From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from sog-mx-1.v43.ch3.sourceforge.com ([172.29.43.191] helo=mx.sourceforge.net) by sfs-ml-2.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1WLcj7-0002Dz-2i for bitcoin-development@lists.sourceforge.net; Thu, 06 Mar 2014 18:09:01 +0000 Received-SPF: pass (sog-mx-1.v43.ch3.sourceforge.com: domain of midnightdesign.ws designates 50.87.144.70 as permitted sender) client-ip=50.87.144.70; envelope-from=boydb@midnightdesign.ws; helo=gator3054.hostgator.com; Received: from gator3054.hostgator.com ([50.87.144.70]) by sog-mx-1.v43.ch3.sourceforge.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.76) id 1WLcj5-0006yS-Vz for bitcoin-development@lists.sourceforge.net; Thu, 06 Mar 2014 18:09:01 +0000 Received: from [74.125.82.41] (port=40131 helo=mail-wg0-f41.google.com) by gator3054.hostgator.com with esmtpsa (TLSv1:RC4-SHA:128) (Exim 4.80.1) (envelope-from ) id 1WLciz-0005EN-EO for bitcoin-development@lists.sourceforge.net; Thu, 06 Mar 2014 12:08:53 -0600 Received: by mail-wg0-f41.google.com with SMTP id n12so3646970wgh.0 for ; Thu, 06 Mar 2014 10:08:51 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=r+twkNwY718X6W7xktffBWqvgAzsvWhLIkDjS395lCY=; b=XT/YfJfZ5auhABXbuNMV8bSW2MNC4gwVXD0XtEj1Kv9q1laLQjx9QxlRkvtX0DrZeO NInLRAFxpbSdGNeoXG6/+LJwd4ml6dA4ErB3LJEwpXApeCiyRXtHgBA91ngWB5XuuUCZ mlfk155pcGYCDgY8QTSv0uquZ84DjRAHwgzrVn4sZVSAAKJ8tNJ1zWGzCQ5M+/HrsVu8 Gpe7RgdbL97rBG3uJCJ91jWnbaegYRRmBCsLgmjL7fUu01yNEmu95FgJeD40ItX7ykMK 6GvUc2CbOHtQ6Fdv+yiGo5oZ1tYvjeRw0lq4qP3bfdoFkR1AmpyTQc20a2ne+qqr9dMe nGWw== X-Gm-Message-State: ALoCoQlynb4gQl3ufmc/HuGZ1UTGYxA2M41iKRJHBFPPIkD8DDnZ0EbhbWDAtvBISXs8EZMhsb1k MIME-Version: 1.0 X-Received: by 10.194.85.168 with SMTP id i8mr12052219wjz.81.1394129331388; Thu, 06 Mar 2014 10:08:51 -0800 (PST) Received: by 10.227.71.71 with HTTP; Thu, 6 Mar 2014 10:08:51 -0800 (PST) In-Reply-To: References: Date: Thu, 6 Mar 2014 12:08:51 -0600 Message-ID: From: Brooks Boyd To: Mike Hearn Content-Type: multipart/alternative; boundary=089e010d7efc91962a04f3f4076c X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - gator3054.hostgator.com X-AntiAbuse: Original Domain - lists.sourceforge.net X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - midnightdesign.ws X-BWhitelist: no X-Source-IP: 74.125.82.41 X-Source: X-Source-Args: X-Source-Dir: X-Source-Sender: (mail-wg0-f41.google.com) [74.125.82.41]:40131 X-Source-Auth: midnight X-Email-Count: 2 X-Source-Cap: bWlkbmlnaHQ7bWlkbmlnaHQ7Z2F0b3IzMDU0Lmhvc3RnYXRvci5jb20= X-Spam-Score: -0.5 (/) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain -0.0 SPF_HELO_PASS SPF: HELO matches SPF record -0.0 SPF_PASS SPF: sender matches SPF record 1.0 HTML_MESSAGE BODY: HTML included in message X-Headers-End: 1WLcj5-0006yS-Vz Cc: Bitcoin Dev Subject: Re: [Bitcoin-development] Instant / contactless payments X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 Mar 2014 18:09:01 -0000 --089e010d7efc91962a04f3f4076c Content-Type: text/plain; charset=ISO-8859-1 On Thu, Mar 6, 2014 at 11:07 AM, Mike Hearn wrote: > if some sort of Stealth address or HD wallet root was the identity gaining >> the reputation, then address re-use wouldn't have to be mandatory. >> > The identity would be the X.520 name in the signing cert that signed the > payment request. It doesn't have to be a difficult to obtain cert. It could > even be self signed for this use case, but then you lose the security > benefits and a key rotation would delete your reputation, so in practice I > think most people would want the reputation to accrue to the name itself. > That makes sense, to have self-signed certificates as a basic start, but then is it possible to have a Bitcoin user (address) add reputation/sign such a certificate, rather than having a central signing authority? If there was a way for a Bitcoin user to provide feedback on a payment (ECDSA signature from one of the addresses involved in the payment, signing an identifier of the payment and a feedback score) such that any user can add to the reputation with just the Bitcoin infrastructure, without having to learn X.500 certificate signing on top of EC signatures? If there was a standard structure for a message to be EC-signed with your Bitcoin client, and then a distributed store of those signed messages, could that form a reputation score? --089e010d7efc91962a04f3f4076c Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
On T= hu, Mar 6, 2014 at 11:07 AM, Mike Hearn <mike@plan99.net> wrot= e:

if some sort of S= tealth address or HD wallet root was the identity gaining the reputation, t= hen address re-use wouldn't have to be mandatory.

The identity would be the X.520 name in the signing= cert that signed the payment request. It doesn't have to be a difficul= t to obtain cert. It could even be self signed for this use case, but then = you lose the security benefits and a key rotation would delete your reputat= ion, so in practice I think most people would want the reputation to accrue= to the name itself.

That makes sense, t= o have self-signed certificates as a basic start, but then is it possible t= o have a Bitcoin user (address) add reputation/sign such a certificate, rat= her than having a central signing authority? If there was a way for a Bitco= in user to provide feedback on a payment (ECDSA signature from one of the a= ddresses involved in the payment, signing an identifier of the payment and = a feedback score) such that any user can add to the reputation with just th= e Bitcoin infrastructure, without having to learn X.500 certificate signing= on top of EC signatures? If there was a standard structure for a message t= o be EC-signed with your Bitcoin client, and then a distributed store of th= ose signed messages, could that form a reputation score?
--089e010d7efc91962a04f3f4076c--