Transaction: 69535fb1e17ea0e14805a3a37ee05e4f78bd81aa11074330e3a25a80f5e6d11f

j"1LAnZuoQdcKCkpDBKQMCgziGMoPC4VQUckM½<div class="post">Hi,<br/><br/>The Hash() function in util.h forms the backbone of most of bitcoin's crypto:<br/><br/><div class="codeheader">Code:</div><div class="code">template<typename T1><br/>inline uint256 Hash(const T1 pbegin, const T1 pend)<br/>{<br/>    uint256 hash1;<br/>    SHA256((unsigned char*)&pbegin[0], (pend - pbegin) * sizeof(pbegin[0]), (unsigned char*)&hash1);<br/>    uint256 hash2;<br/>    SHA256((unsigned char*)&hash1, sizeof(hash1), (unsigned char*)&hash2);<br/>    return hash2;<br/>}<br/></div><br/>As you can see, this tries to be more secure by hashing twice. However, this actually reduces security. To break pure SHA256, an attacker needs to find a d' such that SHA256(d') == SHA256(d), for a known d. This is also sufficient to break Hash(). However the attacker can also attack the outer layer of the hash, finding a d' such that SHA256(SHA256(d')) == SHA256(SHA256(d)), even though SHA256(d') != SHA256(d). As you can see, the double hashing here makes it _easier_ to break the hash!<br/><br/>A better solution would be something like:<br/><br/><div class="codeheader">Code:</div><div class="code">template<typename T1><br/>inline vector<unsigned char> HashV(const T1 pbegin, const T1 pend)<br/>{<br/>    uint256 sharesult;<br/>    uint160 riperesult;<br/>    SHA256((unsigned char*)&pbegin[0], (pend - pbegin) * sizeof(pbegin[0]), (unsigned char *)&sharesult);<br/>    RIPEMD160((unsigned char*)&pbegin[0], (pend - pbegin) * sizeof(pbegin[0]), (unsigned char *)&riperesult);<br/><br/>    vector<unsigned char> ret;<br/>    ret.insert(ret.end(), (unsigned char *)(&sharesult), (unsigned char *)(&sharesult + 1));<br/>    ret.insert(ret.end(), (unsigned char *)(&riperesult), (unsigned char *)(&riperesult + 1));<br/>    return ret;<br/>}<br/></div><br/>The key is to concatenate the hashes, not merge them. This means the attacker has to break both hashes - even in the worst case, this cannot be less secure than a single hash.<br/><br/>Unfortunately, changing hashes would break the chain...</div> text/html

https://whatsonchain.com/tx/69535fb1e17ea0e14805a3a37ee05e4f78bd81aa11074330e3a25a80f5e6d11f

�j"1LAnZuoQdcKCkpDBKQMCgziGMoPC4VQUckM½<div class="post">Hi,<br/><br/>The Hash() function in util.h forms the backbone of most of bitcoin's crypto:<br/><br/><div class="codeheader">Code:</div><div class="code">template&lt;typename T1&gt;<br/>inline uint256 Hash(const T1 pbegin, const T1 pend)<br/>{<br/>&nbsp; &nbsp; uint256 hash1;<br/>&nbsp; &nbsp; SHA256((unsigned char*)&amp;pbegin[0], (pend - pbegin) * sizeof(pbegin[0]), (unsigned char*)&amp;hash1);<br/>&nbsp; &nbsp; uint256 hash2;<br/>&nbsp; &nbsp; SHA256((unsigned char*)&amp;hash1, sizeof(hash1), (unsigned char*)&amp;hash2);<br/>&nbsp; &nbsp; return hash2;<br/>}<br/></div><br/>As you can see, this tries to be more secure by hashing twice. However, this actually reduces security. To break pure SHA256, an attacker needs to find a d' such that SHA256(d') == SHA256(d), for a known d. This is also sufficient to break Hash(). However the attacker can also attack the outer layer of the hash, finding a d' such that SHA256(SHA256(d')) == SHA256(SHA256(d)), even though SHA256(d') != SHA256(d). As you can see, the double hashing here makes it _easier_ to break the hash!<br/><br/>A better solution would be something like:<br/><br/><div class="codeheader">Code:</div><div class="code">template&lt;typename T1&gt;<br/>inline vector&lt;unsigned char&gt; HashV(const T1 pbegin, const T1 pend)<br/>{<br/>&nbsp; &nbsp; uint256 sharesult;<br/>&nbsp; &nbsp; uint160 riperesult;<br/>&nbsp; &nbsp; SHA256((unsigned char*)&amp;pbegin[0], (pend - pbegin) * sizeof(pbegin[0]), (unsigned char *)&amp;sharesult);<br/>&nbsp; &nbsp; RIPEMD160((unsigned char*)&amp;pbegin[0], (pend - pbegin) * sizeof(pbegin[0]), (unsigned char *)&amp;riperesult);<br/><br/>&nbsp; &nbsp; vector&lt;unsigned char&gt; ret;<br/>&nbsp; &nbsp; ret.insert(ret.end(), (unsigned char *)(&amp;sharesult), (unsigned char *)(&amp;sharesult + 1));<br/>&nbsp; &nbsp; ret.insert(ret.end(), (unsigned char *)(&amp;riperesult), (unsigned char *)(&amp;riperesult + 1));<br/>&nbsp; &nbsp; return ret;<br/>}<br/></div><br/>The key is to concatenate the hashes, not merge them. This means the attacker has to break both hashes - even in the worst case, this cannot be less secure than a single hash.<br/><br/>Unfortunately, changing hashes would break the chain...</div>	text/html

0 OP_RETURN 314c416e5a756f5164634b436b7044424b514d43677a69474d6f504334565155636b 3c64697620636c6173733d22706f7374223e48692c3c62722f3e3c62722f3e546865204861736828292066756e6374696f6e20696e207574696c2e6820666f726d7320746865206261636b626f6e65206f66206d6f7374206f6620626974636f696e27732063727970746f3a3c62722f3e3c62722f3e3c64697620636c6173733d22636f6465686561646572223e436f64653a3c2f6469763e3c64697620636c6173733d22636f6465223e74656d706c617465266c743b747970656e616d652054312667743b3c62722f3e696e6c696e652075696e74323536204861736828636f6e73742054312070626567696e2c20636f6e73742054312070656e64293c62722f3e7b3c62722f3e266e6273703b20266e6273703b2075696e743235362068617368313b3c62722f3e266e6273703b20266e6273703b205348413235362828756e7369676e656420636861722a2926616d703b70626567696e5b305d2c202870656e64202d2070626567696e29202a2073697a656f662870626567696e5b305d292c2028756e7369676e656420636861722a2926616d703b6861736831293b3c62722f3e266e6273703b20266e6273703b2075696e743235362068617368323b3c62722f3e266e6273703b20266e6273703b205348413235362828756e7369676e656420636861722a2926616d703b68617368312c2073697a656f66286861736831292c2028756e7369676e656420636861722a2926616d703b6861736832293b3c62722f3e266e6273703b20266e6273703b2072657475726e2068617368323b3c62722f3e7d3c62722f3e3c2f6469763e3c62722f3e417320796f752063616e207365652c207468697320747269657320746f206265206d6f7265207365637572652062792068617368696e672074776963652e20486f77657665722c20746869732061637475616c6c7920726564756365732073656375726974792e20546f20627265616b2070757265205348413235362c20616e2061747461636b6572206e6565647320746f2066696e642061206427207375636820746861742053484132353628642729203d3d205348413235362864292c20666f722061206b6e6f776e20642e205468697320697320616c736f2073756666696369656e7420746f20627265616b204861736828292e20486f7765766572207468652061747461636b65722063616e20616c736f2061747461636b20746865206f75746572206c61796572206f662074686520686173682c2066696e64696e6720612064272073756368207468617420534841323536285348413235362864272929203d3d2053484132353628534841323536286429292c206576656e2074686f756768205348413235362864272920213d205348413235362864292e20417320796f752063616e207365652c2074686520646f75626c652068617368696e672068657265206d616b6573206974205f6561736965725f20746f20627265616b207468652068617368213c62722f3e3c62722f3e412062657474657220736f6c7574696f6e20776f756c6420626520736f6d657468696e67206c696b653a3c62722f3e3c62722f3e3c64697620636c6173733d22636f6465686561646572223e436f64653a3c2f6469763e3c64697620636c6173733d22636f6465223e74656d706c617465266c743b747970656e616d652054312667743b3c62722f3e696e6c696e6520766563746f72266c743b756e7369676e656420636861722667743b20486173685628636f6e73742054312070626567696e2c20636f6e73742054312070656e64293c62722f3e7b3c62722f3e266e6273703b20266e6273703b2075696e7432353620736861726573756c743b3c62722f3e266e6273703b20266e6273703b2075696e743136302072697065726573756c743b3c62722f3e266e6273703b20266e6273703b205348413235362828756e7369676e656420636861722a2926616d703b70626567696e5b305d2c202870656e64202d2070626567696e29202a2073697a656f662870626567696e5b305d292c2028756e7369676e65642063686172202a2926616d703b736861726573756c74293b3c62722f3e266e6273703b20266e6273703b20524950454d443136302828756e7369676e656420636861722a2926616d703b70626567696e5b305d2c202870656e64202d2070626567696e29202a2073697a656f662870626567696e5b305d292c2028756e7369676e65642063686172202a2926616d703b72697065726573756c74293b3c62722f3e3c62722f3e266e6273703b20266e6273703b20766563746f72266c743b756e7369676e656420636861722667743b207265743b3c62722f3e266e6273703b20266e6273703b207265742e696e73657274287265742e656e6428292c2028756e7369676e65642063686172202a292826616d703b736861726573756c74292c2028756e7369676e65642063686172202a292826616d703b736861726573756c74202b203129293b3c62722f3e266e6273703b20266e6273703b207265742e696e73657274287265742e656e6428292c2028756e7369676e65642063686172202a292826616d703b72697065726573756c74292c2028756e7369676e65642063686172202a292826616d703b72697065726573756c74202b203129293b3c62722f3e266e6273703b20266e6273703b2072657475726e207265743b3c62722f3e7d3c62722f3e3c2f6469763e3c62722f3e546865206b657920697320746f20636f6e636174656e61746520746865206861736865732c206e6f74206d65726765207468656d2e2054686973206d65616e73207468652061747461636b65722068617320746f20627265616b20626f746820686173686573202d206576656e20696e2074686520776f72737420636173652c20746869732063616e6e6f74206265206c65737320736563757265207468616e20612073696e676c6520686173682e3c62722f3e3c62722f3e556e666f7274756e6174656c792c206368616e67696e672068617368657320776f756c6420627265616b2074686520636861696e2e2e2e3c2f6469763e 746578742f68746d6c

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

Settings

Transaction

1 Input

2 Outputs