Bitcoin Forum
November 03, 2024, 10:57:31 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 2 [3]  All
  Print  
Author Topic: [IDEA] Removing trust from physical coin makers re: Priv Key generation  (Read 805 times)
LoyceV
Legendary
*
Offline Offline

Activity: 3486
Merit: 17617


Thick-Skinned Gang Leader and Golden Feather 2021


View Profile WWW
January 15, 2023, 02:05:52 PM
 #41

Dont think its impossible...I believe Ballet does it with their cards.
I checked their website, but couldn't find how they create it. Chances are someone has access.

Quote
And I am sure there are good programmers that can make this happen.
Then you'll have to trust the programmers again. Maybe it can work, if you use (and verify) open source software that creates a random private key, creates a random password, encrypts the private key without showing it, verifies the decryption process, and then only prints the encrypted private key and password on different printers handled by different people.

Maybe a comparison would be how large exchanges handle their cold storage nowadays: after many hacks, there shouldn't be a single person within the company that has full access to any private keys on his own.

▄▄███████████████████▄▄
▄█████████▀█████████████▄
███████████▄▐▀▄██████████
███████▀▀███████▀▀███████
██████▀███▄▄████████████
█████████▐█████████▐█████
█████████▐█████████▐█████
██████████▀███▀███▄██████
████████████████▄▄███████
███████████▄▄▄███████████
█████████████████████████
▀█████▄▄████████████████▀
▀▀███████████████████▀▀
Peach
BTC bitcoin
Buy and Sell
Bitcoin P2P
.
.
▄▄███████▄▄
▄████████
██████▄
▄██
█████████████████▄
▄███████
██████████████▄
███████████████████████
█████████████████████████
████████████████████████
█████████████████████████
▀███████████████████████▀
▀█████████████████████▀
▀██████████████████▀
▀███████████████▀
▀▀███████▀▀

▀▀▀▀███▀▀▀▀
EUROPE | AFRICA
LATIN AMERICA
▄▀▀▀











▀▄▄▄


███████▄█
███████▀
██▄▄▄▄▄░▄▄▄▄▄
████████████▀
▐███████████▌
▐███████████▌
████████████▄
██████████████
███▀███▀▀███▀
.
Download on the
App Store
▀▀▀▄











▄▄▄▀
▄▀▀▀











▀▄▄▄


▄██▄
██████▄
█████████▄
████████████▄
███████████████
████████████▀
█████████▀
██████▀
▀██▀
.
GET IT ON
Google Play
▀▀▀▄











▄▄▄▀
krogoth
Full Member
***
Offline Offline

Activity: 1312
Merit: 184


Krogothmanhattan alt account


View Profile WWW
January 15, 2023, 02:16:51 PM
 #42

Dont think its impossible...I believe Ballet does it with their cards.
I checked their website, but couldn't find how they create it. Chances are someone has access.

Quote
And I am sure there are good programmers that can make this happen.
Then you'll have to trust the programmers again. Maybe it can work, if you use (and verify) open source software that creates a random private key, creates a random password, encrypts the private key without showing it, verifies the decryption process, and then only prints the encrypted private key and password on different printers handled by different people.

Maybe a comparison would be how large exchanges handle their cold storage nowadays: after many hacks, there shouldn't be a single person within the company that has full access to any private keys on his own.

    Agree...their is always the human factor always.

     I will ask a Mr Robot if this is doable or not....but I figure the weakest link would be two people instead of one...which makes it a bit more secure.

    Again I prefered coins that are not buyer funded...but that's just me.

     But because of this fiasco that has changed my landscape

   

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>CIPHER BILLS-CIPHER BONDS-CIPHER STAMPS * www.CYPHERHODL.com * COLD STORAGE BITCOIN CERTIFICATES <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
Saint-loup
Legendary
*
Offline Offline

Activity: 2786
Merit: 2428



View Profile
January 15, 2023, 02:44:28 PM
Last edit: January 15, 2023, 03:04:47 PM by Saint-loup
Merited by LoyceV (4), vapourminer (1)
 #43

 Dont think its impossible...I believe Ballet does it with their cards.

  And I am sure there are good programmers that can make this happen.

  
Yes I know Ballet is using BIP38 keys but I thought it was only a way to avoid being stolen by the manufacturer of the cards.

Quote
1. A BIP38 passphrase, intermediate code, and Ballet product serial number are generated on an offline, air gapped computer at Ballet’s secure facility in the United States.
2. The wallet serial number and BIP38 intermediate code are securely transmitted to Ballet’s secure facility in China.
3. At Ballet’s secure facility in China, the BIP38 intermediate code is used to randomly generate a BIP38 private key entropy, which can only be decrypted by the original BIP38 passphrase. These two private key components, though they have never met or come into contact with each other, are cryptographically related, yet neither can be used to deduce the other. With this, we can create a pre-configured wallet for the customer, without ever decoding the actual private key, and without ever bringing together these critical two pieces of private key components. This is the genius of the BIP38 standard.[...]
https://www.ballet.com/2FKG/#six

Well it seems they've found a way to generate an already encrypted 6P key that works with a random password from what I understand. Why they don't release the code they use? Why it's not open source?
They say they dont generate the 6P key in one step but they first generate an "intermediate code" of the 6P key before sending it to the manufacturer that will decode it into the final 6P key, print it and seal it.
But they are fully able to decode this "intermediate code" themselves if they want from what I understand and nobody can guarantee they has/will never done it.

██
██
██
██
██
██
██
██
██
██
██
██
██
... LIVECASINO.io    Play Live Games with up to 20% cashback!...██
██
██
██
██
██
██
██
██
██
██
██
██
DaveF
Legendary
*
Offline Offline

Activity: 3654
Merit: 6660


Crypto Swap Exchange


View Profile WWW
January 15, 2023, 03:02:19 PM
 #44

@smoothie, I recall you reaching out to me with this concept in 2014… yea it started getting a little too complex for me as my work has enough complexities as is... especially at that time. And working solo is always nice b/c you can go at your own pace.

@DaveF, I started exploring the idea of integrating Opendimes into my bars when they came out. The question that prevented me from going this direction is: How can you guarantee that the Opendime will be good in 100+ years? Or even 10 years.

I also considered a sculptural work that had let’s say ten Opendimes inside, where each would hold something like 0.1 BTC - to mitigate the risk a little.

And lately I've been looking into these Satschips as they’re much smaller, but still the same issue with a potential hardware failure.

In my minds eye I'm currently working on a concept that will be a DIY style piece but unique to what's currently on the market.

And perhaps as I transition to these DIY versions, it might make the previous versions that can hold bitcoin and be sold on the secondary market more valuable.

So yea, It's likely that the Kialara Builders will be the last pieces I created that will come loaded with public/private keys. I will confirm this soon. I do hope the issue of trust can somehow be solved... it's something I am thinking about all the time.

With the same comment from my other post, I'm being a bit of an ass here not to be combative but to to make a point. Krogoth and mopar and probably a few others use a better grade of 'indestructible' paper for their keys. It should last 100 years. How do we know that some other people did not use the cheapest paper they could find and when you peel it in 2098 it's going to be so brittle and disintegrate into dust.

I don't know the raw cost of the satschips but you could in theory sole the issue like you said by using a few of them each holding a fraction of the funds. The other option, and I don't know if it's viable would be to have several of them setup as an x of y multisig. If they are low enough cost in bulk could you do a 2 of 5 and not really worry about it.


for bip38 and with having 2 entities involved with applying first the PK and then the pw - you would probably need two people somewhat close so as to not be paying a fortune to ship coins back and forth and without risk to losing them in the process.

there is the split key method https://en.bitcoin.it/wiki/Split-key_vanity_address

I apologize but someone here was working on it and at this time and moment, I cannot recall who it was.

another option is always offer DIY


I think you are talking about WhyFly: https://bitcointalk.org/index.php?topic=5397602

-Dave


█▀▀▀











█▄▄▄
▀▀▀▀▀▀▀▀▀▀▀
e
▄▄▄▄▄▄▄▄▄▄▄
█████████████
████████████▄███
██▐███████▄█████▀
█████████▄████▀
███▐████▄███▀
████▐██████▀
█████▀█████
███████████▄
████████████▄
██▄█████▀█████▄
▄█████████▀█████▀
███████████▀██▀
████▀█████████
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
c.h.
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▀▀▀█











▄▄▄█
▄██████▄▄▄
█████████████▄▄
███████████████
███████████████
███████████████
███████████████
███░░█████████
███▌▐█████████
█████████████
███████████▀
██████████▀
████████▀
▀██▀▀
MoparMiningLLC
aka Stryfe
Legendary
*
Online Online

Activity: 2254
Merit: 2412


EIN: 82-3893490


View Profile WWW
January 15, 2023, 05:21:49 PM
 #45

Yes! Whyfhy! He actually had me play with it when he was working on it a while back the name was just eluding me yesterday

As for the paper - yes that is very important - ask satslife the nightmare he had with an xmr coin a while back - luckily they did get if remedied and figured out but the key was literally falling apart/fading as he watched it - luckily he took pictures

Mine BTC @ kano.is
Offering escrow services https://bitcointalk.org/index.php?topic=5154480
All Bitcoin 3D printing needs at CryptoCloaks
OgNasty
Donator
Legendary
*
Offline Offline

Activity: 4914
Merit: 4827


Leading Crypto Sports Betting & Casino Platform


View Profile WWW
January 15, 2023, 06:17:10 PM
 #46

I think it's good to explore ways to keep people honest.  That being said, personally, it has always seemed to me that people are willing to sacrifice some of their security for simplicity.  I thought about offering coins with the suggested methods but I don't believe anyone would actually prefer that and assumed the level of education and assistance that would be required for most users would be more than I'd personally be willing to take on and I don't think the users would want that either.  I'm not saying it shouldn't be done or that there isn't a market for it, but my ultimate solution was to try and make coins that were cool and demonstrated the ability to hold BTC, but wouldn't require deposits to load them or eventually hold so much BTC that if it were lost by the user it would be life changing.  I'm often criticized for my coins not holding more BTC, but I'm not sure those complaining consider that I didn't ever want to be the guy that generated keys that held thousands of BTC for others.  I wanted to be the guy that made demonstrably cool coins... 

I think a standard of 2fa or multisig being established for makers wouldn't be a bad thing and maybe for loaded coins it should be something customers should consider.  However, I only own 1 2fa coin, the 1000 BTC Casascius Gold coin, and I'd honestly prefer if it wasn't 2fa.  I believe coblee even once said that none of the people he sold the coins to ever even asked about the 2fa, making it beyond worthless.

..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
krogothmanhattan
Cypher Hodl LLC
Legendary
*
Offline Offline

Activity: 2702
Merit: 3540


The Stone the masons rejected was the cornerstone.


View Profile WWW
January 15, 2023, 06:28:47 PM
 #47

I think it's good to explore ways to keep people honest.  That being said, personally, it has always seemed to me that people are willing to sacrifice some of their security for simplicity.  I thought about offering coins with the suggested methods but I don't believe anyone would actually prefer that and assumed the level of education and assistance that would be required for most users would be more than I'd personally be willing to take on and I don't think the users would want that either.  I'm not saying it shouldn't be done or that there isn't a market for it, but my ultimate solution was to try and make coins that were cool and demonstrated the ability to hold BTC, but wouldn't require deposits to load them or eventually hold so much BTC that if it were lost by the user it would be life changing.  I'm often criticized for my coins not holding more BTC, but I'm not sure those complaining consider that I didn't ever want to be the guy that generated keys that held thousands of BTC for others.  I wanted to be the guy that made demonstrably cool coins... 

I think a standard of 2fa or multisig being established for makers wouldn't be a bad thing and maybe for loaded coins it should be something customers should consider.  However, I only own 1 2fa coin, the 1000 BTC Casascius Gold coin, and I'd honestly prefer if it wasn't 2fa.  I believe coblee even once said that none of the people he sold the coins to ever even asked about the 2fa, making it beyond worthless.

  Wouldnt the 2Fa be an issue like with Titan? https://bitcointalk.org/index.php?topic=5369583.0

   Again if a website isnt kept online or anyone operating it is corrupt then it aint such a great idea IMO.

   

░░░░░░░░░░░░░░░░░░░░░░▄▄▀█▀▄▄
░░░░░░░░░░░░░░░░░░▄▀▀▀░░░█░░░▀▀▄
░░░░░░░░░░░░░░░▄▀▀░░░░░░░█░░░░░░▀▀▄
░░░░░░░░░░░░░▄▀░░░░░░░░░░█░░░░░░░░░▀▄
░░░░░░░░░░░░█░░░░░░░░░░▄▄█▄░░░░░░░░░░█
░░░░░░░░░░░█░░░░░░▄███████████▄░░░░░░▐▌
░░░░░░░░░░█░░░░▄█████████████████▄░░░░█
░░░░░░░░░▐▌░░░█▀░░░▀▀▀▀▀▀▀▀▀▀▀▀░░▀█▄░░▐▌
░░░░░░░░░█░░▄█▄░░░░░▄▄▄▄░░░░▄▄▄░░░░██▄▐▌
░░░░░░░░▐░▄█▌▄▄░░░░░▀▀▀▀░░░░▀▀▀░░░████▌█
░░░░░░░▐▌▐███████▄░░░░░░░▄▄░░░░░▄█████▌░█
░░░░░░░█░▐█████████████████████████████░░█
░░░░░░░█░░██████████████████████████████░░▌
░░░░▄▄██▄░▀▀██████████████████████████▀░░░███▄▄
░░▄█░░░░░█▄▄▄▄▄▄░▀▀█████████████████▀░▄▄█▀░░░░░█▄
░█░░░░░░░░░░░░░░▀▀▀▀██████████████▄▄▀▀░░░░░░░░░░░█
█░░░░░░░░░░░░░░░░░░░░░░░░▀▀▀▀░░░░░░░░░░░░░░░░░░░░░█






░░░░░░░░░░░░░░░░░░░░░░▄▄▀█▀▄▄
░░░░░░░░░░░░░░░░░░▄▀▀▀░░░█░░░▀▀▄
░░░░░░░░░░░░░░░▄▀▀░░░░░░░█░░░░░░▀▀▄
░░░░░░░░░░░░░▄▀░░░░░░░░░░█░░░░░░░░░▀▄
░░░░░░░░░░░░█░░░░░░░░░░▄▄█▄░░░░░░░░░░█
░░░░░░░░░░░█░░░░░░▄███████████▄░░░░░░▐▌
░░░░░░░░░░█░░░░▄█████████████████▄░░░░█
░░░░░░░░░▐▌░░░█▀░░░▀▀▀▀▀▀▀▀▀▀▀▀░░▀█▄░░▐▌
░░░░░░░░░█░░▄█▄░░░░░▄▄▄▄░░░░▄▄▄░░░░██▄▐▌
░░░░░░░░▐░▄█▌▄▄░░░░░▀▀▀▀░░░░▀▀▀░░░████▌█
░░░░░░░▐▌▐███████▄░░░░░░░▄▄░░░░░▄█████▌░█
░░░░░░░█░▐█████████████████████████████░░█
░░░░░░░█░░██████████████████████████████░░▌
░░░░▄▄██▄░▀▀██████████████████████████▀░░░███▄▄
░░▄█░░░░░█▄▄▄▄▄▄░▀▀█████████████████▀░▄▄█▀░░░░░█▄
░█░░░░░░░░░░░░░░▀▀▀▀██████████████▄▄▀▀░░░░░░░░░░░█
█░░░░░░░░░░░░░░░░░░░░░░░░▀▀▀▀░░░░░░░░░░░░░░░░░░░░░█
OgNasty
Donator
Legendary
*
Offline Offline

Activity: 4914
Merit: 4827


Leading Crypto Sports Betting & Casino Platform


View Profile WWW
January 15, 2023, 06:45:27 PM
 #48

I think it's good to explore ways to keep people honest.  That being said, personally, it has always seemed to me that people are willing to sacrifice some of their security for simplicity.  I thought about offering coins with the suggested methods but I don't believe anyone would actually prefer that and assumed the level of education and assistance that would be required for most users would be more than I'd personally be willing to take on and I don't think the users would want that either.  I'm not saying it shouldn't be done or that there isn't a market for it, but my ultimate solution was to try and make coins that were cool and demonstrated the ability to hold BTC, but wouldn't require deposits to load them or eventually hold so much BTC that if it were lost by the user it would be life changing.  I'm often criticized for my coins not holding more BTC, but I'm not sure those complaining consider that I didn't ever want to be the guy that generated keys that held thousands of BTC for others.  I wanted to be the guy that made demonstrably cool coins... 

I think a standard of 2fa or multisig being established for makers wouldn't be a bad thing and maybe for loaded coins it should be something customers should consider.  However, I only own 1 2fa coin, the 1000 BTC Casascius Gold coin, and I'd honestly prefer if it wasn't 2fa.  I believe coblee even once said that none of the people he sold the coins to ever even asked about the 2fa, making it beyond worthless.

  Wouldnt the 2Fa be an issue like with Titan? https://bitcointalk.org/index.php?topic=5369583.0

   Again if a website isnt kept online or anyone operating it is corrupt then it aint such a great idea IMO.

2fa could be done in different ways.  I'm not sure exactly how Titan did it as I never purchased any of their goods (what had they done before selling those coins to earn the trust required to offer such a product?), but if it relies on them being around in the future then they definitely did it poorly.  If I were going to implement it, I would have done it in a way where the user would have supplied a piece of the information used to generate the key.  Maybe 2fa isn't the right descriptor (split key generation?), it definitely isn't my area of expertise.  The problem however with the way that I looked at implementing it, is that the resale of the coin would be heavily dependent on the original buyer providing the new buyer with the information needed to access the private key (like in my coblee example above).  This would likely result in buyers losing their piece of the puzzle and funds being lost, or new buyers not getting correct information from the original owner, etc...  It would be a customer service nightmare.  That's a big part of the reason I did not go that route.  Simplicity and customer experience being the others.

..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
MoparMiningLLC
aka Stryfe
Legendary
*
Online Online

Activity: 2254
Merit: 2412


EIN: 82-3893490


View Profile WWW
January 15, 2023, 06:55:43 PM
 #49

can nfc tech be used to solve/aide in any of this?

I have thought about encoding private keys to nfc tag and then having some sort of key that unlocks the nfc chip if its split key then the "user" part is on the nfc tag while the maker part is under the tag and under the holo.

havent got a chance to play with this idea yet though.

Mine BTC @ kano.is
Offering escrow services https://bitcointalk.org/index.php?topic=5154480
All Bitcoin 3D printing needs at CryptoCloaks
LoyceV
Legendary
*
Offline Offline

Activity: 3486
Merit: 17617


Thick-Skinned Gang Leader and Golden Feather 2021


View Profile WWW
January 15, 2023, 07:19:49 PM
 #50

I have thought about encoding private keys to nfc tag
If it breaks, your money is gone. With a 10 plus years lifespan, that's a real risk for collectibles.

▄▄███████████████████▄▄
▄█████████▀█████████████▄
███████████▄▐▀▄██████████
███████▀▀███████▀▀███████
██████▀███▄▄████████████
█████████▐█████████▐█████
█████████▐█████████▐█████
██████████▀███▀███▄██████
████████████████▄▄███████
███████████▄▄▄███████████
█████████████████████████
▀█████▄▄████████████████▀
▀▀███████████████████▀▀
Peach
BTC bitcoin
Buy and Sell
Bitcoin P2P
.
.
▄▄███████▄▄
▄████████
██████▄
▄██
█████████████████▄
▄███████
██████████████▄
███████████████████████
█████████████████████████
████████████████████████
█████████████████████████
▀███████████████████████▀
▀█████████████████████▀
▀██████████████████▀
▀███████████████▀
▀▀███████▀▀

▀▀▀▀███▀▀▀▀
EUROPE | AFRICA
LATIN AMERICA
▄▀▀▀











▀▄▄▄


███████▄█
███████▀
██▄▄▄▄▄░▄▄▄▄▄
████████████▀
▐███████████▌
▐███████████▌
████████████▄
██████████████
███▀███▀▀███▀
.
Download on the
App Store
▀▀▀▄











▄▄▄▀
▄▀▀▀











▀▄▄▄


▄██▄
██████▄
█████████▄
████████████▄
███████████████
████████████▀
█████████▀
██████▀
▀██▀
.
GET IT ON
Google Play
▀▀▀▄











▄▄▄▀
DaveF
Legendary
*
Offline Offline

Activity: 3654
Merit: 6660


Crypto Swap Exchange


View Profile WWW
January 15, 2023, 08:47:16 PM
 #51

can nfc tech be used to solve/aide in any of this?

I have thought about encoding private keys to nfc tag and then having some sort of key that unlocks the nfc chip if its split key then the "user" part is on the nfc tag while the maker part is under the tag and under the holo.

havent got a chance to play with this idea yet though.

Been doing some googling today about nfc and many casinos are using them in their chips. With the use / abuse and washing / cleaning cycles that they go through the chips tend to be destroyed before the tags stop working. BUT, there seems to be very little real data on that; just comments and discussions. If there is some public information out there my google skills are lacking in finding it.

The issue that comes to mind is that for casinos, a lot of the time, when it comes to dealing with the money side of it, cost is not an issue.
They don't, but if they replaced them as they are damaged beyond repair, they would probably buy more tomorrow to replace the ones damaged over the weekend then all the coin makers here would buy this year combined.

What would be the upper limit of additional cost people would be willing to pay for coins like that. Could put the lower end ones out of business, which is not the goal here. Nor a desired side effect.

-Dave

█▀▀▀











█▄▄▄
▀▀▀▀▀▀▀▀▀▀▀
e
▄▄▄▄▄▄▄▄▄▄▄
█████████████
████████████▄███
██▐███████▄█████▀
█████████▄████▀
███▐████▄███▀
████▐██████▀
█████▀█████
███████████▄
████████████▄
██▄█████▀█████▄
▄█████████▀█████▀
███████████▀██▀
████▀█████████
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
c.h.
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▀▀▀█











▄▄▄█
▄██████▄▄▄
█████████████▄▄
███████████████
███████████████
███████████████
███████████████
███░░█████████
███▌▐█████████
█████████████
███████████▀
██████████▀
████████▀
▀██▀▀
MoparMiningLLC
aka Stryfe
Legendary
*
Online Online

Activity: 2254
Merit: 2412


EIN: 82-3893490


View Profile WWW
January 15, 2023, 09:22:37 PM
 #52

I have thought about encoding private keys to nfc tag
If it breaks, your money is gone. With a 10 plus years lifespan, that's a real risk for collectibles.

Good point. I was not aware of any 10 year lifespan.

Mine BTC @ kano.is
Offering escrow services https://bitcointalk.org/index.php?topic=5154480
All Bitcoin 3D printing needs at CryptoCloaks
minerjones
Mantis
Legendary
*
Offline Offline

Activity: 3388
Merit: 3777



View Profile
January 16, 2023, 04:59:33 PM
 #53

"Removing trust from physical coin makers re: Priv Key generation"

easy.. don't make keys for your collectibles...they don't need it

███████████████████████
████▐██▄█████████████████
████▐██████▄▄▄███████████
████▐████▄█████▄▄████████
████▐█████▀▀▀▀▀███▄██████
████▐███▀████████████████
████▐█████████▄█████▌████
████▐██▌█████▀██████▌████
████▐██████████▀████▌████
█████▀███▄█████▄███▀█████
███████▀█████████▀███████
██████████▀███▀██████████

███████████████████████
.
BC.GAME
▄▄▀▀▀▀▀▀▀▄▄
▄▀▀░▄██▀░▀██▄░▀▀▄
▄▀░▐▀▄░▀░░▀░░▀░▄▀▌░▀▄
▄▀▄█▐░▀▄▀▀▀▀▀▄▀░▌█▄▀▄
▄▀░▀░░█░▄███████▄░█░░▀░▀▄
█░█░▀░█████████████░▀░█░█
█░██░▀█▀▀█▄▄█▀▀█▀░██░█
█░█▀██░█▀▀██▀▀█░██▀█░█
▀▄▀██░░░▀▀▄▌▐▄▀▀░░░██▀▄▀
▀▄▀██░░▄░▀▄█▄▀░▄░░██▀▄▀
▀▄░▀█░▄▄▄░▀░▄▄▄░█▀░▄▀
▀▄▄▀▀███▄███▀▀▄▄▀
██████▄▄▄▄▄▄▄██████
.
..CASINO....SPORTS....RACING..


▄▄████▄▄
▄███▀▀███▄
██████████
▀███▄░▄██▀
▄▄████▄▄░▀█▀▄██▀▄▄████▄▄
▄███▀▀▀████▄▄██▀▄███▀▀███▄
███████▄▄▀▀████▄▄▀▀███████
▀███▄▄███▀░░░▀▀████▄▄▄███▀
▀▀████▀▀████████▀▀████▀▀
Report To Admin
OgNasty
Donator
Legendary
*
Offline Offline

Activity: 4914
Merit: 4827


Leading Crypto Sports Betting & Casino Platform


View Profile WWW
January 16, 2023, 05:29:30 PM
 #54

"Removing trust from physical coin makers re: Priv Key generation"

easy.. don't make keys for your collectibles...they don't need it

There are Bitcoin collectibles, and there are Bitcoin themed collectibles.  One is an innovative product where the maker publishes lists of the keys used and has the products backed by something, an organization, physical BTC, usage case, etc...  The other is a trinket someone made and slapped a BTC logo on (maybe even including a non-vanity key with no use or published list as an afterthought).  People should be able to identify the difference and not get fooled into paying BTC collectible markups for BTC themed collectibles.  An example I would give is the difference in price I charge between a 1oz silver Bitcoin Binary round and a 1oz silver NastyFans Minted Seat. 

Nothing wrong with Bitcoin themed collectibles, I own many, but there's a huge difference between a themed collectible that has a logo on it versus a collectible that can functionally interact with a blockchain. 

I agree that you are right Bitcoin themed collectibles don't need a private key, but they are not in the same product galaxy as a functional collectible with a private key.

..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
minerjones
Mantis
Legendary
*
Offline Offline

Activity: 3388
Merit: 3777



View Profile
January 16, 2023, 08:30:08 PM
 #55

"Removing trust from physical coin makers re: Priv Key generation"

easy.. don't make keys for your collectibles...they don't need it

There are Bitcoin collectibles, and there are Bitcoin themed collectibles.  One is an innovative product where the maker publishes lists of the keys used and has the products backed by something, an organization, physical BTC, usage case, etc...  The other is a trinket someone made and slapped a BTC logo on (maybe even including a non-vanity key with no use or published list as an afterthought).  People should be able to identify the difference and not get fooled into paying BTC collectible markups for BTC themed collectibles.  An example I would give is the difference in price I charge between a 1oz silver Bitcoin Binary round and a 1oz silver NastyFans Minted Seat.

Nothing wrong with Bitcoin themed collectibles, I own many, but there's a huge difference between a themed collectible that has a logo on it versus a collectible that can functionally interact with a blockchain. 

I agree that you are right Bitcoin themed collectibles don't need a private key, but they are not in the same product galaxy as a functional collectible with a private key.

Good example...
After a little thought, I find it interesting that this is probably the only hobby/collectible space that attaches more value to the collectible by attaching more value to the collectible. Tongue
The only other collectible space like this I can think of would be traditional numismatics, where a collectible $20 bill is already worth $20 due to the value already associated with it.

it's like taping a $100 bill to a baseball card.... lol Cheesy

███████████████████████
████▐██▄█████████████████
████▐██████▄▄▄███████████
████▐████▄█████▄▄████████
████▐█████▀▀▀▀▀███▄██████
████▐███▀████████████████
████▐█████████▄█████▌████
████▐██▌█████▀██████▌████
████▐██████████▀████▌████
█████▀███▄█████▄███▀█████
███████▀█████████▀███████
██████████▀███▀██████████

███████████████████████
.
BC.GAME
▄▄▀▀▀▀▀▀▀▄▄
▄▀▀░▄██▀░▀██▄░▀▀▄
▄▀░▐▀▄░▀░░▀░░▀░▄▀▌░▀▄
▄▀▄█▐░▀▄▀▀▀▀▀▄▀░▌█▄▀▄
▄▀░▀░░█░▄███████▄░█░░▀░▀▄
█░█░▀░█████████████░▀░█░█
█░██░▀█▀▀█▄▄█▀▀█▀░██░█
█░█▀██░█▀▀██▀▀█░██▀█░█
▀▄▀██░░░▀▀▄▌▐▄▀▀░░░██▀▄▀
▀▄▀██░░▄░▀▄█▄▀░▄░░██▀▄▀
▀▄░▀█░▄▄▄░▀░▄▄▄░█▀░▄▀
▀▄▄▀▀███▄███▀▀▄▄▀
██████▄▄▄▄▄▄▄██████
.
..CASINO....SPORTS....RACING..


▄▄████▄▄
▄███▀▀███▄
██████████
▀███▄░▄██▀
▄▄████▄▄░▀█▀▄██▀▄▄████▄▄
▄███▀▀▀████▄▄██▀▄███▀▀███▄
███████▄▄▀▀████▄▄▀▀███████
▀███▄▄███▀░░░▀▀████▄▄▄███▀
▀▀████▀▀████████▀▀████▀▀
Report To Admin
Saint-loup
Legendary
*
Offline Offline

Activity: 2786
Merit: 2428



View Profile
January 18, 2023, 02:15:17 AM
Last edit: January 18, 2023, 11:13:42 AM by Saint-loup
 #56

 Not if you have two people doing them separately.

  They would both need to try and scam you for it to work...instead of one person. One would not know the others keys or password
That's impossible. You can't encrypt the private key without knowing both password and private key.

It means the unencrypted one should be generated by a kind of blackbox that will destroy it after receiving the password and encrypting it into the 6P one.
People will need to trust this blackbox, this process and its robustness against possible hacks.
In that case, you need to trust whoever created the blackbox. I've thought of a scenario in which 3 trusted people work together to verify all equipment, create private keys, seal the holograms and destroy all other data, but giving more people access in the first place increases the risks again. Cameras can be very small and hidden.

  Dont think its impossible...I believe Ballet does it with their cards.

  And I am sure there are good programmers that can make this happen.
To complete my previous answer, Ballet seems to use a feature belonging to the BIP38 specifications, the EC multiply mode
Quote
Encryption when EC multiply mode is used
Encrypting a private key with EC multiplication offers the ability for someone to generate encrypted keys knowing only an EC point derived from the original passphrase and some salt generated by the passphrase's owner, and without knowing the passphrase itself. Only the person who knows the original passphrase can decrypt the private key. A code known as an intermediate code conveys the information needed to generate such a key without knowledge of the passphrase.
[...]
The person who knows the passphrase and who is the intended beneficiary of the private keys is called the owner. He will generate one or more "intermediate codes", which are the first factor of a two-factor redemption system, and will give them to someone else we'll call printer, who generates a key pair with an intermediate code can know the address and encrypted private key, but cannot decrypt the private key without the original passphrase.
This article ELI5 a little bit the process https://tara-annison.medium.com/encrypted-private-keys-an-outline-of-bip38-98ceae5d1558
But has we can read below from BIP38 specifications, the printer needs to generate a 24 random bytes(ie 192bits) seed by himself.
Thanks to that the purchaser can't guess which private key has been generated from his intermediate code, if the private key is sealed by the printer.
But CMIIW Ballet doesn't offer a way to check if the printer is really generating random seeds by himself or if he is using a given seed instead (given by Ballet).
Quote
Steps to create new encrypted private keys given intermediate_passphrase_string from owner (so we have ownerentropy, and passpoint, but we do not have passfactor or the passphrase):
Set flagbyte.
[...]
Generate 24 random bytes, call this seedb. Take SHA256(SHA256(seedb)) to yield 32 bytes, call this factorb.
ECMultiply passpoint by factorb. Use the resulting EC point as a public key and hash it into a Bitcoin address using either compressed or uncompressed public key methodology (specify which methodology is used inside flagbyte). This is the generated Bitcoin address, call it generatedaddress.
https://github.com/bitcoin/bips/blob/master/bip-0038.mediawiki#encryption-when-ec-multiply-mode-is-used

Libbitcoin-explorer (fully open source) for example, allows to use this feature from BIP38 thanks to the bx ek-new command
Quote
Create an encrypted private key from an intermediate passphrase token (BIP38).

$ bx ek-new --help
Usage: bx ek-new [-hu] [--config VALUE] [--version VALUE] TOKEN [SEED]  

Info: Create an encrypted private key from an intermediate passphrase    
token (BIP38).                                                          

Options (named):
[...]                

Arguments (positional):

TOKEN                The intermediate passphrase token.                  
SEED                 The Base16 entropy for the new encrypted private    
                     key. Must be at least 192 bits in length (only the  
                     first 192 bits are used). If not specified the seed
                     is read from STDIN.
https://github.com/libbitcoin/libbitcoin-explorer/wiki/bx-ek-new

██
██
██
██
██
██
██
██
██
██
██
██
██
... LIVECASINO.io    Play Live Games with up to 20% cashback!...██
██
██
██
██
██
██
██
██
██
██
██
██
Pages: « 1 2 [3]  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!