|
alp
|
 |
January 18, 2014, 03:09:09 AM |
|
My concern with the name Stealth Address is that it will end up being a niche feature that most people will not use. Peter's "Ohh, privacy is good!" argument makes sense among his peers, but will fall flat on most common users. Most people "Have nothing to hide" and aren't threatened by privacy, even with all the leaks and damage done. This should be viewed as a standard and non-scary option, and not something for criminals and troublemakers only. Stealth has those connotations, and I have a feeling it will become put in a corner. I think he is also a bit biased in that the super-plugged-in people (aka meetup attendees) have heard of this term and it's too late to change it. I disagree that it's really that well known, even within the Bitcoin community.
Names seem to fall out of describing how something is used or describing what it does. We should also focus describing traditional addresses as well, to see if there might be a way to relabel them.
No, everyone cares about privacy, at least to a certain degree. Or maybe you could find me someone who would love to show me his bank transaction history. If this were the case, Edward Snowden wouldn't be hiding in Russia, no one would be using Facebook, and Tor would be standard. For the vast majority, privacy is simply not valued by most people when it comes down to actually put in any effort. The Bitcoin community in general is going to have a selection bias towards those who care more than the average person. Privacy is valued, when people appear to not care about it the threat is usually not tangible, as in your Snowden, FB and Tor case. When your bank/credit card history is out, or you are caught masturbating you will immediately feel how important it really is. Same happens when your friend/wife just saw your bitcoin transaction to a stripper on blockchain.info. Also the incognito mode seems so important that every browser maker feels the need to put it in. How often is incognito mode used? I would say 95% of users never touch it. How many people stop using credit cards after the account details are hacked? Do you really think people view being able to see chained transactions as a tangible threat? Most people won't. As Bitcoin becomes more mainstream, fewer percentages of people will care as well, EVEN IF bad things happen, which constantly happens. I'm not denying that it is important, but most people will not take the steps to protect it, and even actively take steps to give it up if it gives them a small benefit. AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy? It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address. |
I am looking for a good signature. Here could be your advertisement
|
|
|
|
oakpacific
|
|
January 18, 2014, 03:21:58 AM |
|
I'm not denying that it is important, but most people will nottake the steps to protect it, and even actively take steps to give it up if it gives them a small benefit. AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy? It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address.
More like they feel there is nothing they can do and are simply giving up. As for AT&T, well the threat is still intangible in that case. |
|
|
|
|
alp
|
|
January 18, 2014, 10:31:14 PM |
|
I'm not denying that it is important, but most people will nottake the steps to protect it, and even actively take steps to give it up if it gives them a small benefit. AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy? It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address.
More like they feel there is nothing they can do and are simply giving up. As for AT&T, well the threat is still intangible in that case. There's a different option you can do that costs more, from what I remember about it. http://gigaom.com/2013/12/11/atts-gigabit-service-is-70-if-you-let-it-spy-on-your-searches/And the Bitcoin "threat" is equally as intangible. Users think that following typical procedures, Bitcoin is anonymous! Why go the extra step? There are a lot of misconceptions and misuses today, and we probably have the most educated userbase we will have looking forward, right now. |
I am looking for a good signature. Here could be your advertisement
|
|
|
johnyj
Legendary
 Offline
Activity: 1988
Merit: 1012
Beyond Imagination
|
|
January 20, 2014, 12:27:38 AM |
|
I'd rather use "safe address" or "secure address" instead  |
|
|
|
mb300sd
Legendary
Offline
Activity: 1260
Merit: 1000
Drunk Posts
|
|
January 20, 2014, 01:21:10 AM |
|
I'm not denying that it is important, but most people will nottake the steps to protect it, and even actively take steps to give it up if it gives them a small benefit. AT&T is offering high speed internet if they can spy on your data, how many people do you think will do anything extra to hide their privacy? It sounds like this is intended to be a mainstream and behind-the-scenes implementation, in which case, it simply becomes your address.
More like they feel there is nothing they can do and are simply giving up. As for AT&T, well the threat is still intangible in that case. There's a different option you can do that costs more, from what I remember about it. http://gigaom.com/2013/12/11/atts-gigabit-service-is-70-if-you-let-it-spy-on-your-searches/And the Bitcoin "threat" is equally as intangible. Users think that following typical procedures, Bitcoin is anonymous! Why go the extra step? There are a lot of misconceptions and misuses today, and we probably have the most educated userbase we will have looking forward, right now. I'd actually be fine with that ATT service, 1Gbps and all they'll every see is an encrypted VPN tunnel  . |
1D7FJWRzeKa4SLmTznd3JpeNU13L1ErEco
|
|
|
jl2012
Legendary
Offline
Activity: 1792
Merit: 1111
|
|
January 21, 2014, 02:54:46 AM |
|
As I understand, the payer has to generate a key pair, and lets the payee knows the public key. Without the public key, the payee is unable to spend the fund. There are 2 channels for the payee to learn the payer public key:
1. Including the payer public key as an OP_RETURN output. This will increase the transaction cost and may not be desirable. Could we specify a smaller key size, an therefore a smaller public key? Since the purpose of the key is not to secure the fund, a smaller key size should be okay.
2. Transferring the public key with other channel. This one is more blockchain-friendly. However, there is a risk of losing the public key so the fund is permanently locked. Should we recommend the payer to generate the key pairs in a deterministic way, and backup the root key?
|
Donation address: 374iXxS4BuqFHsEwwxUuH3nvJ69Y7Hqur3 (Bitcoin ONLY)
LRDGENPLYrcTRssGoZrsCT1hngaH3BVkM4 (LTC)
PGP: D3CC 1772 8600 5BB8 FF67 3294 C524 2A1A B393 6517
|
|
|
Peter Todd
Legendary
Offline
Activity: 1120
Merit: 1160
|
|
January 21, 2014, 04:21:49 AM |
|
As I understand, the payer has to generate a key pair, and lets the payee knows the public key. Without the public key, the payee is unable to spend the fund. There are 2 channels for the payee to learn the payer public key:
1. Including the payer public key as an OP_RETURN output. This will increase the transaction cost and may not be desirable. Could we specify a smaller key size, an therefore a smaller public key? Since the purpose of the key is not to secure the fund, a smaller key size should be okay.
You can also use a txin pubkey in the scriptSig, at the cost of reduced privacy, or a txout with a pubkey, e.g. <pubkey> CHECKSIG, again at cost of privacy. I suggested OP_RETURN because the extra size, about 15%, is relatively small. Multi-signature wallets use a lot more extra data than that. 2. Transferring the public key with other channel. This one is more blockchain-friendly. However, there is a risk of losing the public key so the fund is permanently locked. Should we recommend the payer to generate the key pairs in a deterministic way, and backup the root key?
Amir originally suggested using Bitmessage for that task, but losing funds is unacceptable - you really want the transaction to be atomic which forces all relevant information required to spend to be in the transaction itself. |
|
|
|
westkybitcoins
Legendary
Offline
Activity: 980
Merit: 1004
Firstbits: Compromised. Thanks, Android!
|
|
January 22, 2014, 12:52:41 AM
Last edit: February 17, 2014, 10:25:11 PM by westkybitcoins |
|
Amir originally suggested using Bitmessage for that task, but losing funds is unacceptable - you really want the transaction to be atomic which forces all relevant information required to spend to be in the transaction itself.
EDIT: snipped non-helpful thought caused by my own confusion. Oy!Oh, and yes, awesome work Amir! Bitcoin needs more people like you! |
Bitcoin is the ultimate freedom test. It tells you who is giving lip service and who genuinely believes in it.
... ... In the future, books that summarize the history of money will have a line that says, “and then came bitcoin.” It is the economic singularity. And we are living in it now. - Ryan Dickherber... ... ATTENTION BFL MINING NEWBS: Just got your Jalapenos in? Wondering how to get the most value for the least hassle? Give BitMinter a try! It's a smaller pool with a fair & low-fee payment method, lots of statistical feedback, and it's easier than EasyMiner! (Yes, we want your hashing power, but seriously, it IS the easiest pool to use! Sign up in seconds to try it!)... ... The idea that deflation causes hoarding (to any problematic degree) is a lie used to justify theft of value from your savings.
|
|
|
|
stenkross
|
|
January 27, 2014, 10:04:34 AM |
|
Awsome work!
There's just one detail I don't get; How does the recipient get hold of the "SECRET NONCE" from the sender?
|
|
|
|
|
|
prezbo
|
|
January 27, 2014, 10:10:50 AM |
|
Awsome work!
There's just one detail I don't get; How does the recipient get hold of the "SECRET NONCE" from the sender?
It's included in the transaction, encoded in another output. |
|
|
|
|
kcirazy
Newbie
Offline
Activity: 53
Merit: 0
|
|
January 31, 2014, 11:39:35 AM |
|
Could sending many dust transactions to a stealth address be a way to inconvenience the receiver? Or perhaps a way to force them to reveal sensitive details?
|
|
|
|
|
|
d'aniel
|
|
January 31, 2014, 09:00:20 PM |
|
Could sending many dust transactions to a stealth address be a way to inconvenience the receiver? Or perhaps a way to force them to reveal sensitive details?
If the value is too small to be worth checking, it could just be ignored. |
|
|
|
|
ShadowOfHarbringer
Legendary
Offline
Activity: 1470
Merit: 1006
Bringing Legendary Har® to you since 1952
|
|
February 01, 2014, 01:55:47 AM |
|
* ShadowOfHarbringer is watching this. |
|
|
|
|
SteamGamesBTC.com
|
|
February 01, 2014, 10:02:33 PM |
|
Good work, thank you. Hope in the future it will be builtin in official client. Cheers.
|
►SteamGamesBTC.com◄
> Automatic 24/7 bot: purchase any Steam game 20% cheaper with Bitcoin! < |
|
|
|
ABISprotocol
|
|
February 05, 2014, 06:49:42 PM |
|
Very nice, thank you for this. Have been watching SX / obelisk / libbitcoin development for a while.
Cheers
|
|
|
|
|
|
|
|
marcus_of_augustus
Legendary
Offline
Activity: 3920
Merit: 2349
Eadem mutata resurgo
|
|
February 11, 2014, 10:09:52 AM |
|
|
|
|
|
Rampion
Legendary
Offline
Activity: 1148
Merit: 1018
|
|
February 11, 2014, 10:37:05 AM |
|
Sweet. Historic. Go Amir, Go!! |
|
|
|
ShadowOfHarbringer
Legendary
Offline
Activity: 1470
Merit: 1006
Bringing Legendary Har® to you since 1952
|
|
February 11, 2014, 12:13:56 PM |
|
Sweet. Historic. Go Amir, Go!! O_O. Truly epic. |
|
|
|
|
