Bitcoin Forum>Bitcoin>Bitcoin Technical Support
Author

Topic: Can a HD XPubkey be obtained back from a derived public address? (Read 175 times)

JohnGalt
full member
Activity: 249
Merit: 114
Who is John Galt?
Can a HD XPubkey be obtained back from a derived public address?
May 03, 2018, 01:41:50 PM
#4
Quote from: kobik on May 02, 2018, 02:50:01 AM
Suppose I have an HD public xpubkey and I derive bitcoin public address(es) from it.
Given one of the public bitcoin address derived from it e.g. 1F1tAaz5x1....
Can you get the xpubkey e.g. xpub6DKUi1BvKEgn...
I thought it is impossible, but someone I know claims it is possible.
And if it is possible isn't the privacy compromised in this situation?

Not sure if this is directly related but also take a look at
Deterministic Wallets, Their Advantages and their Understated Flaws ("An Understated Problem" section):
https://bitcoinmagazine.com/articles/deterministic-wallets-advantages-flaw-1385450276/

You cannot derive a key (public or private) from an address because an address is a hash (plus version byte and checksum).

Perhaps you are confusing that with a different issue: you can derive the master private key from the master public key and a child private key.
HeRetiK
legendary
Activity: 3038
Merit: 2166
Playgram - The Telegram Casino
Re: Can a HD XPubkey be obtained back from a derived public address?
May 03, 2018, 07:16:22 AM
#3
What you should be aware of is that anyone who has access to your xpub key will be able to track any transaction that will move through its derived addresses. So while not as critical as private keys, you should also keep your xpub key safe from prying eyes, otherwise your privacy may be compromised.

Other than that, just like bob123 said: No, you can't derive the xpub key from one of its child public keys.
bob123
legendary
Activity: 1624
Merit: 2481
Re: Can a HD XPubkey be obtained back from a derived public address?
May 03, 2018, 06:08:45 AM
#2
Quote from: kobik on May 02, 2018, 02:50:01 AM
Suppose I have an HD public xpubkey and I derive bitcoin public address(es) from it.
Given one of the public bitcoin address derived from it e.g. 1F1tAaz5x1....
Can you get the xpubkey e.g. xpub6DKUi1BvKEgn...

You don't derive addresses from a xpubkey. You derive (child-)public keys from an xpubkey.
The derivation can not be calculated 'reversed'. It behaves like a hash function.

An address is the hash of your public key which logically also can't be reversed.

So, no. This is not possible.
It is not possible to calculate the public key of the corresponding address (public key is 'exposed' after broadcasting a transaction).
It is not possible to calculate the xpubkey from an public key.



Quote from: kobik on May 02, 2018, 02:50:01 AM
I thought it is impossible, but someone I know claims it is possible.

The person you know probably doesn't have a clue.



Quote from: kobik on May 02, 2018, 02:50:01 AM
And if it is possible isn't the privacy compromised in this situation?

If it would be possible, then yes. But since this is not possible, everything is fine.
kobik
jr. member
Activity: 39
Merit: 3
Re: Can a HD XPubkey be obtained back from a derived public address?
May 02, 2018, 02:50:01 AM
#1
Suppose I have an HD public xpubkey and I derive bitcoin public address(es) from it.
Given one of the public bitcoin address derived from it e.g. 1F1tAaz5x1....
Can you get the xpubkey e.g. xpub6DKUi1BvKEgn...
I thought it is impossible, but someone I know claims it is possible.
And if it is possible isn't the privacy compromised in this situation?

Not sure if this is directly related but also take a look at
Deterministic Wallets, Their Advantages and their Understated Flaws ("An Understated Problem" section):
https://bitcoinmagazine.com/articles/deterministic-wallets-advantages-flaw-1385450276/
Bitcoin Forum>Bitcoin>Bitcoin Technical Support
Jump to: