I forgot about the concept of Block chain pruning. You are right, it might be best to send something to it.
Although, I don't think that a transaction with 0 outputs and a fee would be pruned. Then the fee would be lost.
Topic: Using bitcoin for trusted timestamping? - page 2. (Read 7985 times)
For the record, you don't actually need to send ฿0. You can send ฿100, and then retrieve it later. Of course, don't release your document to the public before retrieving your money.
How? The address is non-existent. You are sending BTC to an address which is simply a hash of the document. There is no corresponding private key. Any funds sent there are irrecoverable.
Your way is better.
Note: You probably don't want to send ฿0 to it, because then it might get pruned when blockchain pruning is implemented.
To be "genius" it needs to be both good and novel. This application (using the block chain to prove that a piece of information existed at a given point in time) is good but well-known.
Yes, I've been told so since. I wasn't aware of this concept, but I guess it makes sense. (Putting an advertisement in a newspaper with a hash, or something similar.) 
For the record, you don't actually need to send ฿0. You can send ฿100, and then retrieve it later. Of course, don't release your document to the public before retrieving your money.
How? The address is non-existent. You are sending BTC to an address which is simply a hash of the document. There is no corresponding private key. Any funds sent there are irrecoverable.
This is genius and deserves a bump.
To be "genius" it needs to be both good and novel. This application (using the block chain to prove that a piece of information existed at a given point in time) is good but well-known.Also it can be done much simpler than in the OP. Since you don't need to be able to actually redeem any sent coins, you can skip the private key completely and simply include the document hash as an address.
For the record, you don't actually need to send ฿0. You can send ฿100, and then retrieve it later. Of course, don't release your document to the public before retrieving your money.
I agree. Without reading the post that Bimmerhead linked to, I think I remember there being a few hours leeway in the timestamp. I'll have to check to be sure. Surely though it isn't enough leeway to change the day the document was signed on.
EDIT:
Read the linked to post, it seems that there is 2 hours leeway. So as long as you only need to be accurate within a few hours, you are alright.
EDIT:
Read the linked to post, it seems that there is 2 hours leeway. So as long as you only need to be accurate within a few hours, you are alright.
This is genius and deserves a bump.
Apparently there is quite a bit of leeway in the timestamp:
https://bitcointalksearch.org/topic/m.581628
https://bitcointalksearch.org/topic/m.581628
cbeast: Exactly what im talking about.
This could be even included as a patch to the original client, since no changes in protocol is needed (you don't even need to disable IsStandard check), simply a button/menu alternative "Let bitcoin network notarize any document", and you get a large textbox to paste anything you want to notarize.
When a block gets confirmed, we have a time window of 10 minutes, where the notarized document will appear.
Combine this with a "real" notarizing service like: http://www.timemarker.org/en/ and you get second precision in the service.
The "timemarker.org" service then makes second precision, but timemarker.org would not be as trustworty as you think since they don't have many users, so even if you dont cheat, a verifyer can say that you cheat and you cannot prove you don't cheat.
You then combine this with a 0BTC transaction on bitcoin, and get both very high security, since bitcoin is really hard to cheat, but also get second precision for the timestamp.
What you could do, is simply timestamping (0BTC:ing) the hash of timemarker.org signature including the timestamp data, using the timestamp from timemarker.org as transaction timestamp, and including both in your data that was timestamped.
This could be even included as a patch to the original client, since no changes in protocol is needed (you don't even need to disable IsStandard check), simply a button/menu alternative "Let bitcoin network notarize any document", and you get a large textbox to paste anything you want to notarize.
When a block gets confirmed, we have a time window of 10 minutes, where the notarized document will appear.
Combine this with a "real" notarizing service like: http://www.timemarker.org/en/ and you get second precision in the service.
The "timemarker.org" service then makes second precision, but timemarker.org would not be as trustworty as you think since they don't have many users, so even if you dont cheat, a verifyer can say that you cheat and you cannot prove you don't cheat.
You then combine this with a 0BTC transaction on bitcoin, and get both very high security, since bitcoin is really hard to cheat, but also get second precision for the timestamp.
What you could do, is simply timestamping (0BTC:ing) the hash of timemarker.org signature including the timestamp data, using the timestamp from timemarker.org as transaction timestamp, and including both in your data that was timestamped.
This could even become an automated 'notary' service. I'm sure this has been discussed before.
But what about transaction fees? If we send 0BTC into a adress, it would never make it into a block unless a miner is honoring non-fee'd low transactions.
You can put a fee on a transaction with a 0BTC output.
But what about transaction fees? If we send 0BTC into a adress, it would never make it into a block unless a miner is honoring non-fee'd low transactions.
It's much easier than that:
You need more than around 50% of the network's computational power in order to get the timestamp off by more than a few hours.
There's a very easy way to do this without any program:
First, SHA-1 the data you want to timestamp (or RIPEMD-160, or SHA-256 and truncate to 160 bits). Then use this to turn it into an address:
http://blockexplorer.com/q/hashtoaddress/putHashHere
Then, send any amount of BTC to the returned address. (If you modify Bitcoin, it's actually possible to create a transaction that sends 0 BTC to an address, which would also work. Then you don't have to destroy BTC.)
Finally, you can see the timestamp here:
http://blockexplorer.com/q/addressfirstseen/timestampAddress
First, SHA-1 the data you want to timestamp (or RIPEMD-160, or SHA-256 and truncate to 160 bits). Then use this to turn it into an address:
http://blockexplorer.com/q/hashtoaddress/putHashHere
Then, send any amount of BTC to the returned address. (If you modify Bitcoin, it's actually possible to create a transaction that sends 0 BTC to an address, which would also work. Then you don't have to destroy BTC.)
Finally, you can see the timestamp here:
http://blockexplorer.com/q/addressfirstseen/timestampAddress
How accurate is bitcoin timestamps and how can they be manipulated?
You need more than around 50% of the network's computational power in order to get the timestamp off by more than a few hours.
What about using bitcoin for trusted timestamping?
Found out this: https://en.bitcoin.it/wiki/Mini_private_key_format
Apparently, anything can be used as private key (like SHA("haha") as private key, and then a public key can be generated out of this).
Then, if I take a document, lets say a legal document, some important server logs, bookkeeping records in a company, or anything else that needs a trusted timestamp. Then I take SHA() of the document.
Then I use the result of SHA() as private key (appending zeroes if its too short, and truncating if too long), generate a adress and publickey out of this, transfer X number of BTC (high enough to avoid any transaction fees), to this adress.
Then I use the SHA() private key to transfer the funds back.
After this, I publish the timestamped document along with a link to blockexplorer to verify it.
Now I have created a record in the blockchain, that, anyone having access to the document in question, can check the timestamp in this way:
SHA() of the document in question. Then create public key out of this private key, then make a adress out of this. Check with blockchain which are the *earliest* entry of this adress. The timestamp of that entry is the timestamp of the document in question.
Since the address is empty since we transferred the funds back, theres no funds to be able to withdraw from someone that has the document in question and can generate the private key.
How accurate is bitcoin timestamps and how can they be manipulated?
(either by the one timestamping the document, in effort to defraud someone with a future/history marked document, or some external adversary in order to gain any fraud convience, like manipulating timestamp so a important document seems to be issued after a identy theft credit block is ordered on a specific social security number in order to invalidate the document?)
Found out this: https://en.bitcoin.it/wiki/Mini_private_key_format
Apparently, anything can be used as private key (like SHA("haha") as private key, and then a public key can be generated out of this).
Then, if I take a document, lets say a legal document, some important server logs, bookkeeping records in a company, or anything else that needs a trusted timestamp. Then I take SHA() of the document.
Then I use the result of SHA() as private key (appending zeroes if its too short, and truncating if too long), generate a adress and publickey out of this, transfer X number of BTC (high enough to avoid any transaction fees), to this adress.
Then I use the SHA() private key to transfer the funds back.
After this, I publish the timestamped document along with a link to blockexplorer to verify it.
Now I have created a record in the blockchain, that, anyone having access to the document in question, can check the timestamp in this way:
SHA() of the document in question. Then create public key out of this private key, then make a adress out of this. Check with blockchain which are the *earliest* entry of this adress. The timestamp of that entry is the timestamp of the document in question.
Since the address is empty since we transferred the funds back, theres no funds to be able to withdraw from someone that has the document in question and can generate the private key.
How accurate is bitcoin timestamps and how can they be manipulated?
(either by the one timestamping the document, in effort to defraud someone with a future/history marked document, or some external adversary in order to gain any fraud convience, like manipulating timestamp so a important document seems to be issued after a identy theft credit block is ordered on a specific social security number in order to invalidate the document?)
Jump to: