thank you for the links.
Here are my comments/answers.
https://en.bitcoin.it/wiki/BIP_0032
This BIP describes a key derivation scheme. This is certainly a better way than storing individual secret keys. However, one must still maintain a database associating the key derivation data with the keys. My proposal does not need a key derivation scheme, because only one secret key is needed.
1- [PROPOSAL] Untrackable addresses: https://bitcointalksearch.org/topic/m.1405288
2- Untraceable transactions which can contain a secure message are inevitable: https://bitcointalksearch.org/topic/m.87757
3- Mine: http://bitslog.wordpress.com/2012/08/06/destination-address-anonymization-in-bitcoin/
4- Gavin's: Bitcoin Payment Messages https://gist.github.com/gavinandresen/4120476
Best regard, Sergio.
to item 1:
This proposal has one drawback, as the thread starter already noticed:
Contrary to this, my solution does not have this drawback.
to item 2:
This is essentially the same as item 1
to item 3:
Let's compare your proposal(4) with mine:
system complexity:
Your proposal needs an additional private/public key pair for encryption.
mathematical complexity:
Lets assume you're using Elgamal encryption. For simplicity, lets count only ECC operations.
For sending you have to perform one scalar multiplication to get the new point k*QA and than do an Elgamal Encryption, which costs two scalar multiplications plus one addition:
My proposal needs only two scalar multiplications for the blinding of the public key
For checking the transactions you have to perform an Elgamal decrytion to get the anonymity key (1 scalar mult and one add) and than do a scalar multiplication with this key.
My proposal need only one scalar multiplication. One only has to check if P' = f*G', where f is the fixed secret key.
In summary:
yours mine
SEND 3 mult, 1 add 2 mult
CHECK 2 mult, 1 add 1 mult
to item 4:
I cannot see how this proposal is related with mine.