Subscribe to our weekly newsletter

Get the latest updates on the community, upcoming topics, and new discussions in your inbox every week.

Summary

Niklas Goegge reported that Bitcoin Core has initiated a new vulnerability disclosure policy to enhance security, with planned disclosures of fixed vulnerabilities starting with version v23.0 and continuing through older versions. This move underscores Bitcoin Core's commitment to transparency and the systematic improvement of security measures (source). Sivaram Dhakshinamoorthy introduced a BIP draft for the FROST threshold signing protocol, excluding key generation but providing a Python implementation and test vectors for review. Feedback is encouraged to refine the proposal, which aims to contribute to the security and functionality of cryptographic protocols in Bitcoin (source).

Peter Todd identified a novel vulnerability in Bitcoin transactions, specifically targeting the CPFP mechanism, which could allow attackers to perform replacement cycling attacks. Proposed countermeasures include the implementation of a rebroadcasting module in Bitcoin Core to mitigate the effects of such attacks while considering privacy implications (source). Luke Dashjr announced the release of Bitcoin Knots version 27.1.knots20240801, featuring new enhancements and performance improvements aimed at bolstering the user experience and software development. The release notes and issue reporting mechanisms are detailed, inviting feedback and reports on any encountered issues (source).

Lastly, the Bitcoin community continues to explore innovative solutions to enhance functionality and security, including proposals for improving lightning network transactions with Bolt 12 and advancements in Bitcoin Script verification through Elftrace. These discussions and updates reflect ongoing efforts to address technical challenges and elevate the Bitcoin ecosystem's overall robustness and user experience ([Bolt 12 source](https://delvingbitcoin.org/t/bolt-12-tr

New posts

August 4, 2024 03:16 UTC

bitcoin-dev

Bitcoin Knots 27.1.knots20240801 released
  • Bitcoin Knots released version 27.1.knots20240801, enhancing user experience and software performance.
  • Users can report issues via GitHub and subscribe to updates for the latest announcements.
  • Detailed release notes on GitHub offer insights into the new features and fixes.

August 2, 2024 12:08 UTC

delvingbitcoin

Stats on compact block reconstructions

1 reply

  • The study analyzes Bitcoin network's block reconstruction efficiency with `debug=cmpctblock` logging.
  • Adjustments in node configurations, like increasing maximum connections, impacted block reconstruction outcomes.
  • Research suggests potential benefits of adopting `mempoolfullrbf=1` to improve block reconstruction efficiency.

August 2, 2024 08:45 UTC

bitcoin-dev

HODL Tax Proposal
  • Testnet3 is recommended for initial updates due to its similarity to the mainnet.
  • High demurrage fees might discourage significant stakeholders, affecting network participation.
  • Refunding demurrage fees to bypass rules could overload the network and negate benefits.

August 2, 2024 07:54 UTC

bitcoin-dev

Keyless Anchors Are Vulnerable To Replacement Cycling Attacks

1 reply

  • A new Bitcoin transaction vulnerability using CPFP allows low-cost disruptive replacement cycling attacks.
  • The attack exploits low-fee transactions, enabling attackers to render targeted transactions unmineable.
  • To mitigate these attacks, an optional rebroadcasting module in Bitcoin Core has been proposed.

July 31, 2024 17:01 UTC

bitcoin-dev

Public disclosure of 2 vulnerabilities affecting Bitcoin Core < v22.0

2 replies

  • Bitcoin Core has discovered bugs in versions before v22.0 and is improving security.
  • A new vulnerability disclosure policy and advisories are available on their website.
  • Disclosures for fixes in versions v23.0 and v24.0 will be released starting August.

July 31, 2024 12:54 UTC

delvingbitcoin

Optimistic ZK verification using MATT
  • Elftrace updated to enhance Bitcoin Scripts and user experience, facilitating RISC-V verification.
  • Now supports standard input/output and Winterfell STARK library for Zero-Knowledge proofs within Bitcoin Script.
  • A comprehensive guide with example code for using Elftrace's new features is available online.

July 31, 2024 11:23 UTC

bitcoin-dev

BIP Draft: "FROST Signing"

1 reply

  • The BIP draft introduces the FROST protocol, including design, usage, and security details.
  • Feedback on the draft, with a Python implementation, is sought via a provided GitHub link.
  • It omits key generation for FROST, recommending ChillDKG BIP and RFC 9792 instead.

July 30, 2024 15:12 UTC

delvingbitcoin

Bolt 12 Trusted Contacts
  • Bolt 12 facilitates easier transactions by integrating offers with metadata for contacts management.
  • It proposes a standard for selective identity sharing using `contact_key` for trusted interactions.
  • Feedback is sought to refine methods for identity revelation in payments, enhancing privacy and security.

Ongoing Discussions

August 1, 2024 21:59 UTC

bitcoin-dev

Re: HODL Tax Proposal

8 replies

  • José Edil Guimarães de Medeiros cannot fulfill the request.
  • The communication is sourced from a specific email.
  • The email is accessible via a provided URL link.

July 31, 2024 18:00 UTC

bitcoin-dev

Mining pools, stratumv2 and oblivious shares

2 replies

  • The discussion highlights the importance of a trusted coordinator in decentralized mining pools.
  • It proposes a three-proof-of-work system to prevent block withholding and ensure fair reward distribution.
  • The email also explores the potential of zero-knowledge proofs for improving template validation, despite current technological barriers.

July 30, 2024 04:57 UTC

bitcoin-dev

A "Free" Relay Attack Taking Advantage of The Lack of Full-RBF In Core

39 replies

  • TRUC's comparison with RBFR highlights easier impact assessment on mining and relay behavior.
  • Responsibilities for Bitcoin Core developers focus on safety, yet downstream project security lies with their developers.
  • Exploring "loophole pinning" reveals attacks' complexity, suggesting ongoing efforts for robust defense mechanisms against such strategies.

July 30, 2024 02:07 UTC

delvingbitcoin

Stable Channels - peer-to-peer dollar balances on Lightning

8 replies

  • Stable Channels use bitcoin in Lightning Channels, not aiming to replace bitcoin's value.
  • The system allows for self-custody and operates without a central bank, reducing systemic risk.
  • Users can manage bitcoin during downturns, potentially benefiting from buying dips and maintaining flexibility.

July 29, 2024 18:46 UTC

delvingbitcoin

Who will run the CoinJoin coordinators?

10 replies

  • Trezor Suite now supports CoinJoin with alternative coordinators.
  • A guide for setup is available on kravens.nl, explaining the debug argument.
  • The update allows users more flexibility in selecting CoinJoin coordinators.

July 29, 2024 11:05 UTC

delvingbitcoin

V3 and some possible futures

5 replies

  • The v3 user experience limits confirmation speed choices, affecting offline wallets.
  • This constraint challenges users needing flexibility, aligning more with Lightning Network applications.
  • Skepticism about v3's appeal arises, comparing it to alternatives like TRUC or upcoming v4.