[Cryptography] BitCoin bug reported

Bill Stewart bill.stewart at pobox.com
Sun Feb 16 22:31:41 EST 2014

Somebody wrote:
 > Why would you pay more for a bitcoin than the cost to mine one yourself?
Several possible cases:
- You want a bitcoin NOW, and mining with just your GPU will take too long
- You only want a fractional bitcoin, and it's cheaper to buy the 
fraction than to mine a whole bitcoin.
         (E.g. you want to buy $50 of "research chemicals" on SilkRoad3.0,
         and bitcoins are selling for $500-1000 this week, requiring 
$2000 of electricity with your GPU.)

At 03:03 PM 2/16/2014, James A. Donald wrote:
>Surely unaligned ASN.1 CANONICAL-PER is fine, for the things that 
>will be parsed
>are defined at compile time, limiting run time complexity.
>One cannot send a structure that the recipient has not been compiled 
>to understand.

Of course you can send the recipient a structure it hasn't been 
compiled to understand.
It won't understand it, but maybe your objective is to get it to misunderstand.
(And yeah, PER is probably the safest version of that hive of scum 
and villainy known as ASN.1,
or at least it's less unsafe than DER or BER.)

More information about the cryptography mailing list