Leo Wandersleb @LeoWandersleb - 11d
The to date scariest thing I found out about Monero is that the people behind Monero host cryptographic tools that are only crypto theater. For years. And without an issue tracker, people taking Monero devs seriously will inevitably fall for the temptation to use these tools. https://github.com/monero-project/urs promises: "URS can be used to sign plaintext or binaries anonymously (among a group of known users). That is a user can sign a message, hiding among a group of known/registered users, that prevents the verifier from revealing the signer's identity other than knowing that it is in the set of registered users." 7 years ago, these claims were found to be false and the Monero devs never removed this repository or marked it as dangerous? https://kewde.github.io/urs
Leo Wandersleb @LeoWandersleb - 10d
Almost. The tool is a library, so I don't know what they did or intended to use it for but it can be used for that.
Leo Wandersleb @LeoWandersleb - 8d
They did delete the repo since I posted this and made a PR to update the Readme to point to the issue. So do you know of any solid ring signature scheme for my use case? I think, "linkable" is ok but not required. I just noticed, nostr:npub12ekpvme6m2cv37a9mgq4kzemej8tx6ttg40j582rh77ewpvkg65qj8tq0f is on nostr. He looked into porting what I think I would need to JS noble-curves last year: https://github.com/paulmillr/noble-curves/issues/146
I'm maintaining walletscrutiny.com and the people most knowledgeable on bitcoin wallets are bitcoin wallet developers but they are also very reluctant to talk about the flaws of their competitors unless in private with a beer. I want to provide a tool where they can establish to be one of 100 wallet developers and thus report as a self-accredited expert. So we would identify nostr accounts that work as wallet developers and each of them can then write as a member of that group anonymously. So the scheme should not require all the wallet devs to participate in a setup ceremony and there should not be any secret setup neither. I need it to work for the first expert willing to throw a stone, with a set of npubs of his choice should my choice not be to their liking.
For our purpose, linkability would be ok as it would prevent some Sybil attack where one author pretends to be 20 but if it's vastly easier to have non-linkable ring signatures, that's ok, too.
Ephemeral keys without group membership. Hmm ... then it will be free for all and spammy. Verifying the non-spam might be possible but drown in low effort accusations maybe? Also I want nut zaps to be possible. With ephemeral keys, who will store those?
Leo Wandersleb @LeoWandersleb - 6d
The warning they added upon my initiative. I suggested to keep the repository up for posterity. Who knows who's using the library and with the repo disappearing, they might just wonder why it's gone.
