Author: Joseph Poon 2016-02-26 01:48:07
Published on: 2016-02-26T01:48:07+00:00
In an email chain between Gregory Maxwell and Joseph Poon, they discuss the implementation of a new SegWit script type which would include fees as part of the signature to prevent the need for wallets to download input transactions. The proposed SIGHASH should also ensure safety from design errors and shortcuts. Without input commitments, transactions are replayable, which is a surprising fact to many developers. The fear is that if hardware wallets are forced to continue transferring input transactions to check fees or to use without-inputs, they may choose the latter and leave users exposed to replay attacks. They suggest that the new flag be named SIGHASH_REPLAY_VULNERABLE to emphasize the importance of its implementation.
Updated on: 2023-06-11T04:07:37.963614+00:00