Bitcoin Forum>Bitcoin>Development & Technical Discussion
Author

Topic: R,s,z qeschion ! (Read 225 times)

demoinvest1
newbie
Activity: 6
Merit: 0
R,s,z qeschion !
November 15, 2021, 09:25:32 PM
#7
Quote from: NotATether on November 14, 2021, 10:26:54 PM

R and S are public inside the transaction output. Z is just the SHA256 hash of the raw transaction, not the signed transaction.

Usually, it is not possible to obtain the private key from an RSZ triple, since if you could, that would break the security model of Bitcoin.

But if you have two RSZ triples that were generated with the same nonce ("k"), you can solve two equations of the form s = k-1(z + r*dA) mod n (this comes from the verification algorithm) for dA, the private key.

Thank you very much. help to understand more
NotATether
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
Re: R,s,z qeschion !
November 14, 2021, 10:26:54 PM
#6
Quote from: demoinvest1 on November 14, 2021, 08:27:00 PM
I read bout method use R,S,Z but not yet understand yet why it can use calculate to know privatekey
method looking R and S on Transaction How I can calculate Z? what equation for calculate
and if  I have private key how to calculate R,S,Z for testing Can do it or not?

R and S are public inside the transaction output. Z is just the SHA256 hash of the raw transaction, not the signed transaction.

Usually, it is not possible to obtain the private key from an RSZ triple, since if you could, that would break the security model of Bitcoin.

But if you have two RSZ triples that were generated with the same nonce ("k"), you can solve two equations of the form s = k-1(z + r*dA) mod n (this comes from the verification algorithm) for dA, the private key.
demoinvest1
newbie
Activity: 6
Merit: 0
Re: R,s,z qeschion !
November 14, 2021, 08:27:00 PM
#5
I read bout method use R,S,Z but not yet understand yet why it can use calculate to know privatekey
method looking R and S on Transaction How I can calculate Z? what equation for calculate
and if  I have private key how to calculate R,S,Z for testing Can do it or not?

NotATether
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
Re: R,s,z qeschion !
November 14, 2021, 02:02:19 PM
#4
RSZ only applies to inputs, not outputs because the outputs don't have an RSZ created for them yet. They can only be made when you spend the outputs by putting them as inputs to another transaction.
COBRAS
member
Activity: 873
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
Re: R,s,z qeschion !
November 14, 2021, 12:35:17 PM
#3
Quote from: ?? on ??
I will try to explain very easy:

if address x has send transaction to y -> it means that x address has outgoing transaction.

sender address = attack addres.

So, x adress for attack or y ?
COBRAS
member
Activity: 873
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
Re: R,s,z qeschion !
November 14, 2021, 12:06:56 PM
#2
Quote from: ?? on ??
Quote from: COBRAS on November 14, 2021, 11:28:24 AM
R,s,z of signature transaction  is only for input or outgoing transactions HuhHuh

Tnanx !!!


if your attack addres is 1XXXX -> and you want try to find privkey -> you need outgoing transactions from attack addres

Outgoin transaction has no R,S,Z

Incoming tration has R,S, Z

Then I get. R,s,z for invoming transaction they have publick key of sender adress

F*ck.

How to get r,s,z for publick key of reciver publick key address Huh

Huh?
COBRAS
member
Activity: 873
Merit: 22
$$P2P BTC BRUTE.JOIN NOW ! https://uclck.me/SQPJk
Re: R,s,z qeschion !
November 14, 2021, 11:28:24 AM
#1
R,s,z of signature transaction  is only for input or outgoing transactions HuhHuh

Tnanx !!!
Bitcoin Forum>Bitcoin>Development & Technical Discussion
Jump to: