-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, Mar 05, 2003 at 01:45:24PM +0200, Arik Schenkler wrote: > > Note: All the blinding in Lucrative is done client-side, the mint is > > agnostic if blinding is done. > > Are you sure? Can you describe, how you think it works..... (don't send me > to the links - I have read Lucre site).
I did want to send the link to the technical paper of Lucre (not Lucrative), but I won't do it because you told me not to :) The signing action that the mint does is: m=(coinrequest)^k (mod p) It doesn't matter if the coinrequest is (double)blinded or not, mint-side the signing stays the same. See chapter 2.2 and 6 of the technical Lucre paper on the Lucre site that you had read :) > > Allow me to rephrase your question into "Why anonymous digital bearer > > instruments? (Instead of non-anonymous ones)" > > So.... what you suggest is that: > If the issuer don't know the coin code - this is an anonymous digital bearer > (cash). > If the issuer knows the coin code - this is a non-anonymous digital bearer > (cash). > > Why? (I assume that you mean the coin itself with 'coin code', not the sourcecode of the system.) With Lucre the coin is (x,z). x beeing a random ID, z beeing the signature of oneway(x). If the mint knows the 'coincode' (x,z), it can track every transaction through the system. Alice funds the system with $100 and gets coin C1 from the mint. ... some time passes... Bob reissues coin C1 for C2 on the mint. The mint thus knows that Alice paid coin C1 to Bob. ... some time passes... Carol wants to transfer $100 out of the system by depositing coin C2. The mint thus knows that Bob gave C2 to Carol. Doing this kind of analysis the mint can exactly know who pays whom, how people are related etc. And it can reject C2 if at some point it decides not to like Bob. Doesn't that sound like repudiable transactions? Regards, Joris Bontje - -- PGP Key: http://pgp.dtype.org:11371/pks/lookup?op=get&search=0xF19326A9 Key fingerprint = 730D 9B3A F406 F28A 957D 6397 31E8 6D4C F193 26A9 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+Ze5WMehtTPGTJqkRAoHmAJ9qUty9SAI6n1cdTRRVcXJ4vfdJSgCeOj2q PLCl6ZRMpidq/ezuMZNATWY= =oSSe -----END PGP SIGNATURE----- --- You are currently subscribed to e-gold-list as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.
