00:46:50 Hi guys, nice to meet you :) 00:46:51 I found this: https://eprint.iacr.org/2025/1368.pdf 00:46:53 Couldn't this be used to protect old wallets against quantum attacks? 00:46:55 It only works on EdDSA-based blockchains (and Monero uses EdDSA, specifically Ed25519), and I found it very interesting. 00:46:57 Here's a crypto explainer: 00:46:59 https://x.com/kostascrypto/status/1949743266850603095 00:47:01 I would like to know more about how this can be used on Monero to protect old wallets against quantum computers, thanks for the answers! 00:48:29 Ah, and this can be implemented without hard-fork 02:26:53 Hi guys, nice to meet you :) 02:26:55 I found this: https://eprint.iacr.org/2025/1368.pdf 02:26:57 Couldn't this be used to protect old wallets against quantum attacks? 02:26:59 It only works on EdDSA-based blockchains (and Monero uses EdDSA, specifically Ed25519), and I found it very interesting. 02:27:01 Here's a best explanation: 02:27:03 https://x.com/kostascrypto/status/1949743266850603095 02:27:05 I would like to know more about how this can be used on Monero to protect old wallets against quantum computers, thanks for the answers! 02:36:12 And this can be implemented without hard-fork 10:07:23 @rucknium:monero.social should we discuss "non-outsourceable RandomX" next meeting ? 10:07:25 https://github.com/amiller/nonoutsourceable 10:07:27 https://soc1024.ece.illinois.edu/nonoutsourceable_full.pdf (Nonoutsourceable Scratch-Off Puzzles to Discourage Bitcoin Mining Coalitions) 10:20:39 idea: coinbase transaction only valid when signed by the private spend key that claims the reward. This would break centralized pools, but would't affect p2pool and solo miners -- if I understand correctly (quite radical). 10:31:59 3.14stache: We already have discussions and work towards quantum-safe wallets. Monero doesn't use EdDSA, so that work doesn't immediately apply. Ed25519 is not EdDSA. 11:24:41 You are way more suited for matrix than r/monero you have my word 11:25:04 also #monero-research-lounge:monero.social 13:38:12 The latest FCMP++/Carrot tx byte size and verification times on an AMD Ryzen 7950X3D: https://github.com/seraphis-migration/monero/issues/44#issuecomment-3150754862 13:38:21 ArticMine 13:55:24 This deserve a 3 dimensional colored gnuplot 14:38:18 12:20:39 idea: coinbase transaction only valid when signed by the private spend key that claims the reward. This would break centralized pools, but would't affect p2pool and solo miners -- if I understand correctly (quite radical). 14:38:27 this was sort of done on wownero and suggested already 15:11:02 i think in the context of the qubic thing, the wownero approach wouldn't have done anything to prevent or stop the "attack". apparently it was all managed centrally. there was no "pooling" as we know of 15:30:19 miners would still have access to keys to spend a full output they mined 16:02:45 To be specific, is the proposal to include signatures within RandomX? 16:02:47 When the signing is performed before or after PoW, I don't know it can enforce the desired effect. When signing is an integral part of creating PoW, I would think it can. 16:24:22 Block hashing blob is signed, and then PoW is solved on it+signature 16:24:50 I mean, it gets signed on each iteration 16:29:20 I really wonder, in a Monero mining world without any pools, how many "idealistic" and little miners with small hashrate would lose faith and throw in the towel after mining for months without hitting a block and thus without anything happening at all. Don't underestimate human psychology and the joy of feedback and "receiving" something daily, if only credited hashes for cents i n a pool control display. 16:38:55 this is why _insert pool here, incl p2pool_ have more adoption than solomining 16:45:27 It hasnt helped wownero either 16:45:43 <1​7lifers:matrix.org> all of them give up. coin instant ded. 16:45:48 Probably worse distribution now 16:45:53 <1​7lifers:matrix.org> not everyone has a botnet xd 16:51:53 In this world full of compromises, I am stuck thinking that mining is a market. The other side of that coin is relatively abundant rewards for those who can tolerate solo mining. Which I only mention to say I doubt coin instant ded. 16:53:26 17lifers (Ryan): Not everyone has a botnet? Maybe we should try to solve *that* problem? :) 16:53:35 Personally, I would like to know what the options are. As a thought exercise, if nothing else. 16:55:12 ofrnxmr: Are there *any* reliable reports anywhere, or people to ask who may know, what happened after the introduction of forced solo mining for Wownero? That could be very valuable? 17:03:51 the hashrate plummeted initially 17:04:13 and then? 17:04:42 took time to adjust and small miners could find a block as the network is small 17:05:00 It fell to, iirc, like 5mh, but was swinging between 10 and 50mh recently. Checking what its at now 17:06:36 16.75mh now 17:11:07 What is their block reward? 17:16:22 On reflection, and having looked at the scale of their market, perhaps current conditions should not be taken too dearly to heart. 17:19:10 btw Miller thought about this, too. Came up with a tired approach (https://soc1024.ece.illinois.edu/nonoutsourceable_full.pdf) 17:19:11 There is also Bobtail (Uncle rewards) which would address miner motivation as a side effect: 17:19:13 https://www.ndss-symposium.org/ndss-paper/bobtail-improved-blockchain-security-with-low-variance-mining/ 17:21:43 I am still not sure how much Qubic is using centralized pool ops, though. 17:27:00 spackle: What do you mean with "block reward"? There are no blocks. But net effect is that "mining" Qubic currently has about twice the profitability of Monero mining. I confirmed that personally by mining for a full day and then compare. The final puzzle piece will the the transfer of the earned Qubic coins into my wallet the day after tomorrow. I currently have no reason to doub t the transfer will happen. 17:27:29 I was asking about Wownero's reward, to see how efficiently their miners translate value to hashrate. 17:28:18 <1​7lifers:matrix.org> HELL YEA- wait that gets u in jail fuck 17:30:09 What is it currently. My understanding is that there is no tail emission. 17:36:43 flip flop: If signing once at the start of each mining iteration is not enough to thwart a malicious pool, I would still think that signing as a part of RandomX itself would address the issue. 17:36:45 Remove all separation between creating the signature and the PoW; then the details of any given mining configuration seem of little consequence. 17:37:17 Yes, this is what Wownero does. It blocks pool, but it blocks p2pool too 17:40:09 too heavy handed for my taste, right now 17:41:42 The primary issue I see with the Qubic attack is centralization on the Qubic side. Without a very high degree of centralization in Qubic the attack would not be possible. 17:41:43 What is useful work, is highly subjective requiring centralized administration for PoUW. Centralized control is actually needed for PoUW. 17:41:45 For example what is more "useful" Monero mining or blockchain surveillance on Bitcoin? 17:46:48 I'd like to learn a bit more about Qubic centralization 17:50:06 Learning about Qubic is very helpful in dealing with this attack. 17:57:02 If you ask me it would be easier to list the things about Qubic that are *not* centralized, frankly ... starting with the person(s) controlling the mined XMR being completely unknown to the broad public / known only to a very close inner circle. Little detail, totally unimportant I am sure. 22:56:17 https://xcancel.com/AilliaLink/status/1952503597054238774