Good morning Weiji,
Have not completed reading, but this jumped out to me:
> 3. Dealing with system limitation: verification keys could be very long and
> exceed the MAX_SCRIPT_ELEMENT_SIZE (520 bytes). They could be put into
> configurations and only use their hash in the scriptPubKey. The
Hi list,
I was motivated to look more carefully at the question of the security of using
signature adaptors after recently getting quite enthused about the idea of
using adaptors across N signing sessions to do a kind of multiparty swap. But
of course security analysis is also much more
Hey everyone,
I am writing this email to propose a new opcode to enable zero knowledge
based spending authorization for Bitcoin. This new opcode OP_ZKP will
enable the Bitcoin network to authorize spending based on off-chain
computation, provided acceptable proof is supplied. This will not only
Dear community,
MyCitadel [1] by Pandora Prime SA is a Bitcoin wallet that was first to support
account-based multi-sigs with time-locks and complex miniscript descriptors.
Today an updated version 1.3 is released, extending this support, allowing the
same signer to participate in multiple
Hi, Salvatore.
I find this proposal very interesting. Especially since you seemingly
can achieve such powerful capabilities by such simple opcodes.
I'm still trying to grok how this would look like on-chain (forget
about the off-chain part for now), if we were to play out such a
computation.
Big fan of this. I don't have the technical expertise to suggest much, but I
think that is a really good start for a foundation of bearer instruments.
-Andrew
Sent with [Proton Mail](https://proton.me/) secure email.
--- Original Message ---
On Friday, April 21st, 2023 at 2:46 AM, Adam
