[148557] in cryptography@c2.net mail archive
Re: [Cryptography] Decentralized, global, irreversible,
daemon@ATHENA.MIT.EDU (Bill Cox)
Sat Dec 21 17:01:13 2013
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <E01B8B7C-0652-47FD-B451-E23069C6D627@gmail.com>
Date: Sat, 21 Dec 2013 09:50:22 -0500
From: Bill Cox <waywardgeek@gmail.com>
Cc: "cryptography@metzdowd.com" <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
--===============5178245016566733259==
Content-Type: multipart/alternative; boundary=047d7b5d2ea4a7e43104ee0c83d6
--047d7b5d2ea4a7e43104ee0c83d6
Content-Type: text/plain; charset=ISO-8859-1
This is a fantastic idea. I've been noodling this a bit, as I'm sure many
people are doing. For example, we could use such a system to fix a problem
with authenticating public keys. We typically use "trustworthy"
authorities, like the MIT GPG key server, but if the authority has been
compromised, users might wind up using bogus public keys, or keys that have
been revoked.
With nothing but the ability to publish Merkel hash roots and URLs, we
could replace the central authority with a BitCoin-like somewhat
decentralized authority. I would simply publish a 256 bit hash root and a
URL to the on-line archive of my valid public keys (or whatever other data
I want to publish). Any key not listed there would have been revoked. It
may not be perfectly secure, but I think it would be a big improvement.
Another application I am interested in is publishing stuff in on-line
games. For example, if my server grants your character an awesome item,
and you would like your character to be able to use that on other servers,
then the other servers could check if that item is currently valid in the
public database. Security for things like virtual game items is a lot
harder than you might think. Nothing gets kids hacking servers like good
game stuff. A system strong enough for real money should be strong enough
for virtual game items.
--047d7b5d2ea4a7e43104ee0c83d6
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><div class=3D"gmail_extra"><div class=3D"gmail_quote">This=
is a fantastic idea. =A0I've been noodling this a bit, as I'm sure=
many people are doing. =A0For example, we could use such a system to fix a=
problem with authenticating public keys. =A0We typically use "trustwo=
rthy" authorities, like the MIT GPG key server, but if the authority h=
as been compromised, users might wind up using bogus public keys, or keys t=
hat have been revoked.</div>
<div class=3D"gmail_quote"><br></div><div class=3D"gmail_quote">With nothin=
g but the ability to publish Merkel hash roots and URLs, we could replace t=
he central authority with a BitCoin-like somewhat decentralized authority. =
=A0I would simply publish a 256 bit hash root and a URL to the on-line arch=
ive of my valid public keys (or whatever other data I want to publish). =A0=
Any key not listed there would have been revoked. =A0It may not be perfectl=
y secure, but I think it would be a big improvement.</div>
<div class=3D"gmail_quote"><br></div><div class=3D"gmail_quote">Another app=
lication I am interested in is publishing stuff in on-line games. =A0For ex=
ample, if my server grants your character an awesome item, and you would li=
ke your character to be able to use that on other servers, then the other s=
ervers could check if that item is currently valid in the public database. =
=A0Security for things like virtual game items is a lot harder than you mig=
ht think. =A0Nothing gets kids hacking servers like good game stuff. =A0A s=
ystem strong enough for real money should be strong enough for virtual game=
items.</div>
</div></div>
--047d7b5d2ea4a7e43104ee0c83d6--
--===============5178245016566733259==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
--===============5178245016566733259==--
