zooko has quit [Remote host closed the connection]
hashtag has joined #bitcoin-wizards
PRab has quit [Ping timeout: 265 seconds]
PRab has joined #bitcoin-wizards
gmaxwell has quit [Ping timeout: 256 seconds]
mrhodl has joined #bitcoin-wizards
Dr-G has joined #bitcoin-wizards
Dr-G2 has quit [Ping timeout: 276 seconds]
spinza has quit [Excess Flood]
spinza has joined #bitcoin-wizards
tcrypt has quit []
Zooko-phone has quit [Ping timeout: 256 seconds]
DrWat has joined #bitcoin-wizards
antgreen` has quit [Ping timeout: 265 seconds]
DrWatto has quit [Ping timeout: 250 seconds]
gmaxwell has joined #bitcoin-wizards
gmaxwell is now known as Guest17871
Guest17871 has quit [Changing host]
Guest17871 has joined #bitcoin-wizards
Guest17871 is now known as gmaxwell
Relos has quit [Ping timeout: 272 seconds]
Guest3385 has quit [Remote host closed the connection]
GGuyZ has quit [Quit: GGuyZ]
GGuyZ has joined #bitcoin-wizards
NewLiberty has quit [Ping timeout: 265 seconds]
<iddo>
andytoshi: i didn't understand your link above, you don't need obfuscation for timelock encryption, just witness encryption (and Bitcoin)
<iddo>
andytoshi: why you say that we don't know parts of future blocks? we do know, that blockhash<difficulty, which is exactly what's needed for witness encryption
kmels has joined #bitcoin-wizards
ttttemp_ has quit [Remote host closed the connection]
zooko has joined #bitcoin-wizards
yr4xd7cfy has joined #bitcoin-wizards
o84wb76g has quit [Ping timeout: 258 seconds]
zooko` has joined #bitcoin-wizards
zooko has quit [Ping timeout: 246 seconds]
HostFat has quit [Ping timeout: 258 seconds]
ttttemp has joined #bitcoin-wizards
Dr-G2 has joined #bitcoin-wizards
Dr-G has quit [Disconnected by services]
priidu has quit [Ping timeout: 255 seconds]
belcher has quit [Quit: Leaving]
hashtag has quit [Ping timeout: 265 seconds]
zooko`` has joined #bitcoin-wizards
zooko` has quit [Ping timeout: 258 seconds]
hashtag has joined #bitcoin-wizards
hashtag has quit [Ping timeout: 244 seconds]
mrhodl has quit [Quit: ircN 8.00 for mIRC (20100904) - www.ircN.org]
jae has joined #bitcoin-wizards
jae is now known as Guest6213
kmels has quit [Ping timeout: 240 seconds]
nemild_ has quit [Quit: nemild_]
hashtag has joined #bitcoin-wizards
* nsh
frowns
ThomasV has joined #bitcoin-wizards
felipelalli has joined #bitcoin-wizards
yr4xd7cfy has quit [Ping timeout: 245 seconds]
nessence has quit [Remote host closed the connection]
GGuyZ has quit [Read error: Connection reset by peer]
GGuyZ has joined #bitcoin-wizards
Guest6213 has quit [Remote host closed the connection]
yr4xd7cfy has joined #bitcoin-wizards
TheSeven has quit [Disconnected by services]
[7] has joined #bitcoin-wizards
nemild_ has joined #bitcoin-wizards
frankenmint has quit [Remote host closed the connection]
<andytoshi>
note to self: my argument about trusted setup being required had something to do with definition of simulation security, i think
<andytoshi>
iddo: oh, that's a good point re witness encryption, i used timelock encryption because that's what i was trying to build when i encountered the "result" typed up
<andytoshi>
re your second point, i need to think about that, i had considered it but for some reason did not think it affected my result
<andytoshi>
iddo: i think: in the random oracle model, `blockhash < target` implies that the blockhash is uniformly random in [0, target] which is still a large space, so "no information about the blockhash" is still a reasonable way to describe the state of affairs
<andytoshi>
oh, i see, witness encryption works despite this
<andytoshi>
weeeird
<andytoshi>
i guess, modulo the existence of secure witness encryption, i'm wrong then :)
frankenmint has joined #bitcoin-wizards
aa_ has joined #bitcoin-wizards
aa_ has quit [Client Quit]
hulkhogan_ has quit [Ping timeout: 256 seconds]
hulkhogan_ has joined #bitcoin-wizards
hulkhogan_ has joined #bitcoin-wizards
frankenmint has quit []
hulkhogan_ has quit [Ping timeout: 265 seconds]
hulkhogan_ has joined #bitcoin-wizards
hulkhogan_ has joined #bitcoin-wizards
felipelalli has quit [Ping timeout: 256 seconds]
hashtag has quit [Ping timeout: 258 seconds]
rusty has quit [Ping timeout: 256 seconds]
hashtag has joined #bitcoin-wizards
hashtag has quit [Ping timeout: 265 seconds]
jae has joined #bitcoin-wizards
daira1 has joined #bitcoin-wizards
jae is now known as Guest31937
daira2 has quit [Ping timeout: 244 seconds]
zmachine has left #bitcoin-wizards [#bitcoin-wizards]
moa has quit [Quit: Leaving.]
nemild_ has quit [Quit: nemild_]
Guest31937 has quit [Remote host closed the connection]
koshii has quit [Ping timeout: 255 seconds]
DougieBot5000 has quit [Ping timeout: 256 seconds]
<Taek>
apparently a think tank today hypothesized that one day Bitcoin mining could be consuming 60+% of all of the world's total energy
<Taek>
this would make for some interesting security conditions, as I think it's reasonable to assume that 1 entity would control more than 30% of the world's total energy
<Taek>
economies of scale start to fall apart as you grow to such an extreme percentage of all of the resources available
priidu has quit [Ping timeout: 258 seconds]
<Taek>
s/would control/would NOT control/
<Taek>
furthermore, dark hashing power also becomes less of a concern, because it's unlikely that someone has so much energy available but isn't putting it to use
<Taek>
if they are putting it to use, it would necessarily need to fit inside of the remaining 40% of the world's available energy
d1ggy has joined #bitcoin-wizards
<Taek>
and thus isn't enough to spring a surprise 51% attack unless they also controll more than 30% of the Bitcoin hashing power
<amiller>
Taek, link?
<Taek>
you do still need to be paranoid about bursty-hashing schemes, and you need to be concerned about technological advances that make hashing more energy efficient
<amiller>
i like comparing bitcoin miner spending to spending on "defense" and militaries, or maybe physical security more generally
<amiller>
obviously if a society spends all of its resources on defense, there's not much else left to defend in the first place
<yoleaux>
Environmentalists: bitcoin mining might eventually consume 60% of global electricity supply | Coinfox
<Taek>
I think the idea of spending 60% of available energy on mining is completely absurd and very unlikely to happen
<Taek>
but it was fun to think about how the economic security assumptions changed at that scale
<amiller>
it would look pretty insane if 60% of the world's energy expenditure were spent on military too
<amiller>
"There are also hopes that the efficiency of bitcoin mining will grow so the electricity consumption and CO2 emission would decrease." this is meaningless too
priidu has joined #bitcoin-wizards
Giszmo has quit [Quit: Leaving.]
<jcorgan>
click-bait as a journalistic fitness function has really skewed the shitty end of distribution
oleganza has joined #bitcoin-wizards
paveljanik has joined #bitcoin-wizards
wallet42 has joined #bitcoin-wizards
jmcn has quit [Ping timeout: 276 seconds]
jmcn has joined #bitcoin-wizards
yr4xd7cfy has quit [Ping timeout: 246 seconds]
Transisto2 has joined #bitcoin-wizards
gill3s has quit [Quit: My Mac has gone to sleep. ZZZzzz…]
ttttemp has quit [Remote host closed the connection]
ttttemp has joined #bitcoin-wizards
DougieBot5000 has quit [Quit: Leaving]
hktud0 has quit [Read error: Connection reset by peer]
hktud0 has joined #bitcoin-wizards
Relos has joined #bitcoin-wizards
NewLiberty has joined #bitcoin-wizards
NewLiberty has quit [Ping timeout: 258 seconds]
kmels has joined #bitcoin-wizards
mountaingoat has quit [Quit: WeeChat 1.1.1]
antanst has joined #bitcoin-wizards
mountaingoat has joined #bitcoin-wizards
GibsonA has joined #bitcoin-wizards
thrasher` has quit [Ping timeout: 240 seconds]
ttttemp has quit [Remote host closed the connection]
Tiraspol has joined #bitcoin-wizards
Tiraspol has joined #bitcoin-wizards
Tiraspol has quit [Read error: Connection reset by peer]
ttttemp has joined #bitcoin-wizards
SubCreative has quit [Ping timeout: 256 seconds]
gill3s has joined #bitcoin-wizards
GGuyZ has quit [Quit: GGuyZ]
shesek has quit [Ping timeout: 264 seconds]
Tiraspol has joined #bitcoin-wizards
Tiraspol has quit [Read error: Connection reset by peer]
Tiraspol has joined #bitcoin-wizards
Tiraspol has quit [Read error: Connection reset by peer]
bosma has joined #bitcoin-wizards
Tiraspol has joined #bitcoin-wizards
Tiraspol has joined #bitcoin-wizards
ThomasV has quit [Ping timeout: 264 seconds]
GibsonA has quit [Remote host closed the connection]
thrasher` has joined #bitcoin-wizards
andy-logbot has quit [Remote host closed the connection]
andy-logbot has joined #bitcoin-wizards
* andy-logbot
is logging
kmels has quit [Quit: Saliendo]
wallet42 has quit [Quit: Leaving.]
oleganza has quit [Quit: oleganza]
arubi_ has quit [Quit: Leaving]
arubi_ has joined #bitcoin-wizards
GibsonA has joined #bitcoin-wizards
c0rw|zZz is now known as c0rw|away
thrasher` has quit [Ping timeout: 265 seconds]
dEBRUYNE has joined #bitcoin-wizards
sparetire_ has quit [Ping timeout: 272 seconds]
Tiraspol has quit [Ping timeout: 245 seconds]
gill3s has quit [Quit: My Mac has gone to sleep. ZZZzzz…]
o84wb76g has joined #bitcoin-wizards
thrasher` has joined #bitcoin-wizards
GibsonA has quit [Ping timeout: 265 seconds]
daira1 has quit [Ping timeout: 256 seconds]
<Eliel>
yep, that 60% is calculated using current block reward (25 BTC) and assuming the exchange rate is 1000000 USD/BTC :P
<Eliel>
(and assuming 50% of the block reward ends up being used for electricity)
<Taek>
TIL we spend $72m / hr on electricity. I guess that's a lot.
<Taek>
actually that's a gross simplification of how things work. Also I forgot to divide by 2
<nsh>
heavy electricity should be counted separately to regular electricity tbh
ThomasV has joined #bitcoin-wizards
oleganza has joined #bitcoin-wizards
thrasher` has quit [Remote host closed the connection]
thrasher` has joined #bitcoin-wizards
gill3s has joined #bitcoin-wizards
gill3s has quit [Read error: Connection reset by peer]
gill3s has joined #bitcoin-wizards
GibsonA has joined #bitcoin-wizards
gill3s has quit [Read error: Connection reset by peer]
thrasher` has quit [Ping timeout: 265 seconds]
hearn has joined #bitcoin-wizards
GibsonA has quit [Remote host closed the connection]
GAit has quit [Read error: Connection reset by peer]
thrasher` has joined #bitcoin-wizards
GAit has joined #bitcoin-wizards
CoinMuncher has joined #bitcoin-wizards
ThomasV has quit [Ping timeout: 245 seconds]
gielbier has quit [Ping timeout: 258 seconds]
oleganza has quit [Quit: oleganza]
gielbier has joined #bitcoin-wizards
o84wb76g has quit [Ping timeout: 276 seconds]
dc17523be3 has quit [Ping timeout: 264 seconds]
ttttemp has quit [Remote host closed the connection]
dc17523be3 has joined #bitcoin-wizards
gielbier has quit [Ping timeout: 244 seconds]
GAit has quit [Remote host closed the connection]
o84wb76g has joined #bitcoin-wizards
oleganza has joined #bitcoin-wizards
ttttemp has joined #bitcoin-wizards
HostFat has joined #bitcoin-wizards
Guyver2 has joined #bitcoin-wizards
roconnor has joined #bitcoin-wizards
spinza has quit [Ping timeout: 258 seconds]
antgreen` has joined #bitcoin-wizards
<Eliel>
regarding this bc.i randomness fail. Would it generate acceptable randomness to use the camera, then sha256 the raw image data and use that for private key or random seed?
spinza has joined #bitcoin-wizards
gielbier has joined #bitcoin-wizards
<jonasschnelli>
Eliel: why not. But adding some accelerometer "true" randomness is probably more straight forward and end user friendlier.
<Eliel>
ah, true, accelerometer data has quite a bit of noise in it too.
<wumpus>
do be aware the all kinds of devices can pretend to be there, but not actually send true data. At least you should combine it with OS entropy (eg /dev/random).
gielbier has quit [Excess Flood]
<jonasschnelli>
Agree with wumpus: only extend the system provided (/dev/random) entropy and not replace it.
<STRML>
Try haveged if you're feeling brave
gielbier has joined #bitcoin-wizards
<Eliel>
wumpus: that's a good point. Would need to verify there's entropy available somehow before using.
priidu has quit [Ping timeout: 258 seconds]
<wumpus>
and that's not really possible to verify; the CCD chip could be sending you random-looking test patterns
gill3s has joined #bitcoin-wizards
<hearn>
Eliel: it should be unnecessary
<hearn>
Eliel: remember that if the OS is doing its job correctly *all* sensor data is fed into the entropy pool
<hearn>
Eliel: also good luck explaining to users why you want them to take a photo of anything at all :)
priidu has joined #bitcoin-wizards
<Eliel>
does an app with rights to use the camera need the user to knowingly take a picture for the picture to be taken?
<nsh>
(no)
<nsh>
(but the inside of one pocket looks a lot like another)
<nsh>
how many GPS sats is the average phone connected to at once?
<hearn>
the user will be looking at the screen at the moment the photo is taken anyway
<hearn>
nsh: average phone? zero :) bear in mind lots of users will be indoors
<nsh>
that's a lot of pretty casually-independent fine-grained timers with other jitter
<nsh>
good point
<hearn>
anyway, like i said, the hardware drivers are meant to feed data into the entropy pool anyway
ThomasV has joined #bitcoin-wizards
* nsh
nods
<hearn>
without a doubt, some phones have some drivers that ignore some entropy and don't do that
<wumpus>
Eliel: the user will hear the photo-sound
<hearn>
a survey of how badly phone kernel developers screw this up would be an interesting academic exercise
<jonasschnelli>
Ha. Right. That's why it would be probably a good idea to force add some accelerometer data to the entropy.
<Eliel>
nsh: I don't expect good entropy from the picture. I expect good entropy from the noise :P
<jonasschnelli>
i remember the last android RNG flaw we had.
* nsh
nds
<STRML>
has anyone run haveged on android?
<Eliel>
there's millions of pixels sampled with the worst of the cameras. Would take pretty darn good camera to not manage to get 256 bits of entropy in there :)
<jonasschnelli>
Eliel: i kinda like the idea with the camera. It proved independence from the system RNG. If i would use a smartphone wallet, i would use a such feature during creation of a bip32 master seed.
<wumpus>
but how random and independent is sensor noise?
<jonasschnelli>
Imaging: "creating random seed" (then show some accelerometer movement and slowly build up a pixel-art with some sensor noise during loading of multiple camera pictures)
<jonasschnelli>
(and it could truly be a marketing booster. :)
<wumpus>
anyhow - feeding extra data into your entropy pool is never harmful (as long as you combine it in a sensible way, there have been mistakes with that too), but don't rely on it, and always combine in OS's cryptographic randomness as well
<Eliel>
wumpus: Well, if it was easy to predict, I'd expect we'd have noiseless cameras by now.
<wumpus>
Eliel: it may be too expensive to predict on the hardware itself, but still possible to reduce entropy by analysing the specific camera's noise profile (e.g. by looking at other photo's of the user)
<nsh>
wumpus, adding extra data never harmful is disproved iirc constructively by djb or someone
<nsh>
(if you know the details of the mixing/whitening then you can add harmful data)
<wumpus>
nsh: if you combine it in a sensible way, e.g. hash it together with sha256 I don't see how it can be harmful
<wumpus>
nsh: (that's why I said combine it in a sensible way, if your combination algorithm can be exploited, sure...)
* nsh
nods
<sl01>
it depends on the evil random source knowing the other randomness, then brute forcing a certain output (in the case of hashing)
<Eliel>
wumpus: that's why I'm not trying to get more than 256 bits of entropy out of it, even though I believe there's enough in a picture for a few hundred kilobytes of random.
<wumpus>
sl01: yes, the random sources need to be as independent as possible
<wumpus>
if they can 'collude' in some way, no amount of mixing will save you
Iriez has quit [Ping timeout: 244 seconds]
<Eliel>
many years ago, I tested recording microphone channel from the soundcard (without a microphone connected), took only the least significant bit of each byte and then fed the data to an open source tool designed to analyze the quality of randomness. It passed all tests no problems.
<sl01>
just read the blockchain issue, that's so lol
<nsh>
(also, collusion can be coerced by external influence / entrainment. cf.
<nsh>
.wik injection locking
<yoleaux>
"Injection locking and injection pulling are the frequency effects that can occur when a harmonic oscillator is disturbed by a second oscillator operating at a nearby frequency." — http://en.wikipedia.org/wiki/Injection_locking
<nsh>
)
<STRML>
unfortunately there isn't a good way to know if random data that passes the tests is unpredictable or not
<STRML>
best you can hope for IMO is to mix a lot of good sources together and hope nobody has the means or the motivation to untangle it
gill3s has quit [Ping timeout: 258 seconds]
<wumpus>
Eliel: another thing to consider: could another application take a photo at exactly the same moment?
hearn has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]
GAit has joined #bitcoin-wizards
<Eliel>
wumpus: Wouldn't that mean you're already compromised?
dc17523be3 has quit [Ping timeout: 255 seconds]
<sl01>
why not just host their own randomness web service and sign randomness with a predistributed key
<sl01>
seems better than "phone randomness hacks"
<wumpus>
Eliel: well it depends on what you call compromised, many android users have milder and more serious forms of malware on their phone without knowing
dc17523be3 has joined #bitcoin-wizards
<wumpus>
Eliel: ... with different levels of access, e.g. maybe it could access the camera too, or the sd card, but not your application's private key store
<wumpus>
sl01: that's creepily centralized
<sl01>
better than random.org w/ no http header check
Iriez has joined #bitcoin-wizards
<wumpus>
the server could even target people, e.g. have a if(userid=='crook') return 'predictabelentropy'
<sl01>
obviously i mean itd still be mixed in as they do with random.org, just seems like thatd be a simple improvement to what they already had
oleganza has quit [Quit: oleganza]
<wumpus>
well sure it's better than random.org than no http header check, but what isn't... :)
hashtag has joined #bitcoin-wizards
Quanttek has joined #bitcoin-wizards
ThomasV has quit [Ping timeout: 265 seconds]
blackwraith has joined #bitcoin-wizards
priidu has quit [Ping timeout: 264 seconds]
copumpkin has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]
nivah has quit [Ping timeout: 276 seconds]
ThomasV has joined #bitcoin-wizards
EasyAt has quit [Ping timeout: 252 seconds]
nickler has quit [Ping timeout: 265 seconds]
EasyAt has joined #bitcoin-wizards
nickler has joined #bitcoin-wizards
Artimage has joined #bitcoin-wizards
hearn has joined #bitcoin-wizards
roconnor has quit [Quit: Konversation terminated!]
zooko``` has joined #bitcoin-wizards
zooko`` has quit [Ping timeout: 245 seconds]
hearn has quit [Remote host closed the connection]
BallsMahoney has quit [Ping timeout: 264 seconds]
hearn has joined #bitcoin-wizards
antgreen` has quit [Ping timeout: 250 seconds]
o84wb76g has quit [Ping timeout: 255 seconds]
afk11 has quit [Read error: Connection reset by peer]
wallet42 has joined #bitcoin-wizards
GGuyZ has joined #bitcoin-wizards
zooko``` has quit [Remote host closed the connection]
nivah has joined #bitcoin-wizards
nivah has quit [Max SendQ exceeded]
nivah has joined #bitcoin-wizards
nivah has quit [Max SendQ exceeded]
nivah has joined #bitcoin-wizards
nivah has quit [Max SendQ exceeded]
nivah has joined #bitcoin-wizards
nivah has quit [Max SendQ exceeded]
nivah has joined #bitcoin-wizards
blackwraith is now known as priidu
nivah has quit [Max SendQ exceeded]
nivah has joined #bitcoin-wizards
nivah has quit [Max SendQ exceeded]
nivah has joined #bitcoin-wizards
nivah has quit [Max SendQ exceeded]
Zooko-phone has joined #bitcoin-wizards
gavinandresen has joined #bitcoin-wizards
nessence has joined #bitcoin-wizards
GGuyZ has quit [Quit: GGuyZ]
zooko has joined #bitcoin-wizards
Mably has quit [Ping timeout: 252 seconds]
zooko` has joined #bitcoin-wizards
zooko has quit [Ping timeout: 250 seconds]
zooko` is now known as zooko
hearn has quit [Read error: Connection reset by peer]
hearn has joined #bitcoin-wizards
DougieBot5000 has joined #bitcoin-wizards
GGuyZ has joined #bitcoin-wizards
hearn has quit [Read error: Connection reset by peer]