Delivery-date: Fri, 24 May 2024 08:08:16 -0700 Received: from mail-qt1-f186.google.com ([209.85.160.186]) by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.94.2) (envelope-from ) id 1sAWWl-0007bk-T9 for bitcoindev@gnusha.org; Fri, 24 May 2024 08:08:16 -0700 Received: by mail-qt1-f186.google.com with SMTP id d75a77b69052e-43e096020basf16112881cf.3 for ; Fri, 24 May 2024 08:08:15 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1716563289; cv=pass; d=google.com; s=arc-20160816; b=mHVXxnXqlhyscNFWoqOGqb1AXsgUn1aMu25wVMikqRp2KU/z/82xck/9A2XpWJai7a WO/YJscqkg4er1DJrEyoV4p9ejnZ8cFYpz9UjMY0+gCB2dw+gha1E/3m6smQGkFTHo1z p/5dKzqpzkkIKibmqix9Ls+BD+WG4jaLqYSNof5oq7FtYfOfjO8KS7iy7MeeGcyMTOLS y6AUP1ZvkTqQM0us54ZSfDq7D1jwo0yo0arhfbUxXJV4IuFxFlkiL3DdiMP5vaaaTcTe tQ8clSic7wKyynRvgju0IlqbpuRfQvolFgHVz2ChVUoWeyN1GHj1LtoQxUdR/ZOslxxY /f5g== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to:mime-version:feedback-id :references:in-reply-to:message-id:subject:cc:from:to:date :dkim-signature; bh=HOJhPlL3O1NyV2dZWNWdCpCdTdMSjx3q5s2mqZcHK1g=; fh=LvMfqjLm7+qrxRASERDneG2CVEYOS4fPuhH1i12RTPY=; b=uyCMUrsARhUjUXOvwe7vo4kRWwTjJ14oLgnqw9YC4oYL8qI9HDw7LBGU3hDshltaVL ABKfxfoKr6L9UltHDlLELu+8QgqV1UUUQW6bqmmY4w4b6nPRvKbcutlHKlnn9Y9nOCt4 1NofjkpJaqEWbLNq8dVAlC5RTU0uO1fzyrmTwqENfgQWINiW4VKHaHzZywc4V5r2QQ/U t9q0nristwHq3QGW83AjwHdzKosqi0wpz85IyPzyfnCbz0VucEh/QGYJxvK2xMKZusyQ 3WadG2JaG3k3eB+a2WJYia8ABj3gt0Ef5L9sjtZMZVW5em4TIIrTU3xqTqNW6S+visy4 D7cA==; darn=gnusha.org ARC-Authentication-Results: i=2; gmr-mx.google.com; dkim=pass header.i=@proton.me header.s=protonmail header.b=LQlxGCku; spf=pass (google.com: domain of ganrama@proton.me designates 185.70.40.130 as permitted sender) smtp.mailfrom=ganrama@proton.me; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=proton.me DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20230601; t=1716563289; x=1717168089; darn=gnusha.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender:mime-version :feedback-id:references:in-reply-to:message-id:subject:cc:from:to :date:from:to:cc:subject:date:message-id:reply-to; bh=HOJhPlL3O1NyV2dZWNWdCpCdTdMSjx3q5s2mqZcHK1g=; b=eEMFjNeVvHPpWFpyRdbZpDUCrdWHkoZFJGbofo6vNGNLn8tVFOcWZ26+Dl2cgiGcAO OMBszeriEIhezHXnSjPp0HnhmW9FQESGXxOERP/Hl+FvmQXmXyTJU3hvOjbMByWKa9iS eAvx2HBn1X0BLFWlL1InZet1TTQbzdyVpewKvYSf5jeSLNsdqoEJxWEvy2j+jG4V7tWB XA7w+Ifsb18dRTHudTqThuuhwk0/PbrXHFJCD/a+crre2zaK6kgO29u1omdsZZji0bN6 +Xf+7ToikQmk3MkOoqSTjVSha6qLmnVseCwgQ8AIXiNMuLuZ8RqUP1lquk2sdIvHUmMR 3zQA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1716563289; x=1717168089; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender:mime-version :feedback-id:references:in-reply-to:message-id:subject:cc:from:to :date:x-beenthere:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=HOJhPlL3O1NyV2dZWNWdCpCdTdMSjx3q5s2mqZcHK1g=; b=CRpsZvEJ78qb4WPG+mffbg+LqGHGD/oyw/GpiGC7vCdUzyyebuiouCWI5gakE71nXZ IsGJF1lYprg525sX0gOv1QQ3MIWQN4QZa4gMep3C/TJB/f7XzQZvM9+Eq8c1YdTVYIt3 uhWY9Khs7iW3EAMrvwCq1RwbamUTD3mkOYswl2DtNFyGAuVidlIPEPXVj3nv/UoSwh1A eX1CFZX81RFo4ykW0LJibKvM5J1RSg8XrkM4wv/SKyXw7j7pTxYEvuFDFLYxa96hz0/7 Rm0PlG+0Rd5YgRxUnQneQj0Ubifrp2jt//sck1MNWXAjZ74gBOT/EM09VPVGuzYPs/Rh g21A== X-Forwarded-Encrypted: i=2; AJvYcCV6vUYGkQ5G8XcBdYQSy/qz2EBFfOdq1K9mfSQTn6xbq1xNhd9NX8YSzNYfUQkmTj8bb6DdxIFGP0b6yWnjoQEICJbwXe8= X-Gm-Message-State: AOJu0YyDl5JCt5VoLxoqr4x4H2U5ywPMKTnqZPKJF1YK3GiBPnUe0UCz gnEOWgEP8Jrx3Mg56oakiUACdLtx60AmV1MZerB/k0PacnUK+W+n X-Google-Smtp-Source: AGHT+IHxGACQTUVnnET6TF7s76jvsKEe+c1/hF7imDIMtlBVw5NgdxctO5WOXptZV4nuYCHBQWcuIQ== X-Received: by 2002:a05:622a:1811:b0:43a:bd92:6ad4 with SMTP id d75a77b69052e-43fb0ef0b94mr24948361cf.46.1716563289489; Fri, 24 May 2024 08:08:09 -0700 (PDT) X-BeenThere: bitcoindev@googlegroups.com Received: by 2002:a05:622a:1988:b0:43a:9717:34db with SMTP id d75a77b69052e-43faf014a50ls13392531cf.1.-pod-prod-05-us; Fri, 24 May 2024 08:08:08 -0700 (PDT) X-Received: by 2002:a05:620a:46a1:b0:792:f465:fa25 with SMTP id af79cd13be357-794ab089f97mr645485a.6.1716563288064; Fri, 24 May 2024 08:08:08 -0700 (PDT) Received: by 2002:a05:620a:468d:b0:793:220:79c1 with SMTP id af79cd13be357-794abeeaeffms85a; Fri, 24 May 2024 08:02:48 -0700 (PDT) X-Received: by 2002:a50:d55d:0:b0:570:3b4:53ff with SMTP id 4fb4d7f45d1cf-578518ef7abmr1844961a12.6.1716562966109; Fri, 24 May 2024 08:02:46 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1716562966; cv=none; d=google.com; s=arc-20160816; b=KOEs1iFC4QwnpPa6Ao5Ej6hKa1JeGsWcswaj12NLETXXk2+gTFse9uzywiGwZ+CTPN SJc8ZZ3FRPwR8Ohmu6KX8lMPf0qfvKWal5cHEjPe0LBxox8x38rUxEs6wFpPdVanTzou sS/J/JclEp2rrX4KHTCxVLDpjOKT2jRkfPxW/4AeQXLoCH/F7lmBs5llkPM2fMJv7sYM g1osgyErqezb3WzqFJxvVCw38ybzpzu0N2b4iJ10VBt3HCIbYGAby7ji+DiF86SUrkpM lg2l+0ZlNc+l4BK1mR63l8Eba+SMTpVZoJUxVq32PGTh2Ls7I/OO+o3xgNS5YNtYz/en awlA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:feedback-id:references :in-reply-to:message-id:subject:cc:from:to:date:dkim-signature; bh=lPKm5fHEEWfPeyJLquzhDuVvxJOu8qi4j1GCfsOyQQU=; fh=OfJO9UbfJJMWyNfR6ZYY8yzp2YD4Z+A+tUdE5xF3F34=; b=SLr/obBtDifFZ3ifR2/sBIpR6WSRuCbVOFx/hLhzzTVgDkwh/7zGQ++7I4MbEOdn34 F9zVkJYApGoWqWCAZicNCqDPtgfAZmgbD/c/6tAZf4DVQFHDPiqS5eoe8AgdklJsF54a LnYhiRQVIwQM37eTFaX+5p+1qBZggplf0P6b+zedE403FaqVHMVvGUW8z+eUoQlYCt+5 y342Dc4B9LSkqBpEoJkAKDxCw/GiYRKIZCpV8hjvRD64swMnh/WHACKfJRflPaDnC4Tu y7MPRA2wZo/AKscXwDQQZgq5CT/nkJJz7kpYOEslbFtT6l8w1xdnSSLsIgMVymUPxAeu DWIQ==; dara=google.com ARC-Authentication-Results: i=1; gmr-mx.google.com; dkim=pass header.i=@proton.me header.s=protonmail header.b=LQlxGCku; spf=pass (google.com: domain of ganrama@proton.me designates 185.70.40.130 as permitted sender) smtp.mailfrom=ganrama@proton.me; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=proton.me Received: from mail-40130.protonmail.ch (mail-40130.protonmail.ch. [185.70.40.130]) by gmr-mx.google.com with ESMTPS id 4fb4d7f45d1cf-57852547c7asi22694a12.1.2024.05.24.08.02.46 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 24 May 2024 08:02:46 -0700 (PDT) Received-SPF: pass (google.com: domain of ganrama@proton.me designates 185.70.40.130 as permitted sender) client-ip=185.70.40.130; Date: Fri, 24 May 2024 15:02:39 +0000 To: Andrew Poelstra From: "'Rama Gan' via Bitcoin Development Mailing List" Cc: "bitcoindev@googlegroups.com" Subject: Re: [bitcoindev] Penlock, a paper-computer for secret-splitting BIP39 seed phrases Message-ID: In-Reply-To: References: <9bt6npqSdpuYOcaDySZDvBOwXVq_v70FBnIseMT6AXNZ4V9HylyubEaGU0S8K5TMckXTcUqQIv-FN-QLIZjj8hJbzfB9ja9S8gxKTaQ2FfM=@proton.me> Feedback-ID: 79991369:user:proton X-Pm-Message-ID: c6b8cbcff77610ebea55c671b9757f2d6185b750 MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" X-Original-Sender: ganrama@proton.me X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass header.i=@proton.me header.s=protonmail header.b=LQlxGCku; spf=pass (google.com: domain of ganrama@proton.me designates 185.70.40.130 as permitted sender) smtp.mailfrom=ganrama@proton.me; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=proton.me X-Original-From: Rama Gan Reply-To: Rama Gan Precedence: list Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com List-ID: X-Google-Group-Id: 786775582512 List-Post: , List-Help: , List-Archive: , List-Unsubscribe: , X-Spam-Score: -1.0 (-) > Are you sure? It seems that if two shares have the same value in a given > position, the line through them should be constant, meaning that every > other share will have the same constant value. For the 2-of-M split, the secret is encoded as the difference between two consecutive shares instead of being a point at a given index. If both the secret and share A have a header `HEAD`, then share B will start with `====` (zeros) and share C will be the additive inverse of `HEAD`. The secret is the "slope" of the line; for the shares headers to be constant, the solution would be to fill the corresponding spots with zeros on the secret. So yes it _is_ possible, but then the 2-of-M and the K-of-M cases will behave differently which could be a source of confusion. I guess it is the cons of going for a composite scheme. -- Rama Gan -- You received this message because you are subscribed to the Google Groups "Bitcoin Development Mailing List" group. To unsubscribe from this group and stop receiving emails from it, send an email to bitcoindev+unsubscribe@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/bitcoindev/x8ORFhCMjZL-ViYGSXl9ek_bfU231h6sOnG97aMj6tOT3cmKKRDS8PJsfFbvfRrzGTbZLuHzSOCwmc7mGwBSxBHGAfLUyydX-OZNPYHvfrQ%3D%40proton.me.