Did i miss something or is the ECDSA really just 160 (or 144) bit strong?
The 256-bit ECDSA is really only 128 bit strong. The hash is not the limiting factor.
I don't agree with this.
256-bit ECDSA is 128 bit strong in the unlike scenario of anybody searching collisions between two
hazard keys (birthday paradox).
But more realistic scenario is looking for collisions with
specific keys hoarding large amounts of BTCs. In this case 256-bit strength remains.