CrunchyF
Jr. Member
Offline
Activity: 54
Merit: 26
|
|
May 26, 2022, 02:50:58 PM |
|
Signatures derived this way is most likely reaching to degenerate system of equations incomprehensible by Lattice reduction.
can u explain more please?
|
|
|
|
|
|
|
|
|
It is a common myth that Bitcoin is ruled by a majority of miners. This is not true. Bitcoin miners "vote" on the ordering of transactions, but that's all they do. They can't vote to change the network rules.
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
|
garlonicon
|
|
May 26, 2022, 04:18:35 PM |
|
I think I understand. I guess it means that such attack is trying to solve x=2y by adding 2x=4y. It won't work. Why? Because it would be "degenerate system of equations", so it won't produce any new solutions, everything will be as unknown, as it was before.
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
May 26, 2022, 04:53:42 PM |
|
I think I understand. I guess it means that such attack is trying to solve x=2y by adding 2x=4y. It won't work. Why? Because it would be "degenerate system of equations", so it won't produce any new solutions, everything will be as unknown, as it was before.
ecdsa123 realy find partial nonce ?
|
|
|
|
garlonicon
|
|
May 26, 2022, 05:37:06 PM |
|
ecdsa123 realy find partial nonce ? I don't know. For now, I don't have any proof. No moved coins, no revealed keys, so not yet. But I think it will soon be obvious, is this attack successful or not (today, I guess it will fail).
|
|
|
|
ecdsa123
Full Member
Offline
Activity: 211
Merit: 105
Dr WHO on disney+
|
|
May 26, 2022, 07:31:30 PM Last edit: May 26, 2022, 07:52:46 PM by ecdsa123 |
|
below output: private key :101391487656071791739308955354353221 it is very hard (really hard), but not impossible. analyse outputs so: generate 2 x 8 transactions as: 1 to 8 and 1 to 8 as negative. and r = s so : leak : 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 leak : 0x000000000000013870c7de303201ef7a5128b8415b03821cfcdfe1085aed747a joint together and perform ENHP + doubled reduction with pruned we can sii that output on 16 bits is our privatekey. but -> this is for "theoretically" when you know exactly what range bit is you pubkey, without this knowledge , those attack is useless. ---- index 2 b1 828563692742190953435031129255502257 b2 1 private_key= 101391487656071791739308955354353221 r= 46229861362577657348883230286930550283029422510902563449097344654506052954192 s= 46229861362577657348883230286930550283029422510902563449097344654506052954192 z= 69127356212994433971961936139034293279280125764535349413784215476506050322431 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353225 k 0x1386fc7de303201ef7a5128b854e49 ---- index 3 b1 1059764604409094661915420582155118655 b2 1 private_key= 101391487656071791739308955354353221 r= 81270736933848773201432693719467175556993668817347944273137496513945402306824 s= 81270736933848773201432693719467175556993668817347944273137496513945402306824 z= 36684096980741786271468333423077132895917633681682072162606489776399651795394 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353230 k 0x1386fc7de303201ef7a5128b854e4e
---- index 4 b1 1053090505275130897213577479594726285 b2 1 private_key= 101391487656071791739308955354353221 r= 57798083408359744185852689587076431915237529070280703337989574741548464413539 s= 57798083408359744185852689587076431915237529070280703337989574741548464413539 z= 114224709872542539008646138332407555673937515170966922729597053874148300156265 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353237 k 0x1386fc7de303201ef7a5128b854e55
---- index 5 b1 1182184834602935691675838270622206198 b2 1 private_key= 101391487656071791739308955354353221 r= 22896768549861177188618894925128618200521662573772617332095249803381859676283 s= 22896768549861177188618894925128618200521662573772617332095249803381859676283 z= 109250856797264648021188433093463823601691307228015815771960592518473845929727 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353246 k 0x1386fc7de303201ef7a5128b854e5e
---- index 6 b1 936436354164513705859390012411773597 b2 2 private_key= 101391487656071791739308955354353221 r= 98157279051420901681438534269018718490994115476390145375419795790206076769312 s= 98157279051420901681438534269018718490994115476390145375419795790206076769312 z= 59899368731666597824657683424036630090661228777798102036957754201873918865122 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353257 k 0x1386fc7de303201ef7a5128b854e69
---- index 7 b1 667766267559640815970592186816778420 b2 2 private_key= 101391487656071791739308955354353221 r= 34917474073994671512096634942880522257926070159206698205955523780576807918725 s= 34917474073994671512096634942880522257926070159206698205955523780576807918725 z= 89866980303312168162741322079514880698651537894079550735348381267009327096807 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353270 k 0x1386fc7de303201ef7a5128b854e76
---- index 8 b1 899222938459248123955393651504870457 b2 1 private_key= 101391487656071791739308955354353221 r= 1023773956584641394143043172774514169515022302837703076483767867177908846045 s= 1023773956584641394143043172774514169515022302837703076483767867177908846045 z= 65521533221417049225154763057568906848961427381612996894961143499386166146880 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353285 k 0x1386fc7de303201ef7a5128b854e85
---- index 9 b1 793545750785105509512695397468259361 b2 1 private_key= 101391487656071791739308955354353221 r= 63025268830972539032898882007349212363509258948290244197819228576990363602590 s= 63025268830972539032898882007349212363509258948290244197819228576990363602590 z= 10194848866863063027686102213018255919397146532213987188730336509420346058962 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353302 k 0x1386fc7de303201ef7a5128b854e96
---- index 2 b1 712164031399110853148060997745396865 b2 2 private_key= 101391487656071791739308955354353221 r= 27103883593015035580153318732623745998693028899207238705262187421936030077650 s= 85936906068667546152064093056257562813246504500278964233090557541971799625642 z= 55689630516085606767039379681723659457858755051541237726156369393804257765217 0x000000000000013870c7de303201ef7a5128b8415d03821cfcdfe1085aed747a 1961221116993664214726123333138751886130159056778677522887802 k 128530587123296777976291218760581243609426103945047410139975037375 k 0x13870c7de303201ef7a5128b8415d03821cfcdfe1085aed747ab1bf ---- index 3 b1 999519855688352828669916646653593406 b2 1 private_key= 101391487656071791739308955354353221 r= 30988929726604708011658681546827492104017932930830726500377383494517731514934 s= 108488270055588768902340451605889964585423314050499766752418467451860058982760 z= 111960438656388819175375468791871969257306903466782814182755700889761904876830 0x000000000000013870c7de303201ef7a5128b8415cb3821cfcdfe1085aed747a 1961221116993664214726123333138751789416093487608343546393722 k 128530587123296777976291218760581237271173102803900402656459010500 k 0x13870c7de303201ef7a5128b8415cb3821cfcdfe1085aed747ab1c4
---- index 4 b1 673421562781286763286090114264135927 b2 1 private_key= 101391487656071791739308955354353221 r= 100047160268814088122476934604887438392022379679644880795617565006873753922926 s= 29879057216974316665068715717559357836993849054281188315037370172536284875359 z= 10442177588343175125944149191407498545020888887340885698657463520800050054192 0x000000000000013870c7de303201ef7a5128b8415c43821cfcdfe1085aed747a 1961221116993664214726123333138751654016401690769875979302010 k 128530587123296777976291218760581228397618901206294592179536572875 k 0x13870c7de303201ef7a5128b8415c43821cfcdfe1085aed747ab1cb
---- index 5 b1 782204259740309676191665510552519855 b2 1 private_key= 101391487656071791739308955354353221 r= 67748688409753906884602585869273345848389578349559411830671900561331205619739 s= 47309353417989274342350451264526709897306334140787276564807909575268999346671 z= 9359688561069551322785662657644011076068777306365929214157633369647220268347 0x000000000000013870c7de303201ef7a5128b8415bb3821cfcdfe1085aed747a 1961221116993664214726123333138751479931083666263274821612666 k 128530587123296777976291218760581216988763499152229978709207724500 k 0x13870c7de303201ef7a5128b8415bb3821cfcdfe1085aed747ab1d4
---- index 6 b1 889675885620664284259029898527374932 b2 1 private_key= 101391487656071791739308955354353221 r= 91699128047693045096930506848575724991130596132336882202108285400796479070201 s= 70766148921323071743426706043410057226917081380666483725967635563455471584956 z= 25713929120436652797776881812114722851282252157891284853362375064908500464595 0x000000000000013870c7de303201ef7a5128b8415b03821cfcdfe1085aed747a 1961221116993664214726123333138751267160139414088540073325690 k 128530587123296777976291218760581203044606896641706562245472465375 k 0x13870c7de303201ef7a5128b8415b03821cfcdfe1085aed747ab1df
---- index 7 b1 910791372744195741880505594394083184 b2 2 private_key= 101391487656071791739308955354353221 r= 111282721658743511740804804218697831196755139209322001012141847896280895651065 s= 20579288142382667585932948745866031848399350165909282667115172199092943875501 z= 32503252789281607325637049393909307257007975756143400896227105022894316585376 0x000000000000013870c7de303201ef7a5128b8415a33821cfcdfe1085aed747a 1961221116993664214726123333138751015703568934245671734441082 k 128530587123296777976291218760581186565149093674724342788330795500 k 0x13870c7de303201ef7a5128b8415a33821cfcdfe1085aed747ab1ec
---- index 8 b1 960468925745871513192393263989646375 b2 1 private_key= 101391487656071791739308955354353221 r= 1515369974418220632208652282625175248945511303008693577523254516090366936025 s= 21694925889143481593597715975595471018570942820517802064685459752503618159085 z= 40255131991805909512837029349338246625087029878081478686158136638692234522003 0x000000000000013870c7de303201ef7a5128b8415943821cfcdfe1085aed747a 1961221116993664214726123333138750725561372226734669804958842 k 128530587123296777976291218760581167550390090251283320337782714875 k 0x13870c7de303201ef7a5128b8415943821cfcdfe1085aed747ab1fb
---- index 9 b1 1116188034818399715281488777861618067 b2 1 private_key= 101391487656071791739308955354353221 r= 67862418695230407003562437086472620407901995706496069748509522119750644330355 s= 53478305863170606567556942648286716062761137878253507961506721050769533525439 z= 88616475425151911347765754383696064726005866145971175258558068914159163941232 0x000000000000013870c7de303201ef7a5128b8415833821cfcdfe1085aed747a 1961221116993664214726123333138750396733549291555534284878970 k 128530587123296777976291218760581146000329886371383494893828223500 k 0x13870c7de303201ef7a5128b8415833821cfcdfe1085aed747ab20c
len 16 bit== 10 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 11 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 12 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 13 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 14 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 15 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 16 101391487656071791739308955354353221 115403 101391487656071791739308955354353221 101391487656071791739308955354353221 founded True 101391487656071791739308955354353221 -563222510236386144712594574785819067 bit== 17 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 18 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 19 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 ps. time for finding if you know "subrange" almost 6 hours. without knowing subrange - years years years Ps. Cobras be sure better mathematician than me checked that, and they know that is useless.
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
May 26, 2022, 08:00:09 PM |
|
below output: private key :101391487656071791739308955354353221 it is very hard (really hard), but not impossible. analyse outputs so: generate 2 x 8 transactions as: 1 to 8 and 1 to 8 as negative. and r = s so : leak : 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 leak : 0x000000000000013870c7de303201ef7a5128b8415b03821cfcdfe1085aed747a joint together and perform ENHP + doubled reduction with pruned we can sii that output on 16 bits is our privatekey. but -> this is for "theoretically" when you know exactly what range bit is you pubkey, without this knowledge , those attack is useless. ---- index 2 b1 828563692742190953435031129255502257 b2 1 private_key= 101391487656071791739308955354353221 r= 46229861362577657348883230286930550283029422510902563449097344654506052954192 s= 46229861362577657348883230286930550283029422510902563449097344654506052954192 z= 69127356212994433971961936139034293279280125764535349413784215476506050322431 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353225 k 0x1386fc7de303201ef7a5128b854e49 ---- index 3 b1 1059764604409094661915420582155118655 b2 1 private_key= 101391487656071791739308955354353221 r= 81270736933848773201432693719467175556993668817347944273137496513945402306824 s= 81270736933848773201432693719467175556993668817347944273137496513945402306824 z= 36684096980741786271468333423077132895917633681682072162606489776399651795394 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353230 k 0x1386fc7de303201ef7a5128b854e4e
---- index 4 b1 1053090505275130897213577479594726285 b2 1 private_key= 101391487656071791739308955354353221 r= 57798083408359744185852689587076431915237529070280703337989574741548464413539 s= 57798083408359744185852689587076431915237529070280703337989574741548464413539 z= 114224709872542539008646138332407555673937515170966922729597053874148300156265 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353237 k 0x1386fc7de303201ef7a5128b854e55
---- index 5 b1 1182184834602935691675838270622206198 b2 1 private_key= 101391487656071791739308955354353221 r= 22896768549861177188618894925128618200521662573772617332095249803381859676283 s= 22896768549861177188618894925128618200521662573772617332095249803381859676283 z= 109250856797264648021188433093463823601691307228015815771960592518473845929727 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353246 k 0x1386fc7de303201ef7a5128b854e5e
---- index 6 b1 936436354164513705859390012411773597 b2 2 private_key= 101391487656071791739308955354353221 r= 98157279051420901681438534269018718490994115476390145375419795790206076769312 s= 98157279051420901681438534269018718490994115476390145375419795790206076769312 z= 59899368731666597824657683424036630090661228777798102036957754201873918865122 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353257 k 0x1386fc7de303201ef7a5128b854e69
---- index 7 b1 667766267559640815970592186816778420 b2 2 private_key= 101391487656071791739308955354353221 r= 34917474073994671512096634942880522257926070159206698205955523780576807918725 s= 34917474073994671512096634942880522257926070159206698205955523780576807918725 z= 89866980303312168162741322079514880698651537894079550735348381267009327096807 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353270 k 0x1386fc7de303201ef7a5128b854e76
---- index 8 b1 899222938459248123955393651504870457 b2 1 private_key= 101391487656071791739308955354353221 r= 1023773956584641394143043172774514169515022302837703076483767867177908846045 s= 1023773956584641394143043172774514169515022302837703076483767867177908846045 z= 65521533221417049225154763057568906848961427381612996894961143499386166146880 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353285 k 0x1386fc7de303201ef7a5128b854e85
---- index 9 b1 793545750785105509512695397468259361 b2 1 private_key= 101391487656071791739308955354353221 r= 63025268830972539032898882007349212363509258948290244197819228576990363602590 s= 63025268830972539032898882007349212363509258948290244197819228576990363602590 z= 10194848866863063027686102213018255919397146532213987188730336509420346058962 0x000000000000000000000000000000000000001386fc7de303201ef7a5128b85 1547111322877072017506545339269 k 101391487656071791739308955354353302 k 0x1386fc7de303201ef7a5128b854e96
---- index 2 b1 712164031399110853148060997745396865 b2 2 private_key= 101391487656071791739308955354353221 r= 27103883593015035580153318732623745998693028899207238705262187421936030077650 s= 85936906068667546152064093056257562813246504500278964233090557541971799625642 z= 55689630516085606767039379681723659457858755051541237726156369393804257765217 0x000000000000013870c7de303201ef7a5128b8415d03821cfcdfe1085aed747a 1961221116993664214726123333138751886130159056778677522887802 k 128530587123296777976291218760581243609426103945047410139975037375 k 0x13870c7de303201ef7a5128b8415d03821cfcdfe1085aed747ab1bf ---- index 3 b1 999519855688352828669916646653593406 b2 1 private_key= 101391487656071791739308955354353221 r= 30988929726604708011658681546827492104017932930830726500377383494517731514934 s= 108488270055588768902340451605889964585423314050499766752418467451860058982760 z= 111960438656388819175375468791871969257306903466782814182755700889761904876830 0x000000000000013870c7de303201ef7a5128b8415cb3821cfcdfe1085aed747a 1961221116993664214726123333138751789416093487608343546393722 k 128530587123296777976291218760581237271173102803900402656459010500 k 0x13870c7de303201ef7a5128b8415cb3821cfcdfe1085aed747ab1c4
---- index 4 b1 673421562781286763286090114264135927 b2 1 private_key= 101391487656071791739308955354353221 r= 100047160268814088122476934604887438392022379679644880795617565006873753922926 s= 29879057216974316665068715717559357836993849054281188315037370172536284875359 z= 10442177588343175125944149191407498545020888887340885698657463520800050054192 0x000000000000013870c7de303201ef7a5128b8415c43821cfcdfe1085aed747a 1961221116993664214726123333138751654016401690769875979302010 k 128530587123296777976291218760581228397618901206294592179536572875 k 0x13870c7de303201ef7a5128b8415c43821cfcdfe1085aed747ab1cb
---- index 5 b1 782204259740309676191665510552519855 b2 1 private_key= 101391487656071791739308955354353221 r= 67748688409753906884602585869273345848389578349559411830671900561331205619739 s= 47309353417989274342350451264526709897306334140787276564807909575268999346671 z= 9359688561069551322785662657644011076068777306365929214157633369647220268347 0x000000000000013870c7de303201ef7a5128b8415bb3821cfcdfe1085aed747a 1961221116993664214726123333138751479931083666263274821612666 k 128530587123296777976291218760581216988763499152229978709207724500 k 0x13870c7de303201ef7a5128b8415bb3821cfcdfe1085aed747ab1d4
---- index 6 b1 889675885620664284259029898527374932 b2 1 private_key= 101391487656071791739308955354353221 r= 91699128047693045096930506848575724991130596132336882202108285400796479070201 s= 70766148921323071743426706043410057226917081380666483725967635563455471584956 z= 25713929120436652797776881812114722851282252157891284853362375064908500464595 0x000000000000013870c7de303201ef7a5128b8415b03821cfcdfe1085aed747a 1961221116993664214726123333138751267160139414088540073325690 k 128530587123296777976291218760581203044606896641706562245472465375 k 0x13870c7de303201ef7a5128b8415b03821cfcdfe1085aed747ab1df
---- index 7 b1 910791372744195741880505594394083184 b2 2 private_key= 101391487656071791739308955354353221 r= 111282721658743511740804804218697831196755139209322001012141847896280895651065 s= 20579288142382667585932948745866031848399350165909282667115172199092943875501 z= 32503252789281607325637049393909307257007975756143400896227105022894316585376 0x000000000000013870c7de303201ef7a5128b8415a33821cfcdfe1085aed747a 1961221116993664214726123333138751015703568934245671734441082 k 128530587123296777976291218760581186565149093674724342788330795500 k 0x13870c7de303201ef7a5128b8415a33821cfcdfe1085aed747ab1ec
---- index 8 b1 960468925745871513192393263989646375 b2 1 private_key= 101391487656071791739308955354353221 r= 1515369974418220632208652282625175248945511303008693577523254516090366936025 s= 21694925889143481593597715975595471018570942820517802064685459752503618159085 z= 40255131991805909512837029349338246625087029878081478686158136638692234522003 0x000000000000013870c7de303201ef7a5128b8415943821cfcdfe1085aed747a 1961221116993664214726123333138750725561372226734669804958842 k 128530587123296777976291218760581167550390090251283320337782714875 k 0x13870c7de303201ef7a5128b8415943821cfcdfe1085aed747ab1fb
---- index 9 b1 1116188034818399715281488777861618067 b2 1 private_key= 101391487656071791739308955354353221 r= 67862418695230407003562437086472620407901995706496069748509522119750644330355 s= 53478305863170606567556942648286716062761137878253507961506721050769533525439 z= 88616475425151911347765754383696064726005866145971175258558068914159163941232 0x000000000000013870c7de303201ef7a5128b8415833821cfcdfe1085aed747a 1961221116993664214726123333138750396733549291555534284878970 k 128530587123296777976291218760581146000329886371383494893828223500 k 0x13870c7de303201ef7a5128b8415833821cfcdfe1085aed747ab20c
len 16 bit== 10 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 11 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 12 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 13 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 14 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 15 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 16 101391487656071791739308955354353221 115403 101391487656071791739308955354353221 101391487656071791739308955354353221 founded True 101391487656071791739308955354353221 -563222510236386144712594574785819067 bit== 17 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 18 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 bit== 19 -2575198776870092341 0 101391487656071791739308955354353221 -2575198776870092341 founded False 1329227995784915870328608283410252235 664613997892457933876704753270079947 ps. time for finding if you know "subrange" almost 6 hours. without knowing subrange - years years years Ps. Cobras be sure better mathematician than me checked that, and they know that is useless. Hi. k and k in your code is input ? can you provide code and more description what is what ? thx
|
|
|
|
ecdsa123
Full Member
Offline
Activity: 211
Merit: 105
Dr WHO on disney+
|
|
May 26, 2022, 08:01:40 PM |
|
no. K is nonce in integer (for testing to know)
input are r,s,z generate by script from Garlonicon with my "modification".
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
May 26, 2022, 08:13:11 PM |
|
@ecdsa, collect some real rsz from blockchain and try your code ?
can use 1 transaction with many output. Posibl it will be more easy for use
thx.
|
|
|
|
ecdsa123
Full Member
Offline
Activity: 211
Merit: 105
Dr WHO on disney+
|
|
May 26, 2022, 08:39:18 PM |
|
@ecdsa, collect some real rsz from blockchain and try your code ?
can use 1 transaction with many output. Posibl it will be more easy for use
thx.
it is useless. as inform if you know subrange it is 6 hours. if not "time is years ior milleniums", I have use to try : https://eprint.iacr.org/2022/385 White-Box and here pdf: https://eprint.iacr.org/2022/385.pdf
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
May 26, 2022, 08:58:50 PM |
|
@ecdsa, collect some real rsz from blockchain and try your code ?
can use 1 transaction with many output. Posibl it will be more easy for use
thx.
it is useless. as inform if you know subrange it is 6 hours. if not "time is years ior milleniums", I have use to try : https://eprint.iacr.org/2022/385 White-Box and here pdf: https://eprint.iacr.org/2022/385.pdfhow get subranges ? code for get them pls ?
|
|
|
|
ecdsa123
Full Member
Offline
Activity: 211
Merit: 105
Dr WHO on disney+
|
|
May 26, 2022, 09:13:40 PM |
|
page no 18 in pdf Finding the inversion of the nonce. During the computation of s, the nonce k must be inverted modulo n. This operation is very sensitive and can be quite difficult to protect. In Challenge 227, it is not performed in the clear: the value of k is protected by the encoding function A(t) and by the matrix M . If we note M = (m0 m1 m2 m3 ) , the system that is solved for the computation of r and s is { m0(ks − e − dRx) + m1(r − Rx) = 0 m2(ks − e − dRx) + m3(r − Rx) = 0 . (21) We stress that k, e and Rx do not appear in the clear. They are expressed as linear combinations of the input u = A(t)(k, e, Rx, Ry ) of E(2). so for us important is last sentence: They are expressed as linear combinations so modificate garlonicon script for linear combination which you can easy calculate. WHola. ende finish but is not for real " transactions", it is very very hard
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
May 26, 2022, 09:16:02 PM |
|
show priv of 120, 125 or 130 bit ouzzle ?
pls
|
|
|
|
ecdsa123
Full Member
Offline
Activity: 211
Merit: 105
Dr WHO on disney+
|
|
May 26, 2022, 09:29:54 PM |
|
. Cobras be sure better mathematician than me checked that, and they know that is useless.
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
May 26, 2022, 10:01:24 PM Last edit: May 27, 2022, 03:38:47 PM by achow101 |
|
. Cobras be sure better mathematician than me checked that, and they know that is useless.
i not undertand this formulas, code too unfortunately. Bro, provide any proof of work of your codes ? on github 1000+ attacks but they not work on real data. generate sighs for this pub and find a key ? 04e36a3452c8921ea9e093ebb94f544cab434abadd796566280e05d5ae22fad6a2017cfa0647d6e 458b12848c03fac10e3c44ecf3911dc2f2da90afc1ccf36f9f9 ?
@ecdsa123, help me in this thread pls ? https://bitcointalk.org/index.php?topic=5400202.0thanks
|
|
|
|
ymgve2
|
|
May 28, 2022, 10:38:58 PM |
|
@ecdsa, collect some real rsz from blockchain and try your code ?
can use 1 transaction with many output. Posibl it will be more easy for use
thx.
it is useless. as inform if you know subrange it is 6 hours. if not "time is years ior milleniums", I have use to try : https://eprint.iacr.org/2022/385 White-Box and here pdf: https://eprint.iacr.org/2022/385.pdfWhite box attacks, which those papers are about means the attacker is in full control of the computer that actually does the generation of the signature, and can measure timing and program flow during the generation of the signature. This is completely irrelevant to lattice attacks on weak nonces.
|
|
|
|
fxsniper
Member
Offline
Activity: 406
Merit: 45
|
|
June 05, 2022, 10:28:09 AM |
|
What is this BKZ reduction : block size = 15 I test with 4-bit leak nonce and signature between 50-90 set many key losses and some key can calculate with BKZ reduction : block size = 15 and next untile con recover (some)
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
June 05, 2022, 03:14:03 PM |
|
What is this BKZ reduction : block size = 15 I test with 4-bit leak nonce and signature between 50-90 set many key losses and some key can calculate with BKZ reduction : block size = 15 and next untile con recover (some)
you try on real rsz from bitcoin blockchain ?
|
|
|
|
fxsniper
Member
Offline
Activity: 406
Merit: 45
|
|
June 06, 2022, 01:27:07 AM |
|
you try on real rsz from bitcoin blockchain ?
Maybe, Are you have any script for collecting thousands rsz? but the problem is it is a 256-bit key not easy and it needs to develop high advance to do maybe try a test with some brainwallets but I would like to understand lattice first and how BKZ reduction: block size = 15 , it is works can possibly use million block size or brute force it I would like to try to modify the lattice-like use of kangaroo with collision if not yet understand how it works, can not use it.
|
|
|
|
COBRAS
Member
Offline
Activity: 850
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
|
|
June 06, 2022, 01:46:26 AM |
|
you try on real rsz from bitcoin blockchain ?
Maybe, Are you have any script for collecting thousands rsz? but the problem is it is a 256-bit key not easy and it needs to develop high advance to do maybe try a test with some brainwallets but I would like to understand lattice first and how BKZ reduction: block size = 15 , it is works can possibly use million block size or brute force it I would like to try to modify the lattice-like use of kangaroo with collision if not yet understand how it works, can not use it. I lost my scrypt for collect rsz, I try find it and message additionaly were
|
|
|
|
PrivatePerson
Member
Offline
Activity: 173
Merit: 12
|
|
August 29, 2022, 01:29:01 PM |
|
How do you prepare the list to be loaded into this script? gen_data.py is make data for use it run script gen_data.py then you got file data.json and run lattice_attack.py or run script gen_data.py -f filename then you got the file filename.json and run lattice_attack.py -f filename I test already if not have a leak nonce it not works test with a fake nonce leak (random) it never works gen_data.py - as I understand it generates not real data. I want to insert my rsz (r,s, nonce - if I understood correctly) values collected from the blockchain.
|
|
|
|
|