Comments (7)
rotemh
commented on July 24, 2024
I guess itβs related to the encryption issue.
What is the actual need?
There is a reason for not exposing the public key and for using the checksummed address. Currently the main reason is to prevent errors but in the future the address may contain significantly more information (type / version / etc).
If there is a specific use case, we should consider implementing a similar functionality to sign and verify bytes but we should not expose the inner representation.
from go-algorand-sdk.
EvanJRichard
commented on July 24, 2024
@rotemh This was logged at @JasonWeathersby's request - he might be able to provide more/better context, but he's working on a demo that involves:
taking some data
encrypting it and posting it in a Note field
reading that data back
and either verifying it with just a public key or decrypting it using the private key
from go-algorand-sdk.
JasonWeathersby
commented on July 24, 2024
So the verifier should not have to have access to the private key. If I want to verify signed bytes, we have provided a function that does this with a public key. The problem is I do not see a way of getting the public key to verify the signed notes.
from go-algorand-sdk.
rotemh
commented on July 24, 2024
I don't see a reason to expose the public key. It's the Algorand system and user should use their addresses, which is has a 1-1 mapping to their public key.
from go-algorand-sdk.
fanyinghao
commented on July 24, 2024
I might have a case. When I have a key pair, I would like to use this public key to derive another public key and address. So that I don't need to generate a new key pair for the extended addresses. For example, the exchange company might have a wallet with a private key. The public key could be exposed so that it can compute a lot of address to the client for the deposit usage. And the exchange could use the one private key to sign all the transfer tx for collecting all deposits.
I have a similarity solution like GenPublicChild : https://github.com/blocktree/go-owcdrivers/blob/master/owkeychain/extendedkey.go
from go-algorand-sdk.
rotemh
commented on July 24, 2024
@fanyinghao Thank you for the comment. I agree with the proposed use case but even then I believe that exposing the public key is not the preferable solution. The solution I would go for, which already exist in kmd, is to add the option to derive accounts (a pair of an algorand address and the associated sk) given a master sk.
from go-algorand-sdk.
EvanJRichard
commented on July 24, 2024
Closing per above discussion.
from go-algorand-sdk.
Related Issues (20)
- Update `MobileWrapper` branch HOT 1
- Breaking changes in v2.0.0
- Add support for "Host" header in custom headers HOT 3
- Remove `future` package
- Breaking changes in v3.0.0
- add Genesis type
- Support /v2/accountdelta/ endpoint
- How to verify signed messages? HOT 1
- Update LedgerStateDelta type
- Cucumber BLOCK test unit.stateproof.responses.msgp does not work properly. HOT 2
- Add smoke test for examples HOT 1
- Fix API Error Wrappers HOT 1
- Reporting a vulnerability HOT 1
- Add golangci-lint to CI process
- Account struct has no definition for 'min-balance' field HOT 1
- Automatically synchronize protocol's with rel/beta
- JSON encoding of maps with non-string key types is invalid HOT 6
- Valid GET parameter of 0 filtered out
- Circular Dependency between go-algorand-sdk and indexer/conduit
- fuk2828
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from go-algorand-sdk.