Binary Baby Step Giant Step with lightweight database - Brute force (BSGS)

WanderingPhilospher

full member

Activity: 1050

Merit: 219

Shooters Shoot...

Quote from: _Counselor on January 08, 2024, 02:49:34 PM

I don't see any benefits of this. If you have N baby steps with 1 bit of each, then roughly N/2 steps will collide with each giant step. This mean you will need to perform at least N/2 additional operations on each giant step to check false positives.

This leads to the fact that the ability to store n-times more baby steps leads to an n-times increase in the size of the giant step, but at the same time increases the number of operations required to check the collision by the same number.

Simply put, this ultimately will not give any increase in speed compared to maintaining the full baby step value.

Each key is represented by 1 bit; but 64 keys are calculated and hashed to binary, so basically 64, zeros and ones, represent 64 keys. False collision 1 out of every 2^64? So DB is smaller but search is slower. DB is much smaller.

I managed to represent each key with 8 bits and add false collision check. Larger DB size than the OPs original, but search Key/s is faster.

Working on another angle now. It works with normal search but I have not tried to implement into BSGS as OP did.

Also, Counselor, check your discord.

_Counselor

member

Activity: 107

Merit: 61

I don't see any benefits of this. If you have N baby steps with 1 bit of each, then roughly N/2 steps will collide with each giant step. This mean you will need to perform at least N/2 additional operations on each giant step to check false positives.

This leads to the fact that the ability to store n-times more baby steps leads to an n-times increase in the size of the giant step, but at the same time increases the number of operations required to check the collision by the same number.

Simply put, this ultimately will not give any increase in speed compared to maintaining the full baby step value.

WanderingPhilospher

full member

Activity: 1050

Merit: 219

Shooters Shoot...

Quote from: mcdouglasx on January 07, 2024, 03:27:18 PM

Quote from: digaran on January 07, 2024, 01:49:27 PM

Yo mc, sup! 😂
Can you please explain what CM is and how should we treat it? I mean I have used 32 low m, 128M keys as num and 256 to sub each time, now I have 128M in baby step, 256 Add, 32 low m, with 128M on giant step and CM as 32.
The thing is, it's finding false positives left and right. 😂

CM is the sequence of 1 and 0 to check in the database, if you choose a CM less than 64, you will have a high probability of obtaining false positives. that's why I choose 64 bits.
In your case 2^32 is your probability of false positives.

Just add a false positive check where it skips false positives and keeps on checking for the actual result.

That way, you can speed up the search (less CM).

This is a classical, less DB size, but you give up search speed.

I've managed to work out another angle with BSGS, using less DB space, transferring to a bloom filter, while maintaining original speed and using way less RAM during the search. This is with an ICE version. It's still not as fast as other BSGS but I'm still tinkering. But none are as fast as a GPU BSGS. Then it comes down to price comparison; can you buy 100s of GB of RAM sticks or a new mid-level GPU for less? That's really the rub here. With a single 4090, one can achieve over 100 Exakey/s.

mcdouglasx

member

Activity: 234

Merit: 51

New ideas will be criticized and then admired.

Quote from: digaran on January 07, 2024, 01:49:27 PM

Yo mc, sup! 😂
Can you please explain what CM is and how should we treat it? I mean I have used 32 low m, 128M keys as num and 256 to sub each time, now I have 128M in baby step, 256 Add, 32 low m, with 128M on giant step and CM as 32.
The thing is, it's finding false positives left and right. 😂

CM is the sequence of 1 and 0 to check in the database, if you choose a CM less than 64, you will have a high probability of obtaining false positives. that's why I choose 64 bits.
In your case 2^32 is your probability of false positives.

digaran

copper member

Activity: 1330

Merit: 899

🖤😏

Yo mc, sup! 😂
Can you please explain what CM is and how should we treat it? I mean I have used 32 low m, 128M keys as num and 256 to sub each time, now I have 128M in baby step, 256 Add, 32 low m, with 128M on giant step and CM as 32.
The thing is, it's finding false positives left and right. 😂

mcdouglasx

member

Activity: 234

Merit: 51

New ideas will be criticized and then admired.

Quote from: nomachine on January 07, 2024, 03:00:14 AM

Quote from: mabdlmonem on January 06, 2024, 03:11:14 PM

what about add step size , I think it will more better

there is already a ready-made script that does this perfectly:
https://github.com/iceland2k14/bsgs/tree/main/v6_dll_bsgs

but keyhunt is still better...so, nothing new to invent here.
only the way the bin file is packed. Grin

You hit the nail on the head, maybe replacing bp files with binary db in keyhunt would be a plus.

nomachine

member

Activity: 235

Merit: 12

Quote from: mabdlmonem on January 06, 2024, 03:11:14 PM

what about add step size , I think it will more better

there is already a ready-made script that does this perfectly:
https://github.com/iceland2k14/bsgs/tree/main/v6_dll_bsgs

but keyhunt is still better...so, nothing new to invent here.
only the way the bin file is packed. Grin

COBRAS

member

Activity: 846

Merit: 22

$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk

Quote from: nomachine on January 06, 2024, 11:57:20 AM

Quote from: dextronomous on December 12, 2023, 09:18:17 AM

sorry for jumping in and having to ask what i have to change
binary_bsgs_v1.py using this one starting at another point instead of 1 using this
"lm_upub= ice.scalar_multiplication(Add+(lm*i))"
will go for 120 bit db how to setup after 125 any help on this , mean where are you're specific scripts,
you all have your own scripts share it is care for it..

Example for 65bit

It won't work if there are no chunks. It will throw out that you don't have enough memory even if you have 128GB of RAM.

So this is will create baby_steps_binary.bin from 46117 stages....
Size of file over 5GB ....

So calculate size for 130 bit. Grin

Code:

import secp256k1 as ice
from bitstring import BitArray

print("creating Baby Step")

# create baby step
num = 92233720368 # Keys number in Binary Babystep. same m in the search script
Low_m = 20
lm = num // Low_m
Add = 18446744073709551615
Add_pub = ice.scalar_multiplication(Add)

# Function to process a chunk and write to binary file
def process_and_write_chunk(start, end):
   res = ice.point_sequential_increment(end - start, Add_pub)

   # Ensure the length of res is a multiple of 65
   res_length = len(res)
   if res_length % 65 != 0:
   res = res[:-(res_length % 65)]

   binary = ''
   for t in range(start, end):
   h = res[t * 65 : (t + 1) * 65].hex()
   hc = int(h[2:], 16) if h else 0 # Handle the case when h is an empty string

   if str(hc).endswith(('0', '2', '4', '6', '8')):
   A = "0"
   binary += ''.join(str(A))

   if str(hc).endswith(('1', '3', '5', '7', '9')):
   A = "1"
   binary += ''.join(str(A))

   my_str = BitArray(bin=binary)

   binary_file = open('baby_steps_binary.bin', 'ab')
   my_str.tofile(binary_file)
   binary_file.close()

# Process the remaining chunks with a smaller chunk size
chunk_size = 100000
for i in range(0, lm, chunk_size):
   print("stage: " + str(i // chunk_size + 1) + "/" + str((lm + chunk_size - 1) // chunk_size))
   end = min(i + chunk_size, lm)
   process_and_write_chunk(i, end)

Your topics is most interested in 2020-2024 on bittalc.org

No other so knowlage able, like you in brute btc )))

mabdlmonem

jr. member

Activity: 32

Merit: 1

Quote from: nomachine on January 06, 2024, 11:57:20 AM

Quote from: dextronomous on December 12, 2023, 09:18:17 AM

sorry for jumping in and having to ask what i have to change
binary_bsgs_v1.py using this one starting at another point instead of 1 using this
"lm_upub= ice.scalar_multiplication(Add+(lm*i))"
will go for 120 bit db how to setup after 125 any help on this , mean where are you're specific scripts,
you all have your own scripts share it is care for it..

Example for 65bit

It won't work if there are no chunks. It will throw out that you don't have enough memory even if you have 128GB of RAM.

So this is will create baby_steps_binary.bin from 46117 stages....
Size of file over 5GB ....

So calculate size for 130 bit. Grin

Code:

import secp256k1 as ice
from bitstring import BitArray

print("creating Baby Step")

# create baby step
num = 92233720368 # Keys number in Binary Babystep. same m in the search script
Low_m = 20
lm = num // Low_m
Add = 18446744073709551615
Add_pub = ice.scalar_multiplication(Add)

# Function to process a chunk and write to binary file
def process_and_write_chunk(start, end):
   res = ice.point_sequential_increment(end - start, Add_pub)

   # Ensure the length of res is a multiple of 65
   res_length = len(res)
   if res_length % 65 != 0:
   res = res[:-(res_length % 65)]

   binary = ''
   for t in range(start, end):
   h = res[t * 65 : (t + 1) * 65].hex()
   hc = int(h[2:], 16) if h else 0 # Handle the case when h is an empty string

   if str(hc).endswith(('0', '2', '4', '6', '8')):
   A = "0"
   binary += ''.join(str(A))

   if str(hc).endswith(('1', '3', '5', '7', '9')):
   A = "1"
   binary += ''.join(str(A))

   my_str = BitArray(bin=binary)

   binary_file = open('baby_steps_binary.bin', 'ab')
   my_str.tofile(binary_file)
   binary_file.close()

# Process the remaining chunks with a smaller chunk size
chunk_size = 100000
for i in range(0, lm, chunk_size):
   print("stage: " + str(i // chunk_size + 1) + "/" + str((lm + chunk_size - 1) // chunk_size))
   end = min(i + chunk_size, lm)
   process_and_write_chunk(i, end)

what about add step size , I think it will more better

nomachine

member

Activity: 235

Merit: 12

Quote from: dextronomous on December 12, 2023, 09:18:17 AM

sorry for jumping in and having to ask what i have to change
binary_bsgs_v1.py using this one starting at another point instead of 1 using this
"lm_upub= ice.scalar_multiplication(Add+(lm*i))"
will go for 120 bit db how to setup after 125 any help on this , mean where are you're specific scripts,
you all have your own scripts share it is care for it..

Example for 65bit

It won't work if there are no chunks. It will throw out that you don't have enough memory even if you have 128GB of RAM.

So this is will create baby_steps_binary.bin from 46117 stages....
Size of file over 5GB ....

So calculate size for 130 bit. Grin

Code:

import secp256k1 as ice
from bitstring import BitArray

print("creating Baby Step")

# create baby step
num = 92233720368 # Keys number in Binary Babystep. same m in the search script
Low_m = 20
lm = num // Low_m
Add = 18446744073709551615
Add_pub = ice.scalar_multiplication(Add)

# Function to process a chunk and write to binary file
def process_and_write_chunk(start, end):
   res = ice.point_sequential_increment(end - start, Add_pub)

   # Ensure the length of res is a multiple of 65
   res_length = len(res)
   if res_length % 65 != 0:
   res = res[:-(res_length % 65)]

   binary = ''
   for t in range(start, end):
   h = res[t * 65 : (t + 1) * 65].hex()
   hc = int(h[2:], 16) if h else 0 # Handle the case when h is an empty string

   if str(hc).endswith(('0', '2', '4', '6', '8')):
   A = "0"
   binary += ''.join(str(A))

   if str(hc).endswith(('1', '3', '5', '7', '9')):
   A = "1"
   binary += ''.join(str(A))

   my_str = BitArray(bin=binary)

   binary_file = open('baby_steps_binary.bin', 'ab')
   my_str.tofile(binary_file)
   binary_file.close()

# Process the remaining chunks with a smaller chunk size
chunk_size = 100000
for i in range(0, lm, chunk_size):
   print("stage: " + str(i // chunk_size + 1) + "/" + str((lm + chunk_size - 1) // chunk_size))
   end = min(i + chunk_size, lm)
   process_and_write_chunk(i, end)

nomachine

member

Activity: 235

Merit: 12

How to make lightweight database for Public Key Hashes (Hash 160) ? Grin

Drawesome

full member

Activity: 205

Merit: 135

I found your work very interesting and have spent a couple of hours trying to understand it. These things really motivate me to keep learning.

However, my biggest doubt is: In what natural context would a sequence of public keys with some pattern appear? I can't think of any, except for testing the security of the Secp256k1 scheme itself

dextronomous

full member

Activity: 427

Merit: 105

sorry for jumping in and having to ask what i have to change
binary_bsgs_v1.py using this one starting at another point instead of 1 using this
"lm_upub= ice.scalar_multiplication(Add+(lm*i))"
will go for 120 bit db how to setup after 125 any help on this , mean where are you're specific scripts,
you all have your own scripts share it is care for it..

mcdouglasx

member

Activity: 234

Merit: 51

New ideas will be criticized and then admired.

Quote from: sssergy2705 on December 12, 2023, 01:15:30 AM

Quote from: mcdouglasx on December 10, 2023, 02:39:15 PM

updated 12/11/2023.

Code:

#by mcdouglasx
import secp256k1 as ice
from bitstring import BitArray

print("creating Baby Step")

#create baby step

num = 2000000 # Keys number in Binary Babystep. same m in search script

Low_m= 20

lm= num // Low_m

Add = 1
Add_pub= ice.scalar_multiplication(Add)

res= ice.point_sequential_increment(lm, Add_pub)

binary = ''
for t in range (lm):

   h= (res[t*65:t*65+65]).hex()
   hc= int(h[2:], 16)


   if str(hc).endswith(('0','2','4','6','8')):
   A="0"
   binary+= ''.join(str(A))

   if str(hc).endswith(('1','3','5','7','9')):
   A="1"
   binary+= ''.join(str(A))


my_str = (BitArray(bin=binary))#bin=binary

binary_file = open('baby_steps__binary.bin', 'ab')
my_str.tofile(binary_file)
binary_file.close()

for i in range (1,Low_m):
   print("stage: "+ str(i+1)+"/"+str(20))

   lm_upub= ice.scalar_multiplication((lm*i))

   res= ice.point_sequential_increment(lm, lm_upub)

   binary = ''
   for t in range (lm):

   h= (res[t*65:t*65+65]).hex()
   hc= int(h[2:], 16)


   if str(hc).endswith(('0','2','4','6','8')):
   A="0"
   binary+= ''.join(str(A))

   if str(hc).endswith(('1','3','5','7','9')):
   A="1"
   binary+= ''.join(str(A))


   my_str = (BitArray(bin=binary))#bin=binary

   binary_file = open('baby_steps__binary.bin', 'ab')
   my_str.tofile(binary_file)
   binary_file.close()

Add = 1
Could this variable have a different meaning?
Or is there an analogue in the second script?
The fact is that when changing the value in this variable, the search script does not find matches.

It is the beginning of the database. starting from pk 1.
If you want to start from another point you must use this line
lm_upub= ice.scalar_multiplication(Add+(lm*i))

sssergy2705

copper member

Activity: 188

Merit: 0

Quote from: mcdouglasx on December 10, 2023, 02:39:15 PM

updated 12/11/2023.

Code:

#by mcdouglasx
import secp256k1 as ice
from bitstring import BitArray

print("creating Baby Step")

#create baby step

num = 2000000 # Keys number in Binary Babystep. same m in search script

Low_m= 20

lm= num // Low_m

Add = 1
Add_pub= ice.scalar_multiplication(Add)

res= ice.point_sequential_increment(lm, Add_pub)

binary = ''
for t in range (lm):

   h= (res[t*65:t*65+65]).hex()
   hc= int(h[2:], 16)


   if str(hc).endswith(('0','2','4','6','8')):
   A="0"
   binary+= ''.join(str(A))

   if str(hc).endswith(('1','3','5','7','9')):
   A="1"
   binary+= ''.join(str(A))


my_str = (BitArray(bin=binary))#bin=binary

binary_file = open('baby_steps__binary.bin', 'ab')
my_str.tofile(binary_file)
binary_file.close()

for i in range (1,Low_m):
   print("stage: "+ str(i+1)+"/"+str(20))

   lm_upub= ice.scalar_multiplication((lm*i))

   res= ice.point_sequential_increment(lm, lm_upub)

   binary = ''
   for t in range (lm):

   h= (res[t*65:t*65+65]).hex()
   hc= int(h[2:], 16)


   if str(hc).endswith(('0','2','4','6','8')):
   A="0"
   binary+= ''.join(str(A))

   if str(hc).endswith(('1','3','5','7','9')):
   A="1"
   binary+= ''.join(str(A))


   my_str = (BitArray(bin=binary))#bin=binary

   binary_file = open('baby_steps__binary.bin', 'ab')
   my_str.tofile(binary_file)
   binary_file.close()

Add = 1
Could this variable have a different meaning?
Or is there an analogue in the second script?
The fact is that when changing the value in this variable, the search script does not find matches.

COBRAS

member

Activity: 846

Merit: 22

$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk

Quote from: mcdouglasx on December 10, 2023, 04:40:18 PM

Quote from: digaran on December 10, 2023, 02:45:20 PM

You should add a description as to what baby step is and how it actually works, explain the logic so even a newbie can understand. Looking forward to see more improvements and more tools.👏💯

You're right, I published it quickly, when I have enough time I will do it, but for example baby step is a simple progressive database, equivalent to 2 million keys (it can be any size you want).
The advantage of using bits is that it is easier to manage light databases, its original version stores 400 million keys in 2GB, with bits only a few MB are needed.

Great. Thank you very much

mcdouglasx

member

Activity: 234

Merit: 51

New ideas will be criticized and then admired.

Quote from: digaran on December 10, 2023, 02:45:20 PM

You should add a description as to what baby step is and how it actually works, explain the logic so even a newbie can understand. Looking forward to see more improvements and more tools.👏💯

You're right, I published it quickly, when I have enough time I will do it, but for example baby step is a simple progressive database, equivalent to 2 million keys (it can be any size you want).
The advantage of using bits is that it is easier to manage light databases, its original version stores 400 million keys in 2GB, with bits only a few MB are needed.

digaran

copper member

Activity: 1330

Merit: 899

🖤😏

You should add a description as to what baby step is and how it actually works, explain the logic so even a newbie can understand. Looking forward to see more improvements and more tools.👏💯

mcdouglasx

member

Activity: 234

Merit: 51

New ideas will be criticized and then admired.

updated 12/11/2023.

The Baby Step Giant Step (BSGS) algorithm is used to solve the discrete logarithm problem efficiently in a cyclic group. The algorithm works by breaking down the problem into two steps:

Baby Steps

In this step, we calculate a list of baby steps by iteratively raising the generator g to different powers. We start with j = 0 and calculate g^j for values of j from 0 up to m-1 , where m is typically chosen as the square root of the group order n . We store each calculation in 1 bit per key, this is the highlight because it considerably minimizes the size of our database.

binary baby step
2000000 Keys

Code:

#by mcdouglasx
import secp256k1 as ice
from bitstring import BitArray

print("creating Baby Step")

#create baby step

num = 2000000 # Keys number in Binary Babystep. same m in search script

Low_m= 20

lm= num // Low_m

Add = 1
Add_pub= ice.scalar_multiplication(Add)

res= ice.point_sequential_increment(lm, Add_pub)

binary = ''
for t in range (lm):

   h= (res[t*65:t*65+65]).hex()
   hc= int(h[2:], 16)


   if str(hc).endswith(('0','2','4','6','8')):
   A="0"
   binary+= ''.join(str(A))

   if str(hc).endswith(('1','3','5','7','9')):
   A="1"
   binary+= ''.join(str(A))


my_str = (BitArray(bin=binary))#bin=binary

binary_file = open('baby_steps__binary.bin', 'ab')
my_str.tofile(binary_file)
binary_file.close()

for i in range (1,Low_m):
   print("stage: "+ str(i+1)+"/"+str(20))

   lm_upub= ice.scalar_multiplication((lm*i))

   res= ice.point_sequential_increment(lm, lm_upub)

   binary = ''
   for t in range (lm):

   h= (res[t*65:t*65+65]).hex()
   hc= int(h[2:], 16)


   if str(hc).endswith(('0','2','4','6','8')):
   A="0"
   binary+= ''.join(str(A))

   if str(hc).endswith(('1','3','5','7','9')):
   A="1"
   binary+= ''.join(str(A))


   my_str = (BitArray(bin=binary))#bin=binary

   binary_file = open('baby_steps__binary.bin', 'ab')
   my_str.tofile(binary_file)
   binary_file.close()

Giant Steps

In this step, we perform giant steps by multiplying, this approach is efficient because it reduces the search space for the discrete logarithm from O(n) to O(sqrt(n)) , significantly speeding up the computation for large cyclic groups.

search script

Code:

#@author: iceland, modified by @mcdouglasx

import time
import random
import bit
import os
import math
import sys
import secp256k1 as ice
import numpy as np
from bitstring import BitArray

##Pk: 33185509 puzzle #30
Target = '03057fbea3a2623382628dde556b2a0698e32428d3cd225f3bd034dca82dd7455a'

bs_file = 'baby_steps__binary.bin'

start = 0
end = 33554431

m = 2000000 # Keys number in Binary Babystep
Cm= 64

public_key = ice.pub2upub(Target).hex()

# =============================================================================

def pub2upub(pub_hex):
x = int(pub_hex[2:66],16)
if len(pub_hex) < 70:
y = bit.format.x_to_y(x, int(pub_hex[:2],16)%2)
else:
y = int(pub_hex[66:],16)
return bytes.fromhex('04'+ hex(x)[2:].zfill(64) + hex(y)[2:].zfill(64))

#find baby step file

valid = os.path.isfile(bs_file)
if valid == True:
print('\nFound the Baby Steps Table file: '+bs_file+'. Will be used directly')

file = bytes(np.fromfile(bs_file))

baby_steps= BitArray(file)

if valid == False:
print('\nNot Found '+bs_file+'. you must Create This File Now.' )

###############################################################################

st = time.time()
print('\n[+] Starting Program : Binary BSGS mode')

Q = pub2upub(public_key)

# We have to solve P = k.G, we know that k lies in the range ]k1,k2]
k1 = random.randint(start, end) # start from
k2 = k1 + m*m
print('Checking {0} keys from {1}'.format(m*m, k1))

k1G = ice.scalar_multiplication(k1)
mG = ice.scalar_multiplication(m)

st = time.time()

###############################################################################

def findkey(onePoint):
S = ice.point_subtraction(Q, k1G)

found = False
step = 0

while found is False and step<(1+k2-k1):
Sx_1= ice.point_sequential_increment(Cm, S)
binary = ''

for t in range (Cm):

h= (Sx_1[t*65:t*65+65]).hex()
hc= int(h[2:], 16)

if str(hc).endswith(('0','2','4','6','8')):
A="0"
binary+= ''.join(str(A))

if str(hc).endswith(('1','3','5','7','9')):
A="1"
binary+= ''.join(str(A))

b = BitArray(bin=binary)
c = bytes(b)
Sw =c

if b in baby_steps:
#
s = c
f = BitArray(baby_steps)
inx = f.find(s)
inx_1=str(inx).replace(",", "")
inx_0=str(inx_1).replace("(", "")
inx_2=str(inx_0).replace(")", "")
b = int(inx_2)
found = True
break
else:
# Giant step
S = ice.point_subtraction(S, mG)
step = step + m
if found == True:
#print("k1:",k1)
#print("step:",step)
#print("b:",b)

final_key = (k1 + step + b + 1)-1

else:
final_key = -1
return final_key

final_key = findkey(Q)

if final_key >0:
print("BSGS FOUND PrivateKey :",str(final_key))
data= open("win.txt", "a")
data.write("private key = "+str(final_key)+"\n")
data.write(str("Time Spent : {0:.2f} seconds".format(time.time()-st))+ "\n")
data.close()
else:
print('PrivateKey Not Found')

print(str("Time Spent : {0:.2f} seconds".format(time.time()-st)))

This script is just an idea, it is not intended to be fast.
Make your own version in C.

This is a modification of Iceland's work.

Topic: Binary Baby Step Giant Step with lightweight database - Brute force (BSGS) (Read 522 times)