Author

Topic: Vulnerabilities in ECDSA (Read 1208 times)

hero member
Activity: 642
Merit: 500
Evolution is the only way to survive
April 25, 2014, 07:06:07 PM
#8
Use unique btc address , problem solved  Grin
legendary
Activity: 4466
Merit: 3391
April 25, 2014, 06:38:18 PM
#7
Here may be the explanation for some of these cases of "My Bitcoins have dissappeared from my XXX-Wallet" for which no explanation has been found so far.
And maybe some devs want to analyse the claims made in this paper before it hits the media as I can already imagine the headlines it will create.
Quote
ECDSA, like DSA, has the property that poor randomness used
during signature generation can compromise the long-term signing key. We found several cases
of poor signature randomness used in Bitcoin, which can allow (and has allowed) attackers to
steal money from these clients.
From:
http://eprint.iacr.org/2013/734.pdf
Joe

The flaw discussed in the paper was found and fixed many months ago. It was a flaw in the Android operating system and not in ECDSA, the Bitcoin protocol or any Bitcoin software.
newbie
Activity: 53
Merit: 0
April 25, 2014, 02:21:33 PM
#6
You will read that even with the stupidest random number generator, address reuse was required due to the dual-layer protection of both ECDSA and RIPEMD160 and SHA256 hashes. It appears you are here to troll rather than to learn though.
Hashing of public key can't protect you, if somebody accidentally generates one of your priv/pub keypairs due to poor randomness.
Avoiding address reuse protects you against potential vulnerabilities in ECDSA, but it can't protect you if somebody just finds one of your privkeys.
legendary
Activity: 1512
Merit: 1036
April 25, 2014, 04:48:09 AM
#5
You will read that even with the stupidest random number generator, address reuse was required due to the dual-layer protection of both ECDSA and RIPEMD160 and SHA256 hashes. It appears you are here to troll rather than to learn though.
newbie
Activity: 53
Merit: 0
April 25, 2014, 04:16:38 AM
#4
If you are really worried about it, keep the majority of your coins in address(es) that has never been used before to send coins.
That doesn't help if your priv key was generated with poor random numbers generator. The vulnerability isn't in ECDSA, it's in some random number generators.
hero member
Activity: 528
Merit: 527
April 25, 2014, 04:11:18 AM
#3
If you are really worried about it, keep the majority of your coins in address(es) that has never been used before to send coins.
legendary
Activity: 1512
Merit: 1036
April 25, 2014, 03:59:46 AM
#2
Not news. Bitcoins have been stolen, but from completely broken random generators, and by people making their own private key with stupid algorithms.

Here's a thread with lots of conversation for you to read:
https://bitcointalksearch.org/topic/this-message-was-too-old-and-has-been-purged-419259
sr. member
Activity: 359
Merit: 250
April 25, 2014, 03:52:14 AM
#1
Here may be the explanation for some of these cases of "My Bitcoins have dissappeared from my XXX-Wallet" for which no explanation has been found so far.

And maybe some devs want to analyse the claims made in this paper before it hits the media as I can already imagine the headlines it will create.

Quote
ECDSA, like DSA, has the property that poor randomness used
during signature generation can compromise the long-term signing key. We found several cases
of poor signature randomness used in Bitcoin, which can allow (and has allowed) attackers to
steal money from these clients.

From:
http://eprint.iacr.org/2013/734.pdf

Joe




Jump to: