[CyberDildonics]

Breaking the private keys to the concentrated wallet(s) targeted not the entire system

This doesn't make sense. I was talking about what it takes to brute force a single key.

but eventually over time compute does break encryption and keys made with those algos are no longer "secure".

This is not true. You are misunderstanding the orders of magnitude differences in modern encryption from some weak schemes of the past.

Are you suggesting as processing/compute increases, encryption doesn't get weaker from previous algorithms?

I don't think you understand what it means to need an entire universe of energy with the smallest unit of energy for computation and still have an astronomically small chance or brute forcing the keys.

The fact that some of the first algorithms used for unrelated purposes were weak has nothing to do with what you are claiming. Your logic is basically "some encryption from 40 years ago was weak, therefore all encryption is weak."

Encryption is a balance of compute/processing for encryption and decryption, too intense and the system is computationally too heavy.

The encryption and decryption speed is not a factor here.

So with that, over time all encryption will be able to be broken at some point following, as history has show so far.

This is completely wrong. You are extrapolating off of something isn't a pattern in the first place. No one thought triple DES would last forever. This is like someone saying 'we moved on from 32 bits of RAM addresses so we will eventually move off of 64 bit and 128 bit to 256 bits'. Orders of magnitude don't work that way. 32 bits gives you 4 gigabytes, 64 bits gives you 18 exabytes and 128 bits is enough to give an address to every bit of data ever created.

Your comment seems more like someone reading headlines and news articles instead of actually understanding what they are claiming.

[drawkbox]

> I was talking about what it takes to brute force a single key.

If you have some insight to the tool that created the key you could, lots of systems have doors by design, typically by creators or regulation for export.

My main point though was that these keys will probably be found in the future. If they aren't broken then actually found, and that much concentration is too much. It creates a rug pull for an entire currency ecosystem. Other crypto coins are even worse in this aspect.

> You are misunderstanding the orders of magnitude differences in modern encryption from some weak schemes of the past.

You are basing this on modern tech. Making the same mistakes of people of the past. Right now I said AES-256 would take longer than the universe in existence, I get the orders of magnitude. I just think people base these ideas off of the present, not the future.

> "some encryption from 40 years ago was weak, therefore all encryption is weak."

Do you believe in 40 years we won't have advancements that may make this statement look silly? Right now they are secure, we don't know what is to come.

That is besides the point though, the keys are dangerous as they are concentration of leverage/power of not just a stock, but a currency...

> You are extrapolating off of something isn't a pattern in the first place. No one thought triple DES would last forever.

You are making the same mistakes of time, you don't know what is to come and the past has shown previous algorithms actually last LESS time than they expected. It does play into it.

Let's simplify this because you are lost in the weeds and resorting to ad hominems.

Do you think it is a good idea that a currency has keys out there, that can be found either directly or with time, that have heavy concentration?

Is concentrated unknown wealth of a currency, the root of all financial systems and power, a good idea?

[CyberDildonics]

My main point though was that these keys will probably be found in the future.

That's not at all what you said at first. You didn't say the keys would probably be found, you said with quantum computing someone will break the encryption, which is based on nothing. Here it is verbatim:

Eventually with quantum computing or other advancements, someone will break the encryption and potentially swipe the part of Satoshi's coin.

You are basing this on modern tech. Making the same mistakes of people of the past.

You aren't getting this. This isn't a "what if computers are faster in the future" scenario. You aren't going to brute force a search space of this size with all the energy from all the stars in the universe.

You are making the same mistakes of time, you don't know what is to come and the past has shown previous algorithms actually last LESS time than they expected. It does play into it.

No, I actually understand the search space of large key lengths instead of hallucinating a fantasy future. Even when DES was created people debated it being too weak.

You can go back a generation and read articles about cars so big they have their own wood shop, future cities full of flying cars and robot servants. That stuff was all more practical than what you are talking about.

This would not be a conversation if you understood what you are saying.

Let's simplify this because you are lost in the weeds and resorting to ad hominems.

Pointing out that you have huge misunderstandings is not 'ad hominem'.

Do you think it is a good idea that a currency has keys out there, that can be found either directly or with time, that have heavy concentration?

Is concentrated unknown wealth of a currency, the root of all financial systems and power, a good idea?

This has nothing to do with what I'm trying to tell you.

You originally said that "quantum computers will be able to break satoshi's keys" and I'm trying to explain to you why that is naive and uninformed.

[Veserv]

If you assume powerful quantum computers then Bitcoin is dead, that is a straightforward result.

The digital signatures that prevent others from spending your bitcoins are based on elliptic curve cryptography (ECC). The security of elliptic curve cryptography is based on the hardness of the discrete logarithm problem (DLP). A sufficiently powerful quantum computer can use a variant of Shor’s algorithm to solve the DLP in runtime polynomial in the key size (my research indicates O(n^3) in key size more or less), giving you the private key behind a bitcoin wallet in a very tractable amount of time.

Though everything else they are saying about backdoors or design issues are wild speculation, a powerful quantum computer absolutely would allow you to spend anybody’s, including Satoshi Nakamoto’s, bitcoins.

[greyface-]

Single-use P2PKH addresses are quantum safe, since the public key is not revealed publicly until spending, just its hash. QC breaks ECDSA but not SHA256.

[tromp]

Even those are at risk if the key can be cracked in a matter of minutes, since it takes 10 mins on average from publishing your spending transaction to it getting mined, and the attacker can doublespend it with a much larger fee.

[greyface-]

This is true. Leaving coins at rest is safe, but moving them before the threat is understood might be risky. Widespread opt-in RBF enforcement could mitigate the risk to some degree, if miners cooperate and shun full RBF after a quantum attack. In the worst case, one might need to submit their "exit" transactions directly to a non-evil miner in order to avoid revealing the pubkey before confirmation. Ideally, this will all be figured out ahead of time, and most non-"lost" coins will be moved over to post-quantum UTXOs before the risk is serious.

[Veserv]

Having just read up on it, sure. But that is a very restricted use case as you could only use your wallet for a single send transaction and that has already happened for the specific case of Satoshi's wallet.

I believe you could scaffold up a system even with a 1-send limit that transparently functions the same as what currently exists since you can issue transactions to multiple parties within a single send, but that largely kills Bitcoin as normally used. All but the most sophisticated users would be required to hand over control of their wallet to actually manage the massive proliferation of addresses needed to act as if you have more than a 1-send limit. But sure, you are technically correct that there exists a very narrow use case which you can probably hijack aggressively enough to salvage the system if you tried hard enough.

[greyface-]

You're right that Satoshi's coins are at risk (but because they're using the older P2PK, not due to key reuse), and I agree that this would lead to some amount of chaos and transformative disruption.

> users would be required to hand over control of their wallet to actually manage the massive proliferation of addresses needed

BIP32 solved this in 2012, and is used by basically all self-custodial wallets these days. https://github.com/bitcoin/bips/blob/master/bip-0032.mediawi...

[drawkbox]

> You originally said that "quantum computers will be able to break satoshi's keys"

I said "Eventually with quantum computing or other advancements, someone will break the encryption and potentially swipe the part of Satoshi's coin."

As one part of my message. Now read the second, longer part.

Summary: "Whoever has control of the early issued coins, holds a leverage that is dangerous and has extortion properties." Not just for Bitcoin either.

What I was getting as we the concentration part and because of the amount, the desire to find Satoshi's (and other early crypto) keys will be immense whether that comes from technology or physically located.

Those keys are locked in earlier encryption algorithms and will be easier over time, maybe a long time, but still.

The longer the time actually the more concentration it may have depending on many factors but still.

The other concentration problems have also been seen in other areas like hosted wallets and shared mining sites/services. Situations for control of large amounts would be some hosted wallet sites being compromised and collecting keys or even using exploits/holes without the keys then issuing a broad push of many accounts at once, or even slowly.

Concentration in wealth, currently and banking is always a problem. In newer financial markets with less regulation there are always more gaps from many facets to technology to processes and tools.

[CyberDildonics]

I said "Eventually with quantum computing or other advancements, someone will break the encryption and potentially swipe the part of Satoshi's coin."

Then what are those "other advancements"?

[drawkbox]

Exactly... we don't know yet.

[CyberDildonics]

Most of the time when someone says 'we don't know' they really are talking about themselves.

People do know. There has been 100 years of cryptography and there are billions at stake. Hand waving and saying 'anything can happen in the future' with no plan, no details, no facts and no evidence is basically tech astrology.

Here's a challenge - find a cryptography expert that agrees with you.