Re: How to Create a Bitcoin Address from a Coin Flip

Quote from: doof on February 09, 2015, 05:14:22 AM

Quote from: andytoshi on February 03, 2015, 09:42:08 PM

Please please please do not do this. The cryptosystem which Bitcoin keys and addresses are part of assumes for its security that its private keys are uniformly random numbers. Flipping coins by hand will definitely not give uniformly random numbers, and is probably so biased (depending on your hand, the coin, what side you pick it up from, the surface it lands on, etc, etc) that you can measure it yourself by just flipping a coin and counting the zeroes and ones.

If you swap out one component of a cryptosystem for another you have constructed a new cryptosystem and need to argue its security. And I guarantee you won't find a good security argument for "Bitcoin script with biased randomness".

To add to the presumption of insecurity that should be applied to all new cryptosystems, let me point out that much of this one is gibberish:

Quote from: fasbit on February 03, 2015, 03:33:05 AM

Quote

Every Public Address corresponds to exactly one Private Key and vice-versa.

This is simply false.

Are you talking about possible collisions?

I believe he is referring to this: https://bitcointalk.org/index.php?topic=24268.0

Quote from: JoelKatz on December 22, 2013, 07:50:30 AM

Quote from: schnuber on December 21, 2013, 11:13:14 PM

So there are 2^160 public keys but only 2^96 private keys? Ho does that add up?
Are there private keys than unlock more than one public key?

There are just under 2^256 private keys, just under 2^256 public keys, and 2^160 addresses. There are some addresses that have more than one corresponding public key and thus more than one corresponding private key.