summaryrefslogtreecommitdiff
path: root/f9/aa4277ee0cf0fcd084aac6117938e9e33a2633
blob: a47596a83e888b0b6d33234d0662f41d2fc689e8 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
Return-Path: <eth3rs@gmail.com>
Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org
	[172.17.192.35])
	by mail.linuxfoundation.org (Postfix) with ESMTPS id A8E75486
	for <bitcoin-dev@lists.linuxfoundation.org>;
	Sat, 25 Feb 2017 22:35:20 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.7.6
Received: from mail-vk0-f53.google.com (mail-vk0-f53.google.com
	[209.85.213.53])
	by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 9D9B6A1
	for <bitcoin-dev@lists.linuxfoundation.org>;
	Sat, 25 Feb 2017 22:35:19 +0000 (UTC)
Received: by mail-vk0-f53.google.com with SMTP id r136so27740735vke.1
	for <bitcoin-dev@lists.linuxfoundation.org>;
	Sat, 25 Feb 2017 14:35:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
	h=mime-version:in-reply-to:references:from:date:message-id:subject:to
	:cc; bh=FoJyiXIWGuZPp95mqorncTk4h+diZNGw1+KOXjsyChQ=;
	b=gODyRc0LqPJyFeIVttGe4uca1Kvp86kx/Hr87CxpMuwuTCLSjxgt++pEOt3c6m5ysR
	ZEln09H7yLAbcogKBiTAskHZmbwV4FTmnyb9Vu6dHsTcRFox6/Lxb9H2uOpPGbRPNaOP
	qAF2Gos38XejmuRohm95DncOLLrwDtsuBwCCm0r/omFINAXth1mxP2nzAL9aLIo9KvSq
	mZ67iaJSfFiVIFAI3MxhMIC0Mwf/vyA+2Cph8aPbwbkaK9I5tDVC8HzoXZqrjB/dd2at
	+KZSyicQ2zQXLrscL8bTb/yFqEjC0LsL1KxCv3A7lu93XxpnYcTmaFR77/Qni1Pes+mc
	K6Tw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=1e100.net; s=20161025;
	h=x-gm-message-state:mime-version:in-reply-to:references:from:date
	:message-id:subject:to:cc;
	bh=FoJyiXIWGuZPp95mqorncTk4h+diZNGw1+KOXjsyChQ=;
	b=Avz74itVGifWbg+K/wkhpBipocUZuBmESeVsM2zx7xajvLw03XrYgclHsrMHjFJcQ9
	GoZTMcZb73bDOtrGJoT7vmGQHnaC2HgNqBSTCJdlm+ByuL1542xQN1wDrrp+0jBXG7M6
	Hn/B7FkBZVeEJeMIn/v9NB9WiGNwx/C5use2YxPHv/2rWvnQ4TG6CI0BowJHXJl4swSq
	RodqvP7ky+P/VLz52eMNhwvL/VqHRCC8r7AgO/sU9/gYEgTpJDo4Ttpi491kIJKGZIOT
	KVhwbdb0j+KNEA+VRTxwvJviuEOnDvXMzx4iej4VEtx+smkKaAoYBGK/m0s2tLPWp8Fq
	l6dQ==
X-Gm-Message-State: AMke39mK3tda85QH/lcPi/umvtkfo2/ZoHWhQ449UIySpMMLOz2HFe/q/Y08LlrVC8ErdtzS53G0rlPCc4vJ9A==
X-Received: by 10.31.12.65 with SMTP id 62mr3573777vkm.122.1488062118774; Sat,
	25 Feb 2017 14:35:18 -0800 (PST)
MIME-Version: 1.0
Received: by 10.176.6.106 with HTTP; Sat, 25 Feb 2017 14:34:38 -0800 (PST)
In-Reply-To: <CAPg+sBhZ1UqOLqz_PVjjrE8Cbte_Y160Gq7P7EWf6cRKjMcDEQ@mail.gmail.com>
References: <8F096BE1-D305-43D4-AF10-2CC48837B14F@gmail.com>
	<20170225010122.GA10233@savin.petertodd.org>
	<208F93FE-B7C8-46BE-8E00-52DBD0F43415@gmail.com>
	<CAN6UTayzQRowtWhLKr8LyFuXjw3m+GjQGtHfkDj-Xu41Hym32w@mail.gmail.com>
	<CAEM=y+WkgSkc07ZsU6APAkcu37zVZ7dwSc=jAg1nho31S5ZyxQ@mail.gmail.com>
	<20170225191201.GA15472@savin.petertodd.org>
	<CAMZUoK=sq_sRoXuySca-VAGwA3AzeoZ5iNFSnKULbj+NtPjHFA@mail.gmail.com>
	<20170225210406.GA16196@savin.petertodd.org>
	<CAGLBAhdCb+QLWRm4FWkPvaM2sU24HuafdgNiS=wgnPTGzrW05w@mail.gmail.com>
	<4FE38F6A-0560-4989-9C53-7F8C94EA4C76@gmail.com>
	<20170225214018.GA16524@savin.petertodd.org>
	<D36DB0BD-C805-4346-B425-77D5B29582E5@gmail.com>
	<CAPg+sBhZ1UqOLqz_PVjjrE8Cbte_Y160Gq7P7EWf6cRKjMcDEQ@mail.gmail.com>
From: Ethan Heilman <eth3rs@gmail.com>
Date: Sat, 25 Feb 2017 17:34:38 -0500
Message-ID: <CAEM=y+XEXuf+BPOH0h=Hn3_9PeL4Dv9G3ySN6fe5zH7bJVkSDA@mail.gmail.com>
To: Pieter Wuille <pieter.wuille@gmail.com>, 
	Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
Content-Type: multipart/alternative; boundary=001a1144f324fe4dfc054962755d
X-Spam-Status: No, score=-1.5 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID, DKIM_VALID_AU, FREEMAIL_FROM, HTML_MESSAGE,
	RCVD_IN_DNSWL_NONE, 
	RCVD_IN_SORBS_SPAM autolearn=no version=3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	smtp1.linux-foundation.org
Cc: Steve Davis <steven.charles.davis@gmail.com>
Subject: Re: [bitcoin-dev] SHA1 collisions make Git vulnerable to attakcs by
 third-parties, not just repo maintainers
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
	<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
	<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Feb 2017 22:35:20 -0000

--001a1144f324fe4dfc054962755d
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

I strongly encourage Bitcoin to move from 80-bit collision resistance
(RIPEMD-160) to 128-bit collision resistance (SHA-256).

On Sat, Feb 25, 2017 at 5:14 PM, Pieter Wuille via bitcoin-dev <
bitcoin-dev@lists.linuxfoundation.org> wrote:

>
>
> On Feb 25, 2017 14:09, "Steve Davis via bitcoin-dev" <bitcoin-dev@lists.
> linuxfoundation.org> wrote:
>
> Hi Peter,
>
>
> I really, really don=E2=80=99t want to get into it but segwit has many as=
pects
> that are less appealing, not least of which being the amount of time it
> would take to reach the critical mass.
>
> Surely there's a number of alternative approaches which could be explored=
,
> even if only to make a fair assessment of a best response?
>
>
> Any alternative to move us away from RIPEMD160 would require:
> * A drafting of a softfork proposal, implementation, testing, review.
> * A new address format
> * Miners accepting the new consensus rules
> * Wallets adopting the new address format, both on the sender side and
> receiver side (which requires new signatures).
>
> I.e., exactly the same as segwit, for which most of these are already
> done. And it would still only apply to wallets adopting it.
>
> --
> Pieter
>
>
> _______________________________________________
> bitcoin-dev mailing list
> bitcoin-dev@lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
>
>

--001a1144f324fe4dfc054962755d
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">I strongly encourage Bitcoin to move from 80-bit collision=
 resistance (RIPEMD-160) to 128-bit collision resistance (SHA-256).</div><d=
iv class=3D"gmail_extra"><br><div class=3D"gmail_quote">On Sat, Feb 25, 201=
7 at 5:14 PM, Pieter Wuille via bitcoin-dev <span dir=3D"ltr">&lt;<a href=
=3D"mailto:bitcoin-dev@lists.linuxfoundation.org" target=3D"_blank">bitcoin=
-dev@lists.linuxfoundation.org</a>&gt;</span> wrote:<br><blockquote class=
=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padd=
ing-left:1ex"><div dir=3D"auto"><div><br><div class=3D"gmail_extra"><br><di=
v class=3D"gmail_quote">On Feb 25, 2017 14:09, &quot;Steve Davis via bitcoi=
n-dev&quot; &lt;<a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org" ta=
rget=3D"_blank">bitcoin-dev@lists.<wbr>linuxfoundation.org</a>&gt; wrote:<b=
r type=3D"attribution"><blockquote class=3D"m_3862760052525700813quote" sty=
le=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi Pet=
er,<span class=3D""><br>
<div class=3D"m_3862760052525700813quoted-text"><br></div><div class=3D"m_3=
862760052525700813quoted-text">
<br>
</div>I really, really don=E2=80=99t want to get into it but segwit has man=
y aspects that are less appealing, not least of which being the amount of t=
ime it would take to reach the critical mass.<br>
<br>
Surely there&#39;s a number of alternative approaches which could be explor=
ed, even if only to make a fair assessment of a best response?<br></span></=
blockquote></div></div></div><div dir=3D"auto"><br></div><div dir=3D"auto">=
Any alternative to move us away from RIPEMD160 would require:</div><div dir=
=3D"auto">* A drafting of a softfork proposal, implementation, testing, rev=
iew.</div><div dir=3D"auto">* A new address format</div><div dir=3D"auto">*=
 Miners accepting the new consensus rules</div><div dir=3D"auto">* Wallets =
adopting the new address format, both on the sender side and receiver side =
(which requires new signatures).</div><div dir=3D"auto"><br></div><div dir=
=3D"auto">I.e., exactly the same as segwit, for which most of these are alr=
eady done. And it would still only apply to wallets adopting it.</div><span=
 class=3D"HOEnZb"><font color=3D"#888888"><div dir=3D"auto"><br></div><div =
dir=3D"auto">--=C2=A0</div><div dir=3D"auto">Pieter</div><div dir=3D"auto">=
<br></div><div dir=3D"auto"><div class=3D"gmail_extra"><div class=3D"gmail_=
quote"><blockquote class=3D"m_3862760052525700813quote" style=3D"margin:0 0=
 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"></blockquote></div></d=
iv></div></font></span></div>
<br>______________________________<wbr>_________________<br>
bitcoin-dev mailing list<br>
<a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org">bitcoin-dev@lists.=
<wbr>linuxfoundation.org</a><br>
<a href=3D"https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev" =
rel=3D"noreferrer" target=3D"_blank">https://lists.linuxfoundation.<wbr>org=
/mailman/listinfo/bitcoin-<wbr>dev</a><br>
<br></blockquote></div><br></div>

--001a1144f324fe4dfc054962755d--