[bitcoin-dev] Satoshilabs secret shared private key scheme
Ondřej Vejpustek
ondrej.vejpustek at satoshilabs.com
Tue Jan 23 13:54:48 UTC 2018
> Yes, this scheme.
> https://bitcointalk.org/index.php?topic=311000.msg3342217#msg3342217
In addition to the scheme, I found out, that Makwa
(https://www.bolet.org/makwa/), a hashing function which received a
special recognition in the Password Hashing Competition, supports a
delegation. In fact, Makwa is similar to the suggested scheme.
Unfortunately, both schemes have two drawbacks:
(1) There is no proof that the host computes what he's suppose to do.
(2) The delegation is far more slower than the normal computation.
According to the Makwa paper
(https://www.bolet.org/makwa/makwa-spec-20150422.pdf) the delegation is
typically 100 to 1000 slower. So I see little advantage in delegating.
I doubt there is a scheme that suits our needs.
More information about the bitcoin-dev
mailing list