Author: Russell O'Connor 2018-07-19 13:11:28
Published on: 2018-07-19T13:11:28+00:00
In a discussion on bitcoin-dev mailing list, Erik Aronesty raised the question of whether or not it is possible to use the birthday attack where there is only one variable to modify. He argued that in a multiparty signature, an attacker can have more than one variable to modify. In such cases, the attacker could be representing themselves as multiple participants and thus have access to multiple variables. This scenario can arise in coin-join protocols where every other participant in the multi-party signature might actually be the same single attacker.
Updated on: 2023-06-13T03:52:55.519535+00:00