Author

Topic: [SDC] ShadowCash | Welcome to the UMBRA - page 106. (Read 1289644 times)

hero member
Activity: 812
Merit: 1000
February 12, 2016, 03:48:59 PM
https://blog.shadowproject.io/2016/02/12/deanonymize-shadow-nope/

If anyone from the Monero camp wishes to help attempt to deanonymize an actual transaction, feel free.

I just read through this and am slightly confused. It's not clear to me whether a problem exists or not.
All Im getting is:
a) we couldn't de-anon a tx using the vulnerability published after trying for 10 hours. This does not seem exhaustive and the blog shows no fancy maths to prove everything is OK
b) Your NOT gonna award the bounty cause he declared it publicly first.

Am I the only one who thinks more investigation is needed?
legendary
Activity: 1133
Merit: 1050
February 12, 2016, 12:05:48 PM
I'd like to thank the Monero Research Lab for the peer review.
Cheers!
hero member
Activity: 896
Merit: 1000
Avatars are overrated.
February 12, 2016, 11:56:00 AM
I hope SDC will come out from this XMR attack as strong as before!
Now that Monero has been unsuccessful in their de-anon attempts and FUD I think it should actually strengthen the core idea that Shadow is the real cutting edge anon leader. Good PR for the upcoming releases.
hero member
Activity: 744
Merit: 500
February 12, 2016, 11:31:41 AM
I hope SDC will come out from this XMR attack as strong as before!
hero member
Activity: 606
Merit: 500
February 12, 2016, 09:16:59 AM
https://blog.shadowproject.io/2016/02/12/deanonymize-shadow-nope/

If anyone from the Monero camp wishes to help attempt to deanonymize an actual transaction, feel free.
legendary
Activity: 868
Merit: 1006
February 12, 2016, 09:15:57 AM
I would be interested to see SDC try to implement zerocash.

I'll disagree with you. I don't see the point of adding zcash tech when shadow tech is doing the same thing, is further along, tested in the wild, etc. We have a public coin and a private coin, use ring sigs, stealth addys & NKZIP. From what I've read on zcash that's the same thing they're trying to make.

We don't need it imo.

I depends on the size of the anonymous transactions. It can be interesting to implement the tech that has the smallest one.
legendary
Activity: 1133
Merit: 1050
February 12, 2016, 09:04:41 AM
I would be interested to see SDC try to implement zerocash.

I'll disagree with you. I don't see the point of adding zcash tech when shadow tech is doing the same thing, is further along, tested in the wild, etc. We have a public coin and a private coin, use ring sigs, stealth addys & NKZIP. From what I've read on zcash that's the same thing they're trying to make.

We don't need it imo.
member
Activity: 80
Merit: 10
February 11, 2016, 10:27:57 PM
trash

Sorry to disappoint but there was no serious attention. Shen identified the potential pitfall while working on something else decided to look at existing ring signature implementations he could find to see if any of them had the bug. Both OZcoin and Shadow seemed to have it. It's possible he missed something too, and Shadow is protected in some manner, although it doesn't really look that way (the code posted here doesn't seem to fix it). I guess we'll see after further attention is given to it.

Another assumption by Smooth and Co. So he happened to be working on something else and just decided to create a blog (who's only post is dedicated to this FUD)

No, he discovered the issue and wanted to write it up somewhere. That's what you do when you are a cryptographer, you write up math stuff. It wasn't really enough substance for a real paper so he put it on a blog.

Quote
and reddit post

The reddit post didn't come from him, and as for the rest of the "PR blast", I'll just say you are naive if you think this sort of thing isn't going to be talked about. That's just the nature of crypto. There are plenty of people commenting about bugs in Monero when we've had them.

Agreed that the math doesn't justify a full paper.  Glad to see that some people are attempting serious mathematical and cryptographic discussions on potential implementations (granted, it could be an oversight in thinking what the code does versus what it actually does). In the civilized world, cryptographic researchers don't call other people trolls for making honest mistakes about an implementation when the scenario is that they are trying to have an honest discussion about the potential overall problems of systems that may have a faulty implementation.
* complexring goes and gets his popcorn stand

I think that was meant towards OzCoin and not Shadowcash. OzCoin simply stole some work without crediting/referencing, hence. Also, one should read the discussion here:

https://github.com/shadowproject/shadow/issues/25#issuecomment-183024476

Perhaps makes things more clear.

Thanks!  That does make things more clear.  Looks like github comments is a much more civilized world than here.  Go figure. Cool
legendary
Activity: 2268
Merit: 1141
February 11, 2016, 08:38:21 PM
trash

Sorry to disappoint but there was no serious attention. Shen identified the potential pitfall while working on something else decided to look at existing ring signature implementations he could find to see if any of them had the bug. Both OZcoin and Shadow seemed to have it. It's possible he missed something too, and Shadow is protected in some manner, although it doesn't really look that way (the code posted here doesn't seem to fix it). I guess we'll see after further attention is given to it.

Another assumption by Smooth and Co. So he happened to be working on something else and just decided to create a blog (who's only post is dedicated to this FUD)

No, he discovered the issue and wanted to write it up somewhere. That's what you do when you are a cryptographer, you write up math stuff. It wasn't really enough substance for a real paper so he put it on a blog.

Quote
and reddit post

The reddit post didn't come from him, and as for the rest of the "PR blast", I'll just say you are naive if you think this sort of thing isn't going to be talked about. That's just the nature of crypto. There are plenty of people commenting about bugs in Monero when we've had them.

Agreed that the math doesn't justify a full paper.  Glad to see that some people are attempting serious mathematical and cryptographic discussions on potential implementations (granted, it could be an oversight in thinking what the code does versus what it actually does). In the civilized world, cryptographic researchers don't call other people trolls for making honest mistakes about an implementation when the scenario is that they are trying to have an honest discussion about the potential overall problems of systems that may have a faulty implementation.
* complexring goes and gets his popcorn stand

I think that was meant towards OzCoin and not Shadowcash. OzCoin simply stole some work without crediting/referencing, hence. Also, one should read the discussion here:

https://github.com/shadowproject/shadow/issues/25#issuecomment-183024476

Perhaps makes things more clear.
sr. member
Activity: 624
Merit: 250
February 11, 2016, 08:21:56 PM
code: Almost all of you have been acting childish, borderlining at the edge of uncivilized. I don't even know where to begin if I were to dissect each action individually. I don't like the tone of these seemingly two communities clashing against each other. It's a poor minority of each community with a some personal vendetta's against each other trying to wage a war. To me, it shows that some people, on either side, don't care about the goal of either project and that is financial privacy.  A goal that drives all the developers and cryptographers behind the scenes of anonymous coins. The true open source mentality is ruined in the altcoin scene, open source used to be 'you made something based on our work? Cool  tell me all about it'. When some people put money in it and the capitalistic mindset makes either side demonize their "competitors". The truth is ShadowCash plays a niche market of the decentralized markets, which  Monero isn't. One of the many reason why I hate this forum so much. The illusion of competition when you're not even playing the same game. I doubt the exchange rate will drop because of it, most people are here for other features anyways. Except for some traders that get scared way too fast. The project's cryptocoin comes in second and even if the bug is real, it still provides decent anonymity at the same level of Bitcoin. (Not trying to make the possible bug looks like a cosmetic error, it could be critical to the protocol). Some people will lose their mind about the previous two sentences, guaranteed. To keep it short, the cryptographer of Monero did a good thing reporting the possible bug, ofcourse their community will take some childish stabs at ShadowCash, no need to escalate an argument into flame wars because some troll feeders got the best of you. Anonymity prevents censorship but also enables keyboard warriors, on either side of the communities.
member
Activity: 80
Merit: 10
February 11, 2016, 07:24:53 PM
trash

Sorry to disappoint but there was no serious attention. Shen identified the potential pitfall while working on something else decided to look at existing ring signature implementations he could find to see if any of them had the bug. Both OZcoin and Shadow seemed to have it. It's possible he missed something too, and Shadow is protected in some manner, although it doesn't really look that way (the code posted here doesn't seem to fix it). I guess we'll see after further attention is given to it.

Another assumption by Smooth and Co. So he happened to be working on something else and just decided to create a blog (who's only post is dedicated to this FUD)

No, he discovered the issue and wanted to write it up somewhere. That's what you do when you are a cryptographer, you write up math stuff. It wasn't really enough substance for a real paper so he put it on a blog.

Quote
and reddit post

The reddit post didn't come from him, and as for the rest of the "PR blast", I'll just say you are naive if you think this sort of thing isn't going to be talked about. That's just the nature of crypto. There are plenty of people commenting about bugs in Monero when we've had them.

Agreed that the math doesn't justify a full paper.  Glad to see that some people are attempting serious mathematical and cryptographic discussions on potential implementations (granted, it could be an oversight in thinking what the code does versus what it actually does).  In the civilized world, cryptographic researchers don't call other people trolls for making honest mistakes about an implementation when the scenario is that they are trying to have an honest discussion about the potential overall problems of systems that may have a faulty implementation.
* complexring goes and gets his popcorn stand
hero member
Activity: 671
Merit: 505
February 11, 2016, 06:46:41 PM
I am genius, I know the name of another shit like me, well, bigger than me. Freud.

Freud, Froyd, Droid... I cannot care less for propaganda cretins like you and this one. Have a nice night!  Smiley
legendary
Activity: 2968
Merit: 1198
February 11, 2016, 06:38:47 PM
trash

Sorry to disappoint but there was no serious attention. Shen identified the potential pitfall while working on something else decided to look at existing ring signature implementations he could find to see if any of them had the bug. Both OZcoin and Shadow seemed to have it. It's possible he missed something too, and Shadow is protected in some manner, although it doesn't really look that way (the code posted here doesn't seem to fix it). I guess we'll see after further attention is given to it.

Another assumption by Smooth and Co. So he happened to be working on something else and just decided to create a blog (who's only post is dedicated to this FUD)

No, he discovered the issue and wanted to write it up somewhere. That's what you do when you are a cryptographer, you write up math stuff. It wasn't really enough substance for a real paper so he put it on a blog.

Quote
and reddit post

The reddit post didn't come from him, and as for the rest of the "PR blast", I'll just say you are naive if you think this sort of thing isn't going to be talked about. That's just the nature of crypto. There are plenty of people commenting about bugs in Monero when we've had them.
hero member
Activity: 896
Merit: 1000
Avatars are overrated.
February 11, 2016, 06:29:09 PM
I2P is not exactly Tor but I am just a propaganda rat, so how can I know? Plus my technical skills incline to zero.

How typical for a cheap persona like you, a cheap tries to imprint his own attitude to everyone else! And my parents?! That's your best shot, Froyd? Grin A malevolent imbecile.
No, my best shot was proving you are a moron a couple times over. Reality proves you are a racist that is unloved by the people around you. I feel sorry for you. And citing Sigmund Freud then misspelling his name? Sigh, how stereotypical you morose non-contributing zero.
hero member
Activity: 671
Merit: 505
February 11, 2016, 06:20:43 PM
I2P is not exactly Tor but I am just a propaganda rat, so how can I know? Plus my technical skills incline to zero.

How typical for a cheap persona like you, a cheap tries to imprint his own attitude to everyone else! And my parents?! That's your best shot, Froyd? Grin A malevolent imbecile.
hero member
Activity: 896
Merit: 1000
Avatars are overrated.
February 11, 2016, 05:52:50 PM
My vacuum brain has been insulted.
I'm racist and hate everyone around me because my parents never cared.
My logic goes over your head frequently. It's ok pobrecito. I'll do the research that historically you have been incapable of. Got any more brain twisters like, "Does shadow have tor?" that I can answer for you, again?
hero member
Activity: 671
Merit: 505
February 11, 2016, 05:37:05 PM
My vacuum brain has been insulted.

I haven't seen a single concrete statement from this clown erok. Only hypotheses and imbecile clucks.
legendary
Activity: 1246
Merit: 1000
ARK Team likes to ban and delete posts in reddit.
February 11, 2016, 05:27:29 PM
lets see if he can actually deanonimize a transaction Wink

If he can, I think that It's best that SDC Devs know about it and fix it, pay him the bounty, and thank him for finding the bug. Thats why a bounty exists, to find bugs and stomp them.

If he cannot actually deanonymize a transaction, then I'd say Monero will take a beating for this.  

Popcorn time.  Cool
sr. member
Activity: 277
Merit: 250
February 11, 2016, 05:10:05 PM
lets see if he can actually deanonimize a transaction Wink
hero member
Activity: 896
Merit: 1000
Avatars are overrated.
February 11, 2016, 05:07:18 PM
trash

Sorry to disappoint but there was no serious attention. Shen identified the potential pitfall while working on something else decided to look at existing ring signature implementations he could find to see if any of them had the bug. Both OZcoin and Shadow seemed to have it. It's possible he missed something too, and Shadow is protected in some manner, although it doesn't really look that way (the code posted here doesn't seem to fix it). I guess we'll see after further attention is given to it.

Another assumption by Smooth and Co. So he happened to be working on something else and just decided to create a blog (who's only post is dedicated to this FUD) and reddit post and a ton of other bad PR around his assumption which turned out to be incorrect and again you backed him even though he had no proof. slowclap.gif. You have really dug another hole again for Monero Smooth. And then quoting the guy that called me a "Jewish rat". Way to keep it classy Smooth!

"Sorry to disappoint but there was no serious attention" no kidding just an ignorant PR blast from Monero. You guys have changed. Makes me feel like I need to dump the Aeon I hold.
Jump to: