-
kayabanerve[m]UkoeHB: TX chaining means a transaction can be signed regardless of the membership proof, and the membership proof can be performed later. This means the spend sig isn't bound to the proof. This allows anyone, with sufficient context, to create any membership proof they want, including one of 1 ..= 127, actual output, which effectively doxxes the real spend.
-
kayabanerve[m]Any multisig member has sufficient context and can harm on-chain privacy accordingly. Currently, they can only harm off-chain privacy by publishing view keys.
-
kayabanerve[m]It's a practically pointless technicality introduced by malleability in the membership proof I hadn't seen prior discussed.
-
UkoeHByes I guess that's possible
-
samhsmith[m]Could someone tell me what the current leaning on the tx_extra field is? I'm worried that if not removed the coming monero revolution would be jeopardized.
-
ofrnxmr[m]#monero:monero.social
-
ofrnxmr[m]This room (MRL) is a lab / meant for work. q&a for #monero:monero.social
-
sech1Rucknium[m] Do you keep track of p2pool payouts being used as decoys? Did their usage actually decrease?
-
Rucknium[m]sech1: I have some draft code that will be able to check that soon.
-
xmrack[m]<xmrack[m]> "ima_75b6a4c.jpeg" <- I reached out to the authors of this paper to see if we could ask questions about their constant size range proofs. They responded:
-
xmrack[m]“Thanks for your interest.
-
xmrack[m]We have some optimizations in mind for Monero and may be interested in collaborating with the Monero Research Lab.”
-
xmrack[m]They also mentioned that Luke reached out as well. I’m going to invite them to the meeting on Wednesday and see if they can make it.
-
UkoeHBthanks xmrack[m]
-
Rucknium[m]xmrack: Wow. Thanks!
-
plowsof11you're a ⭐️ xmrack
-
xmrack[m]No problem
-
xmrack[m]If anyone has yet to read the paper and would like to. Feel free to reach out to me or atomfried