dr-orlovsky
commented
1 year ago Not required anymore once we have a Tapret commitments
Closed dr-orlovsky closed 1 year ago
dr-orlovsky
commented
1 year ago Not required anymore once we have a Tapret commitments
Copy of discussion from RGBv1 audit:
@dr-orlovsky> do you remember why we originally stick to pay-to-contract and not sign-to-contract commitments?
@fedsten> there were some issues with the multisig, as the co-signer may easily destroy the tokens by not putting the commitment in his signature
@dr-orlovsky> yes, this applies to pay-to-contract multisig, and was solved by LNPBP-2, where we commit to the sum of keys, so at least one of the signers must produce correct signature. Now, with switching sign-to-contract will:
@fedsten> that indeed the problem was only due to the old design on multisig commitments https://github.com/rgb-org/spec/issues/10
@giacomozucco> Yes, i remember the same. some divergence in security model between bitcoin multisig and rgb multisig (always manageable, but potentially confusing, since the security assumptions would radically change, while with p2c they stayed more consistent). Also, I remember some incompatibility between the s2c commitment model and eltoo. Which wouldn't be a big deal if not for the fact that the commitment scheme is one of the things we can't easily change anymore.
@dr-orlovsky> yes. But now with LNPBP-2 this should not be a problem anymore
@giacomozucco> Yes, it would be much simpler in many ways
@dr-orlovsky> Thank you, I think we will need to provide rational for that decision in the spec anyway. Not sure that it will conflict with Eltoo, so I will leave this issue opened
@giacomozucco> Ack