Bitcoin Forum
December 18, 2017, 06:49:06 PM *
News: Latest stable version of Bitcoin Core: 0.15.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Does M of N multisig work with random recipient?  (Read 698 times)
slothbag
Sr. Member
****
Offline Offline

Activity: 369



View Profile
July 27, 2013, 01:25:52 PM
 #1

Can anyone lend their crypto expertise.. is it possible to create a M of N multisig transaction with say 50 participants and have them send coins to an address that no one can spend from, then choose one of the 50 to be the recipient and allow the remaining 49 to sign over the funds and the final recipient decodes the priv key to spend.

This needs to happen over a trustless p2p system like bitcoin..

Questions:
* How to create a priv key/pub key that none of the 50 can spend from
* Does the 50 participants have to sign one by one in a specific order to create the key?
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
fellowtraveler
Sr. Member
****
Offline Offline

Activity: 440


View Profile
July 28, 2013, 12:57:43 AM
 #2

This isn't a complete answer, but FYI I believe 20 is the max (not 50.)

co-founder, Monetas
creator, Open-Transactions
theymos
Administrator
Legendary
*
expert
Offline Offline

Activity: 2870


View Profile
July 28, 2013, 01:03:13 AM
 #3

That's definitely not possible with Script, which is deterministic. I very much doubt that it's possible in any other way without a trusted third party, voting, etc.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
slothbag
Sr. Member
****
Offline Offline

Activity: 369



View Profile
July 28, 2013, 03:04:47 AM
 #4

What about outside of bitcoin using PKI in general?  Is it possible for 50 random people to create a shared key that no single person can control, and eventually with 49 people giving their signatures/keys to the 50th so #50 can access the priv key?
CIYAM
Legendary
*
Offline Offline

Activity: 1862


Ian Knowles - CIYAM Lead Developer


View Profile WWW
July 28, 2013, 03:12:18 AM
 #5

What you could do to accomplish this would be to create some software that divided an SHA256 hash into 16 + 50 characters sending the first 16 and one of the other 50 characters to each person (via PGP/GPG to be safe).

The order of who is sent which would of course need to be known (by all if you wanted to final recipient to be any one of the recipients).

The private key could then be re-created from this SHA256 hash.

With CIYAM anyone can create 100% generated C++ web applications in literally minutes.

GPG Public Key | 1ciyam3htJit1feGa26p2wQ4aw6KFTejU
slothbag
Sr. Member
****
Offline Offline

Activity: 369



View Profile
July 28, 2013, 06:44:54 AM
 #6

My thinking is to have something like a "pot" where people can send bitcoins.. and then a winner is chosen and everyone agrees to release the pot to the winner..

Would be perfect for a P2P poker engine.
cbeast
Donator
Legendary
*
Offline Offline

Activity: 1736

Let's talk governance, lipstick, and pigs.


View Profile
July 28, 2013, 08:59:28 PM
 #7

I was confused about multisig. Apparently BIP 11 only allows for up to 3 signatures due to block size limitations. Perhaps an offline scheme can offer this functionality. I can think of many practical applications including a blockchain based WoT, sweepstakes, and VAT.

Any significantly advanced cryptocurrency is indistinguishable from Ponzi Tulips.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!