Author

Topic: P2PUBKEY in witness program (Read 175 times)

hero member
Activity: 854
Merit: 658
rgbkey.github.io/pgp.txt
July 03, 2018, 07:43:06 PM
#2
The way I see it, when you start enabling people to "turn off" privacy features like not reusing addresses, you also weaken the privacy of the people who still value their privacy and do not reuse addresses. Because when you start reusing addresses frequently, the amount of unique addresses shrinks and it's easier to tie together transactions.

I could be wrong, but that's my understanding of it.
member
Activity: 148
Merit: 45
https://bitaps.com/
July 03, 2018, 04:13:27 PM
#1
Old standard transactions format included 3 types: P2PUBKEY, P2PKH, P2SH. After Segwit soft fork, we have got 2 additional types: P2WPKH and P2WSH.

If we compare cost of spending inputs (in bytes we write on HDD) for   P2PUBKEY, P2PKH and P2WPKH and  we got next values:
  • P2PUBKEY  33 bytes public key(we do not consider uncompressed keys)  + signature 72 bytes = 105 bytes
  • P2PKH        20 bytes public key hash + 33 bytes public key + 72 bytes signature = 125 bytes
  • P2WPKH     20 bytes public key hash + 33 bytes public key + 72 bytes signature = 125 bytes

From this comparison we can conclude that P2PUBKEY the best for reduce blockchain size. We can save about 19% of spending input size. I understand that P2PKH give more
security in case we do not reuse address. In case we reuse address there are no advantages use P2PKH. We can observe quite frequent use of addresses repeatedly. For a certain range of tasks we not need extra security like P2PKH. Why in Segwit transaction types we don't have ability to use P2WPUBKEY as standard transaction?  This type of transaction help to reduce blockchain size in case user do not need/want use "no address reuse" security model? 20 bytes for each input this is good opportunity to save the size of blockchain.

Also I read this thread https://bitcointalksearch.org/topic/ecdsa-signatures-allow-recovery-of-the-public-key-6430, what is the reason why bitcoin core developers do not want use public key recovery and save 33 bytes for each input?  If the concerns are related to performance, we can observe how the ethereum works and reaches about 1M tx per day (this is like 1M inputs per day in Bitcoin).
Jump to: