Bitcoin Forum
November 12, 2024, 05:51:38 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 2 [3] 4 5 6 »  All
  Print  
Author Topic: Stealth address with SX (anonymous payments)  (Read 25921 times)
alp
Full Member
***
Offline Offline

Activity: 284
Merit: 101


View Profile
January 18, 2014, 03:09:09 AM
 #41

My concern with the name Stealth Address is that it will end up being a niche feature that most people will not use.  Peter's "Ohh, privacy is good!" argument makes sense among his peers, but will fall flat on most common users.  Most people "Have nothing to hide" and aren't threatened by privacy, even with all the leaks and damage done.  This should be viewed as a standard and non-scary option, and not something for criminals and troublemakers only.  Stealth has those connotations, and I have a feeling it will become put in a corner.  I think he is also a bit biased in that the super-plugged-in people (aka meetup attendees) have heard of this term and it's too late to change it.  I disagree that it's really that well known, even within the Bitcoin community.

Names seem to fall out of describing how something is used or describing what it does.  We should also focus describing traditional addresses as well, to see if there might be a way to relabel them.

No, everyone cares about privacy, at least to a certain degree. Or maybe you could find me someone who would love to show me his bank transaction history.

If this were the case, Edward Snowden wouldn't be hiding in Russia, no one would be using Facebook, and Tor would be standard.  For the vast majority, privacy is simply not valued by most people when it comes down to actually put in any effort.  The Bitcoin community in general is going to have a selection bias towards those who care more than the average person.

Privacy is valued, when people appear to not care about it the threat is usually not tangible, as in your Snowden, FB and Tor case. When your bank/credit card history is out, or you are caught masturbating you will immediately feel how important it really is. Same happens when your friend/wife just saw your bitcoin transaction to a stripper on blockchain.info.

Also the incognito mode seems so important that every browser maker feels the need to put it in.

How often is incognito mode used?  I would say 95% of users never touch it.  How many people stop using credit cards after the account details are hacked?

Do you really think people view being able to see chained transactions as a tangible threat?  Most people won't.  As Bitcoin becomes more mainstream, fewer percentages of people will care as well, EVEN IF bad things happen, which constantly happens.

I'm not denying that it is important, but most people will not take the steps to protect it, and even actively take steps to give it up if it gives them a small benefit.  AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy?  It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address.

I am looking for a good signature. Here could be your advertisement
oakpacific
Hero Member
*****
Offline Offline

Activity: 784
Merit: 1000


View Profile
January 18, 2014, 03:21:58 AM
 #42



I'm not denying that it is important, but most people will nottake the steps to protect it, and even actively take steps to give it up if it gives them a small benefit.  AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy?  It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address.

More like they feel there is nothing they can do and are simply giving up. As for AT&T, well the threat is still intangible in that case.

https://tlsnotary.org/ Fraud proofing decentralized fiat-Bitcoin trading.
alp
Full Member
***
Offline Offline

Activity: 284
Merit: 101


View Profile
January 18, 2014, 10:31:14 PM
 #43



I'm not denying that it is important, but most people will nottake the steps to protect it, and even actively take steps to give it up if it gives them a small benefit.  AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy?  It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address.

More like they feel there is nothing they can do and are simply giving up. As for AT&T, well the threat is still intangible in that case.

There's a different option you can do that costs more, from what I remember about it.
http://gigaom.com/2013/12/11/atts-gigabit-service-is-70-if-you-let-it-spy-on-your-searches/

And the Bitcoin "threat" is equally as intangible.  Users think that following typical procedures, Bitcoin is anonymous!  Why go the extra step?  There are a lot of misconceptions and misuses today, and we probably have the most educated userbase we will have looking forward, right now.

I am looking for a good signature. Here could be your advertisement
johnyj
Legendary
*
Offline Offline

Activity: 1988
Merit: 1012


Beyond Imagination


View Profile
January 20, 2014, 12:27:38 AM
 #44

I'd rather use "safe address" or "secure address" instead  Cool

mb300sd
Legendary
*
Offline Offline

Activity: 1260
Merit: 1000

Drunk Posts


View Profile WWW
January 20, 2014, 01:21:10 AM
 #45



I'm not denying that it is important, but most people will nottake the steps to protect it, and even actively take steps to give it up if it gives them a small benefit.  AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy?  It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address.

More like they feel there is nothing they can do and are simply giving up. As for AT&T, well the threat is still intangible in that case.

There's a different option you can do that costs more, from what I remember about it.
http://gigaom.com/2013/12/11/atts-gigabit-service-is-70-if-you-let-it-spy-on-your-searches/

And the Bitcoin "threat" is equally as intangible.  Users think that following typical procedures, Bitcoin is anonymous!  Why go the extra step?  There are a lot of misconceptions and misuses today, and we probably have the most educated userbase we will have looking forward, right now.

I'd actually be fine with that ATT service, 1Gbps and all they'll every see is an encrypted VPN tunnel Grin.

1D7FJWRzeKa4SLmTznd3JpeNU13L1ErEco
jl2012
Legendary
*
Offline Offline

Activity: 1792
Merit: 1111


View Profile
January 21, 2014, 02:54:46 AM
 #46

As I understand, the payer has to generate a key pair, and lets the payee knows the public key. Without the public key, the payee is unable to spend the fund. There are 2 channels for the payee to learn the payer public key:

1. Including the payer public key as an OP_RETURN output. This will increase the transaction cost and may not be desirable. Could we specify a smaller key size, an therefore a smaller public key? Since the purpose of the key is not to secure the fund, a smaller key size should be okay.

2. Transferring the public key with other channel. This one is more blockchain-friendly. However, there is a risk of losing the public key so the fund is permanently locked. Should we recommend the payer to generate the key pairs in a deterministic way, and backup the root key?

Donation address: 374iXxS4BuqFHsEwwxUuH3nvJ69Y7Hqur3 (Bitcoin ONLY)
LRDGENPLYrcTRssGoZrsCT1hngaH3BVkM4 (LTC)
PGP: D3CC 1772 8600 5BB8 FF67 3294 C524 2A1A B393 6517
Peter Todd
Legendary
*
expert
Offline Offline

Activity: 1120
Merit: 1160


View Profile
January 21, 2014, 04:21:49 AM
 #47

As I understand, the payer has to generate a key pair, and lets the payee knows the public key. Without the public key, the payee is unable to spend the fund. There are 2 channels for the payee to learn the payer public key:

1. Including the payer public key as an OP_RETURN output. This will increase the transaction cost and may not be desirable. Could we specify a smaller key size, an therefore a smaller public key? Since the purpose of the key is not to secure the fund, a smaller key size should be okay.

You can also use a txin pubkey in the scriptSig, at the cost of reduced privacy, or a txout with a pubkey, e.g. <pubkey> CHECKSIG, again at cost of privacy. I suggested OP_RETURN because the extra size, about 15%, is relatively small. Multi-signature wallets use a lot more extra data than that.

2. Transferring the public key with other channel. This one is more blockchain-friendly. However, there is a risk of losing the public key so the fund is permanently locked. Should we recommend the payer to generate the key pairs in a deterministic way, and backup the root key?

Amir originally suggested using Bitmessage for that task, but losing funds is unacceptable - you really want the transaction to be atomic which forces all relevant information required to spend to be in the transaction itself.

westkybitcoins
Legendary
*
Offline Offline

Activity: 980
Merit: 1004

Firstbits: Compromised. Thanks, Android!


View Profile
January 22, 2014, 12:52:41 AM
Last edit: February 17, 2014, 10:25:11 PM by westkybitcoins
 #48

Amir originally suggested using Bitmessage for that task, but losing funds is unacceptable - you really want the transaction to be atomic which forces all relevant information required to spend to be in the transaction itself.

EDIT: snipped non-helpful thought caused by my own confusion. Oy!

Oh, and yes, awesome work Amir! Bitcoin needs more people like you!

Bitcoin is the ultimate freedom test. It tells you who is giving lip service and who genuinely believes in it.
...
...
In the future, books that summarize the history of money will have a line that says, “and then came bitcoin.” It is the economic singularity. And we are living in it now. - Ryan Dickherber
...
...
ATTENTION BFL MINING NEWBS: Just got your Jalapenos in? Wondering how to get the most value for the least hassle? Give BitMinter a try! It's a smaller pool with a fair & low-fee payment method, lots of statistical feedback, and it's easier than EasyMiner! (Yes, we want your hashing power, but seriously, it IS the easiest pool to use! Sign up in seconds to try it!)
...
...
The idea that deflation causes hoarding (to any problematic degree) is a lie used to justify theft of value from your savings.
stenkross
Sr. Member
****
Offline Offline

Activity: 330
Merit: 250



View Profile
January 27, 2014, 10:04:34 AM
 #49

Awsome work!

There's just one detail I don't get; How does the recipient get hold of the "SECRET NONCE" from the sender?
prezbo
Sr. Member
****
Offline Offline

Activity: 430
Merit: 250


View Profile
January 27, 2014, 10:10:50 AM
 #50

Awsome work!

There's just one detail I don't get; How does the recipient get hold of the "SECRET NONCE" from the sender?
It's included in the transaction, encoded in another output.
kcirazy
Newbie
*
Offline Offline

Activity: 53
Merit: 0



View Profile
January 31, 2014, 11:39:35 AM
 #51

Could sending many dust transactions to a stealth address be a way to inconvenience the receiver? Or perhaps a way to force them to reveal sensitive details?
d'aniel
Sr. Member
****
Offline Offline

Activity: 461
Merit: 251


View Profile
January 31, 2014, 09:00:20 PM
 #52

Could sending many dust transactions to a stealth address be a way to inconvenience the receiver? Or perhaps a way to force them to reveal sensitive details?
If the value is too small to be worth checking, it could just be ignored.
ShadowOfHarbringer
Legendary
*
Offline Offline

Activity: 1470
Merit: 1006


Bringing Legendary Har® to you since 1952


View Profile
February 01, 2014, 01:55:47 AM
 #53

* ShadowOfHarbringer is watching this.

SteamGamesBTC.com
Hero Member
*****
Offline Offline

Activity: 734
Merit: 507



View Profile WWW
February 01, 2014, 10:02:33 PM
 #54

Good work, thank you. Hope in the future it will be builtin in official client. Cheers.

SteamGamesBTC.com
> Automatic 24/7 bot: purchase any Steam game 20% cheaper with Bitcoin! <
ABISprotocol
Sr. Member
****
Offline Offline

Activity: 278
Merit: 252

ABISprotocol on Gist


View Profile WWW
February 05, 2014, 06:49:42 PM
 #55

Very nice, thank you for this. Have been watching SX / obelisk / libbitcoin development for a while.

Cheers

ABISprotocol (Github/Gist)
http://abis.io
E.Sam
Sr. Member
****
Offline Offline

Activity: 393
Merit: 250



View Profile WWW
February 09, 2014, 04:40:07 PM
 #56

Just to let everyone know, if you are a Mac user and entertained the idea of using Stealthbit app https://github.com/thomasrevor/StealthBit, then don't. It's a OSX malware that will empty your wallet. Just thought of mentioning it here since it is about stealth addresses.

I mentioned it here: https://bitcointalk.org/index.php?topic=266813.msg4943840#msg4943840

The first victim just came forward: http://www.reddit.com/r/Bitcoin/comments/1xf2qj/my_wallet_just_emptied_into_this_address/

Scam forum section: https://bitcointalk.org/index.php?topic=454903.new#new
genjix (OP)
Legendary
*
expert
Offline Offline

Activity: 1232
Merit: 1076


View Profile
February 11, 2014, 09:47:38 AM
 #57

pity people don't have software to do common tasks and need to resort to installing dodgy malware. anyway that will change with time.

btw first stealth tx: https://blockchain.info/tx/63e75e43de21b73d7eb0220ce44dcfa5fc7717a8decebb254b31ef13047fa518

testing code for those interested: https://github.com/genjix/stealth

(implementation detail: it's currently using number_bits=0 so not using the prefix optimisation. this is only for my testing purposes.)
marcus_of_augustus
Legendary
*
Offline Offline

Activity: 3920
Merit: 2349


Eadem mutata resurgo


View Profile
February 11, 2014, 10:09:52 AM
 #58


btw first stealth tx: https://blockchain.info/tx/63e75e43de21b73d7eb0220ce44dcfa5fc7717a8decebb254b31ef13047fa518

Quote
Unable to decode input address

Epic!

Rampion
Legendary
*
Offline Offline

Activity: 1148
Merit: 1018


View Profile
February 11, 2014, 10:37:05 AM
 #59


btw first stealth tx: https://blockchain.info/tx/63e75e43de21b73d7eb0220ce44dcfa5fc7717a8decebb254b31ef13047fa518

Quote
Unable to decode input address

Epic!

Sweet. Historic. Go Amir, Go!!

ShadowOfHarbringer
Legendary
*
Offline Offline

Activity: 1470
Merit: 1006


Bringing Legendary Har® to you since 1952


View Profile
February 11, 2014, 12:13:56 PM
 #60

O_O. Truly epic.

Pages: « 1 2 [3] 4 5 6 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!