Author: Bastien TEINTURIER 2020-11-19 13:57:11
Published on: 2020-11-19T13:57:11+00:00
In a conversation between Rusty Russell and Bastien, Rusty asks if additive tweaks can be used instead of multiplicative ones in the lightning network. He suggests that additive tweaks are faster and supported by x-only secp API. Bastien agrees and proposes to replace `B(i) = HMAC256("blinded_node_id", ss(i)) * P(i)` with `B(i)=HMAC256("blinded_node_id", ss(i)) * G + P(i)`. However, he also mentions that he is unsure about the security of the tweak and whether it is as secure as the multiplicative version. Rusty also questions the use of x-only pubkeys, which are generally shorter and easier to use. Bastien agrees that they can be used if it's trivial, but it's not worth any additional effort if it's not. Overall, the conversation revolves around finding ways to improve the efficiency and security of the lightning network.
Updated on: 2023-06-03T02:58:07.810019+00:00