Author: Mike Hearn 2015-02-01 13:48:15
Published on: 2015-02-01T13:48:15+00:00
In the Bitcoin context, it is not possible to verify that the transaction signed by the wallet matches the request before it is sent to the blockchain. The security of the wallet must be ensured as BIP70 is based on the assumption of a secure signing core that cannot be compromised. Devices like TREZOR and 2-factor pairings of desktops and mobiles are examples of secure wallets. If an attacker can make the wallet sign a different transaction than what was expected, then the private keys can also be stolen and used directly. Therefore, BIP70 is irrelevant if the wallet is not secure.
Updated on: 2023-06-09T16:12:09.893471+00:00