bitcoin-dev
Lamport scheme (not signature) to economize on L1
Posted on: December 19, 2023 00:45 UTC
In the discussion of a potential security concern within a proposed scheme, it is highlighted that an attacker might exploit a vulnerability by broadcasting the first bundle, having invested considerable effort in cracking the hash that forms part of the address.
The complexity of the attack increases as the perpetrator would also need to crack a second layer of hashing to obtain both necessary hashes. This strategy could be deemed economically feasible if the unspent transaction output (UTXO) contains a sufficient number of satoshis (sats), the smallest unit of bitcoin. This scenario underlines the need for robust security measures in the design of cryptographic schemes and highlights the importance of evaluating potential risks and rewards from the perspective of an attacker.