08:32:46 <m-relay> <n​ineteen_century_man:matrix.org> I'm not a big expert in curves either. Leaving this question to judgement of more experienced people. I still perceive a difference between triviality of being proved secure and having a practical record of being secure for a long time... So, it's good that your're going to check it with various protocols.
15:01:35 <m-relay> <r​ucknium:monero.social> MRL meeting in this room in two hours.
17:00:29 <m-relay> <r​ucknium:monero.social> Meeting time!
17:00:47 <m-relay> <r​ucknium:monero.social> 1) Greetings
17:00:56 <m-relay> <v​tnerd:monero.social> Hi
17:01:00 <m-relay> <j​effro256:monero.social> howdy
17:01:04 <rbrunner> Hello
17:01:11 <m-relay> <o​ne-horse-wagon:monero.social> Hello.
17:01:18 <m-relay> <0​xfffc:monero.social> Hi everyone
17:01:20 <m-relay> <j​berman:monero.social> *waves*
17:01:25 <m-relay> <r​ucknium:monero.social> Meeting issue: https://github.com/monero-project/meta/issues/1048
17:02:12 <m-relay> <k​ayabanerve:matrix.org> 👋
17:02:50 <m-relay> <r​ucknium:monero.social> 2) Updates. What is everyone working on?
17:03:52 <m-relay> <r​ucknium:monero.social> me: Comments on some tx broadcast PRs. Reading papers on gossip protocols and their privacy, bandwidth, and speed.
17:04:17 <m-relay> <v​tnerd:monero.social> I'm working (right now) on jeffro256 pr for blockchain syncing - hopefully we can get this shipped today. Also doing LWS frontend stuff atm
17:04:30 <m-relay> <0​xfffc:monero.social> Reading and familiarizing myself with my broadcast mechanisms. I have started implementing this: https://github.com/monero-project/monero/issues/9334#issue-2306257939
17:05:44 <m-relay> <0​xfffc:monero.social> Reading and familiarizing myself with broadcast mechanisms. I have started implementing this: https://github.com/monero-project/monero/issues/9334#issue-2306257939
17:05:55 <m-relay> <j​effro256:monero.social> Me: writing the carrot doc. Draft is here https://github.com/jeffro256/carrot/blob/master/release/carrot_0.1.md
17:06:07 <m-relay> <0​xfffc:monero.social> Reading the erlay paper and familiarizing myself with broadcast mechanisms. I have started implementing this: https://github.com/monero-project/monero/issues/9334#issue-2306257939
17:06:23 <m-relay> <k​ayabanerve:monero.social> I've been preparing crates for auditing, once our current reviews wraps up.
17:06:41 <m-relay> <r​ucknium:monero.social> 0xfffc: Looks like we are looking at a similar area
17:07:15 <m-relay> <j​berman:monero.social> me: working on adding fcmp++'s to the cryptonote::transaction class
17:07:43 <m-relay> <r​ucknium:monero.social> 3) Stress testing monerod https://github.com/monero-project/monero/issues/9348
17:08:58 <m-relay> <s​gp_:monero.social> Hello
17:09:15 <m-relay> <r​ucknium:monero.social> spackle created a new release version for stressnet. It pulled in everything that is in the new monero master plus the invalid blocks fix and jeffro256 's PR to reduce tx writes from 2 to 1.
17:09:31 <m-relay> <r​ucknium:monero.social> Things seem to be running smoothly with the new release so far
17:10:48 <m-relay> <r​ucknium:monero.social> Any more comments on stressnet?
17:11:47 <m-relay> <o​ne-horse-wagon:monero.social> Rucknium: Is there any projected date as to when stressnet will end?
17:12:10 <m-relay> <r​ucknium:monero.social> That's still being discussed.
17:12:52 <m-relay> <o​ne-horse-wagon:monero.social> My feelings are to keep it going until every stress idea has been exhausted.
17:13:06 <m-relay> <0​xfffc:monero.social> Around August 8,9 spackle will leave stressnet, and me Rucknium will maintain the repo. We expect to continue stress-net but with much less nodes.
17:13:31 <m-relay> <0​xfffc:monero.social> ( spackle did a great job so far. So hats off to his work )
17:14:13 <m-relay> <r​ucknium:monero.social> Yes that's the loose plan now
17:14:57 <m-relay> <r​ucknium:monero.social> 4) Potential measures against a black marble attack. https://github.com/monero-project/research-lab/issues/119
17:15:33 <m-relay> <r​ucknium:monero.social> A group claimed responsibility for the suspected spam transactions earlier this year: https://antidark.net/board/viewtopic.php?t=10
17:16:21 <m-relay> <r​ucknium:monero.social> They said that their objective was not to launch an anti-privacy black marble attack, but to congest the txpool to try to exploit some mechanisms in some services' withdrawal logic.
17:16:36 <m-relay> <r​ucknium:monero.social> Anyone want to share opinions about this?
17:18:38 <m-relay> <k​ayabanerve:matrix.org> When I first read it, there was no evidence of their claims, and it didn't completely make sense. I wouldn't care too much about it. I'm unsure if they've added more detail though to justify their story.
17:19:06 <m-relay> <j​effro256:monero.social> Agreed: As of yet it is unverified. Might be a mistake to assume that a black marble attack did not occur because some rando on a forum said so
17:20:12 <m-relay> <r​ucknium:monero.social> I basically concur. But they did say something that a person who prepared spam txs would know: wallet2 does not perform well when 200,000 accounts are created.
17:20:14 <m-relay> <j​effro256:monero.social> This looks to be a followup (maybe): https://antidark.net/board/viewtopic.php?t=15
17:20:20 <m-relay> <b​asses:matrix.org> There are some discussion from antidark members https://monero.town/post/3785880
17:20:54 <m-relay> <b​asses:matrix.org> yes
17:21:07 <m-relay> <r​ucknium:monero.social> In the followup they answer a comment about why won't they release the spam wallet(s) view keys. They said that they would not release it.
17:21:45 <m-relay> <r​ucknium:monero.social> It would be bad for user privacy if the suspected spammer actually released the spam wallet(s) view key(s).
17:22:57 <m-relay> <r​ucknium:monero.social> Releasing the view keys would prove that they actually were responsible for the spam (or at least that the entity that was responsible gave them the view keys.
17:24:37 <rbrunner> I guess it doesn't change much for us overall whether it really was this group or not.
17:27:17 <m-relay> <k​ayabanerve:matrix.org> I'd rather such a theoretical view key not float around.
17:28:17 <m-relay> <r​ucknium:monero.social> 5) Research Pre-Seraphis Full-Chain Membership Proofs. https://www.getmonero.org/2024/04/27/fcmps.html
17:30:03 <m-relay> <k​ayabanerve:matrix.org> I don't have much more to say than my initial comment. Veridise is moving forward with the R1CS gadget for evaluating this week, and there's preliminary opinions on the GBP proof review.
17:31:05 <m-relay> <r​ucknium:monero.social> I saw this paper: https://distributedlab.com/whitepaper/Bulletproofs-Construction-and-Examples.pdf  "This document introduces some clarification and corrections to Bulletproofs++ [Eag+23] paper."
17:31:49 <m-relay> <r​ucknium:monero.social> The paper probably isn't very relevant for Monero right now since BP++ is not going forward in the Monero protocol AFAIK.
17:32:46 <m-relay> <k​ayabanerve:matrix.org> I saw the note it existed. I wouldn't change the perception of BP++, as Aaron reviewed it, at this time.
17:33:30 <m-relay> <k​ayabanerve:matrix.org> If this leads to a new revision of BP++, then that may be eligible for rereview, but...
17:36:57 <m-relay> <r​ucknium:monero.social> Any more topics anyone wants to discuss?
17:38:41 <m-relay> <j​effro256:monero.social> Who would be some good auditors for the new addressing protocol ?
17:39:03 <m-relay> <j​effro256:monero.social> Whether that be Jamtis or Carrot or something else
17:39:36 <m-relay> <a​aron:cypherstack.com> FYI the Cypher Stack review of the Veridise report should be released to kayabanerve @kayabanerve:matrix.org today as an initial draft for comment
17:39:50 <m-relay> <a​aron:cypherstack.com> Very curious on the GBP opinion :D
17:40:44 <m-relay> <k​ayabanerve:monero.social> :D
17:41:43 <m-relay> <r​ucknium:monero.social> That reminds me that Cypher Stack reviewed a protocol that seemed to add return addresses to Monero-like txs, which has been on getmonero.org's roadmap for a while: https://github.com/cypherstack/salvium-review/releases/download/final/final.pdf
17:42:09 <m-relay> <a​aron:cypherstack.com> We did that review, yes
17:42:33 <m-relay> <k​ayabanerve:monero.social> jeffro256: You'd need to define the desired properties.
17:43:08 <m-relay> <k​ayabanerve:monero.social> Presumably, a variety of indistinguishability properties.
17:46:48 <m-relay> <j​effro256:monero.social> I have a list of informal security and indistinguishability properties that I plan to add later. Also working on writing a condensed abstraction of FCMP++ requirements for Carrot (i.e. O = x G = y T, C = z G + a H, 0 <= a < 2**64, L = x Hp(O), sender needs knowledge of x, y, z, a, outgoing view wallet needs knowledge of x, etc)
17:46:53 <m-relay> <j​effro256:monero.social> Is this the right path?
17:47:07 <m-relay> <j​effro256:monero.social> *O = x G + y T
17:53:57 <m-relay> <r​ucknium:monero.social> kayabanerve: What do you think ^ ?
17:55:07 <rbrunner> Seems to me if Cypher Stack reviews something like this Salvium, they are in a good spot to review our "stuff" as well. Looks pretty ambitious, by the way, that Salvium project.
17:57:12 <m-relay> <a​aron:cypherstack.com> I can't speak for Cypher Stack, but I would certainly advocate that the company put in a bid for such a review (for the addressing, I mean)
17:59:22 <m-relay> <k​ayabanerve:matrix.org> I'd have to see the document to properly comment, sorry.
18:00:40 <m-relay> <j​effro256:monero.social> Aaron Feickert: thanks !
18:00:56 <m-relay> <j​effro256:monero.social> kayabanerve: fair enough, will try to do later today
18:01:28 <m-relay> <r​ucknium:monero.social> I think we can end the meeting here. Thanks all.
18:03:45 <m-relay> <j​effro256:monero.social> Thanks everyone !