-
cjd
Hey folks, is there any ongoing effort on HTLC / lightning network support ?
-
cjd
(thanks moneromooo for pointing me here)
-
sarang
HTLC seems unlikely, given how transaction authorization is done
-
sarang
There is ongoing work relating to DL-based constructions
-
cjd
The DL "contractless contracts" stuff ?
-
sarang
Transaction protocols that enable DL-based authorization with other functionality like non-interactive refunds (the sort of plumbing that would be useful for swaps, channels, networks, etc.)
-
sarang
It's quite tricky to get right without consequence
-
cjd
Yeah and if it's a requirement that people can "appear to spend" these transactions as per the CryptoNote protocol, it's an uphill battle
-
sarang
DLSAG was a very promising approach toward this, but has tracing issues due to the way it computes linking tags
-
sarang
The non-linearity of Monero linking tags is precisely what prevents this now
-
sarang
but DLSAG used linear tags for a necessary Diffie-Hellman construction
-
cjd
Looking at the paper now
-
flipchan
Hey, any project looking for a python/rust dev?
-
sarang
Hello all
-
sarang
Quiet day!
-
sarang
I'm finishing up an update (with moneromooo) to wallet message signing
-
sarang
Will push the commit once testing is done
-
h4sh3d[m]
flipchan: what about implementing ´Discrete logarithm equality across groups’ from Sarang in Rust? I wanted to give it a try in the next weeks, and I can collaborate if you want
-
h4sh3d[m]
sarang: do you think it’s valuable?
-
sarang
I suppose it depends on what future protocols might use a Rust library, whether in Monero or not
-
sarang
-
sarang
(it's for research only; don't use in production)
-
sarang
using ed25519 and ed448 as the example curves
-
derpy_bridge
<[discord] DynaChip#0559>: Cool
-
sarang
But it certainly sounds like a fun project anyway :D
-
derpy_bridge
<[discord] DynaChip#0559>: Got anymore cool GitHubs?
-
sarang
For what?
-
sarang
GitHub is full of code!
-
derpy_bridge
<[discord] Kayla#5718>: @Cool guy [irc]
-
derpy_bridge
<[discord] Kayla#5718>: ```we might not have any rules in the discord but be mindful that those other communities have their own guidelines```
-
derpy_bridge
<[discord] DynaChip#0559>: Ok
-
moneromooo
Don't spam in this channel please.
-
flipchan
h4ash3d[m]: yeah maybe
-
sarang
h4sh3d[m]: did you have particular curve implementations in mind for testing?
-
flipchan
github server error
-
flipchan
github seems more and more unstable these days
-
h4sh3d[m]
Secp256k1 and curve25519 would be useful for swaps I think =p
-
sarang
Most definitely! I only chose ed448 because it was easy to modify the ed25519 library :)
-
h4sh3d[m]
Sure
-
flipchan
now github is up
-
defterade_
sarang: just out of curiosity, was there an incident that lead you to add the "do not use in production" warning to repo links or just common courtesy?
-
sarang
Research code is often proof of concept, and not written with production security in mind
-
sarang
And is not formally reviewed etc.
-
sarang
I recall when the Zerocoin flaw was identified, and the repo had been marked as research only but was used in production for different projects anyway
-
sarang
Best to avoid this
-
sarang
A new preprint looking at traceability in Monero and Zcash:
eprint.iacr.org/2020/593
-
sarang
The usual caveat, of course, that preprints undergo _no_ formal review before posting, so there is no guarantee that any of this preprint's conclusions are correct
-
sarang
It would be interesting to see specific information on transactions they looked into, to see how well the default software is performing
-
sarang
(I'll say it once again, because this seems to be often misunderstood: anyone can post a preprint... there is no formal review for preprints!)
-
maybefbi
sarang, UkoeHB_: if we combine DLSAG scheme and say CLSAG scheme, there will two sets of aggregate public keys correct? One for the left side of the 2-tuple and one for the right side of the 2-tuple?
-
UkoeHB_
not sure, I haven't looked at DLSAG
-
maybefbi
ok
-
dEBRUYNE
sarang: Any preliminary observations from the paper?
-
dEBRUYNE
Or did you not skim it yet?
-
sarang
maybefbi: only one of the two keys in each dual-key output pair is selected for inclusion
-
sarang
dEBRUYNE: no, not yet
-
sarang
I only skimmed it _super_ briefly, and will read it more carefully tomorrow
-
sarang
Posting it here in case others wish to read it too
-
maybefbi
sarang: thanks