Bitcoin Forum
September 18, 2018, 08:33:56 PM *
News: Latest stable version of Bitcoin Core: 0.16.2  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Does repeatedly signing the same address weaken it?  (Read 49 times)
jubalix
Legendary
*
Offline Offline

Activity: 1862
Merit: 1002


View Profile WWW
January 05, 2018, 12:26:40 PM
 #1

If you sign the same address repeatedly the security?

and/or if you sign messages with the same address priv key as well does this weaken the security

if so...by how much?





Admitted Practicing Lawyer::BTC/Crypto Specialist. B.Engineering/B.Laws

https://www.binance.com/?ref=10062065
Make a difference with your Ether.
Donate Ether for the greater good.
SPRING.WETRUST.IO
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
ranochigo
Legendary
*
Offline Offline

Activity: 1540
Merit: 1084


View Profile WWW
January 05, 2018, 01:37:15 PM
 #2

It does not, if your wallet creates the signature correctly.

When you spend the transaction/sign a message, you are giving out the public key only, together with the public key. The signatures are signed using ECDSA. As of now, the repeated signing of a signature using the private key does not weaken the address by any extent. However, it would be a different story if your client is flawed. If your client generates the same "K" value for each signature, it is possible to derive the private key using the public key. If quantum computing were to be more advanced, it can potentially break ECDSA.

I've had addresses which were used for more than 3 years, with 700+ transactions and nothing happened. I trust ECDSA to be safe enough, at least for now. The only concerns regarding address reuse is privacy.

jubalix
Legendary
*
Offline Offline

Activity: 1862
Merit: 1002


View Profile WWW
January 06, 2018, 09:06:07 AM
 #3

It does not, if your wallet creates the signature correctly.

When you spend the transaction/sign a message, you are giving out the public key only, together with the public key. The signatures are signed using ECDSA. As of now, the repeated signing of a signature using the private key does not weaken the address by any extent. However, it would be a different story if your client is flawed. If your client generates the same "K" value for each signature, it is possible to derive the private key using the public key. If quantum computing were to be more advanced, it can potentially break ECDSA.

I've had addresses which were used for more than 3 years, with 700+ transactions and nothing happened. I trust ECDSA to be safe enough, at least for now. The only concerns regarding address reuse is privacy.

Thanks!

Admitted Practicing Lawyer::BTC/Crypto Specialist. B.Engineering/B.Laws

https://www.binance.com/?ref=10062065
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!