. Player clicks "I have sent the Bitcoins." (System then verifies and activates account.)

We already have a couple players using Bitcoins to pay for subscriptions. One has generated his BTC, and the other has purchased some on one of the markets.

Dragon's Tale is the longest running Bitcoin enterprise in the world.
Insti
Sr. Member
****
Offline Offline

Activity: 294


Firstbits: 1duzy


View Profile
September 15, 2010, 03:55:42 PM
 #10

However, with the ability to attach a message, the procedure becomes:

1. Player sends 150BTC to the standard ATITD Bitcoin address with his character name in the message field.
2. Player clicks "I have sent the Bitcoins." (System then verifies and activates account.)

We already have a couple players using Bitcoins to pay for subscriptions. One has generated his BTC, and the other has purchased some on one of the markets.

If you don't cheat and leave out steps the procedure is:

1. Player finds the standard ATITD Bitcoin address somehow. (and still needs to copy/paste it.)
2. The player enters his username.
3. The player sends the BTC
4. Player clicks "I have sent the Bitcoins." (System then verifies and activates account.)

I don't see how this is an improvement.

(Step 4 in both cases would seem to be redundant if your system is watching bitcoin transactions.)

Edit:
I'm not sure what is so great about having a single Bitcoin address to receive payments from everybody, since you still need a reference ID of some kind. When individual Bitcoin addresses are trivial to generate. (But you are actually running a service that accepts Bitcoins, so you probably know more than I do.)


teppy
Full Member
***
Offline Offline

Activity: 183


View Profile
September 15, 2010, 06:08:46 PM
 #11

It's an improvement because payments can be made without running the game software, or made on behalf of other players (which is common in our game at least), or made for several secondary accounts quickly (also which is common in our game.)

Though it doesn't apply to ATITD, it would also strengthen anonymity for those who need it: A website could be set up on a static datastore like Freenet, rather than requiring a live network like Tor.

Dragon's Tale is the longest running Bitcoin enterprise in the world.
Anonymous
Guest

September 16, 2010, 01:26:38 AM
 #12

    A secure messaging system could have other benefits. The problem of spam is increased because it costs nothing to send email. A short message service that you needed to pay a few bitcoins for to send a message might revolutionise sms or email for those who are tired of sorting viagra and nigerian scam emails all day long.

 Cheesy
em3rgentOrdr
Sr. Member
****
Offline Offline

Activity: 434


youtube.com/ericfontainejazz now accepts bitcoin


View Profile WWW
September 16, 2010, 01:37:43 AM
 #13

    A secure messaging system could have other benefits. The problem of spam is increased because it costs nothing to send email. A short message service that you needed to pay a few bitcoins for to send a message might revolutionise sms or email for those who are tired of sorting viagra and nigerian scam emails all day long.

 Cheesy

Great point...I've heard something called hashcash does this for email.  But with bitcoin, one can additionally prioritize messages: .g. the message with 10 BTC attached to it is probably more important than the message with .01 BTC attached.

"We will not find a solution to political problems in cryptography, but we can win a major battle in the arms race and gain a new territory of freedom for several years.

Governments are good at cutting off the heads of a centrally controlled networks, but pure P2P networks are holding their own."
LZ
Staff
Legendary
*
Offline Offline

Activity: 1470


Satoshi everywhere!


View Profile WWW
September 16, 2010, 01:50:47 AM
 #14

Hey, I just thought about it yesterday! Shocked

"Never invest unless you can afford to lose your entire investment." © S3052
Anonymous
Guest

September 16, 2010, 01:56:43 AM
 #15

    A secure messaging system could have other benefits. The problem of spam is increased because it costs nothing to send email. A short message service that you needed to pay a few bitcoins for to send a message might revolutionise sms or email for those who are tired of sorting viagra and nigerian scam emails all day long.

 Cheesy

Great point...I've heard something called hashcash does this for email.  But with bitcoin, one can additionally prioritize messages: .g. the message with 10 BTC attached to it is probably more important than the message with .01 BTC attached.


  People think nothing of sending text messages or mms that costs .50c each.  Shocked

Anonymous
Guest

September 16, 2010, 01:57:38 AM
 #16

Hey, I just thought about it yesterday! Shocked

pwned!

 Cheesy

Anonymous
Guest

September 16, 2010, 02:08:50 AM
 #17

Something like this combined with the pay it forward project http://bitcointalk.org/index.php?topic=922.msg12917#msg12917 would really increase the hardness of the network to attacks? Half your fee would go to the person you sent the message to and the other half would go to 3 randomn people -or split equally to increase anonymity Cheesy


As an extra security measure you could also send 3 dummy messages or however many you decided so the real message was hidden.The fee you sent would then be divided by however many security splits you decided on.  This could mean you might get randomn bitcoin payments all day just for having a bitcoin message address. Think of twitter crossed with hashcash and email. To the outside world there would be no difference from a message to a payment you made.

19tq9NYFsSCMRUkc12v363tHgAeUokoVam just made a peanut butter sandwich!

 Cheesy

em3rgentOrdr
Sr. Member
****
Offline Offline

Activity: 434


youtube.com/ericfontainejazz now accepts bitcoin


View Profile WWW
September 16, 2010, 09:14:09 AM
 #18

Something like this combined with the pay it forward project http://bitcointalk.org/index.php?topic=922.msg12917#msg12917 would really increase the hardness of the network to attacks? Half your fee would go to the person you sent the message to and the other half would go to 3 randomn people -or split equally to increase anonymity Cheesy

As an extra security measure you could also send 3 dummy messages or however many you decided so the real message was hidden.The fee you sent would then be divided by however many security splits you decided on.  This could mean you might get randomn bitcoin payments all day just for having a bitcoin message address. Think of twitter crossed with hashcash and email. To the outside world there would be no difference from a message to a payment you made.

Very clever!!!  I like that idea...  Plus, with bitcoin, you can customize your level of security: pay more bitcoins and you can send more false messages and have more security splits...

    A secure messaging system could have other benefits. The problem of spam is increased because it costs nothing to send email. A short message service that you needed to pay a few bitcoins for to send a message might revolutionise sms or email for those who are tired of sorting viagra and nigerian scam emails all day long.

 Cheesy

Great point...I've heard something called hashcash does this for email.  But with bitcoin, one can additionally prioritize messages: .g. the message with 10 BTC attached to it is probably more important than the message with .01 BTC attached.

  People think nothing of sending text messages or mms that costs .50c each.  Shocked

Haha!  Well, that's partially true.  Ususally they have a fixed amount of pre-paid text messages that they can send each month which if the don't use are simply wasted.  But they tend to forget that I still have to pay 25 cents whenever they send me a lousy spam text message!!!   Angry

A smartphone bitcoin client with options for encrypted messaging would make for a great alternative text/sms system compared to the high fees charged by most wireless carriers for text messaging.  Now, of course, I know of free text messaging apps, but they tend to contain ads.  But with bitcoin, the small transaction fees for passing the message along would work as a great incentive instead...

"We will not find a solution to political problems in cryptography, but we can win a major battle in the arms race and gain a new territory of freedom for several years.

Governments are good at cutting off the heads of a centrally controlled networks, but pure P2P networks are holding their own."
satoshi
Founder
Sr. Member
*
Offline Offline

Activity: 364


View Profile
September 19, 2010, 10:47:00 PM
 #19

Theymos already said this...  ECDSA does not support encrypting messages.  Only digital signatures.
fresno
Member
**
Offline Offline

Activity: 84


View Profile
September 20, 2010, 05:41:56 PM
 #20

Theymos already said this...  ECDSA does not support encrypting messages.  Only digital signatures.


I agree. Do ONE thing, and do it well.

But that doesn't stop anyone from writing a trading suite, and using the Bitcoin protocol inside it.

Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!