Re: Post your SegWit questions here - open discussion

Quote from: amaclin on December 22, 2016, 01:49:04 PM

Quote

Of course. "Malleability" is an umbrella term

First of all, ecdsa malleablity is the abliity to change the signature itself for the same
data without invalidating it by the person who knows the secret or by the "middle-man"

Sure, because distinguishing between σ = (r,s) and σ'= (r,N − s) is just too hard for bitcoin, eh? Angry

Ripple uses (r,s) < (r,N − s)? (r,s):(r,N − s)