|
|
|
|
|
|
by Scaevolus
2565 days ago
|
|
|
You can derive a new public key from someone's ECC public key, and they can derive the corresponding private key by applying the same transformation. It's somewhat magical! I wouldn't be surprised if Apple is using a scheme based on this instead of ElGamal, they already use ECC extensively. https://github.com/bitcoin/bips/blob/master/bip-0032.mediawi... |
|
|
It is also easy to solve this simply using ECC and ECDH. I just wrote a scheme on the board in the office. It might have slightly larger data payload than the deterministic wallets approach.