From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Mon, 08 Jun 2026 15:35:08 -0700 Received: from mail-oi1-f189.google.com ([209.85.167.189]) by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.94.2) (envelope-from ) id 1wWiYm-0003kZ-ED for bitcoindev@gnusha.org; Mon, 08 Jun 2026 15:35:08 -0700 Received: by mail-oi1-f189.google.com with SMTP id 5614622812f47-4853fc7bd03sf1632165b6e.1 for ; Mon, 08 Jun 2026 15:35:07 -0700 (PDT) ARC-Seal: i=3; a=rsa-sha256; t=1780958102; cv=pass; d=google.com; s=arc-20240605; b=HGce0vkPuzoDo/18EMEOU8v96ZrhIbbOrN7qTVhLaxffuLLC1udZYzJxztAh6XwfCf Rykb1z35rXf8aA2eiRf20cxfywpQLsmSMJLP1g/LpOuWOd5Qz+qY/Z/8Yt6DtkLmUfpK PBKSy3mHrBjE0Bl6EDYCMQtHWqHjav0L9apBD1F7w/tGe1UyFMoTzRD9C3v4tqFYiuZV onioMb0WGFhQcf2veDKp0aeQvBAjUZByMbD32rzYswXYnZz6y6qIkrZMdUJYXVU8ZKRW FRTfv53I0ZTbU3ldXPVcVgLsfUxJucBLLYJX598l843YY8Hl/EsH2wZZmTGn9FCfogy9 lrPw== ARC-Message-Signature: i=3; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:content-transfer-encoding:cc:to :subject:message-id:date:from:in-reply-to:references:mime-version :sender:dkim-signature:dkim-signature; bh=GgkAWBj9wI8doK+fZXiCOtnlKhF9HFnFUVmJbm5iFlI=; fh=LaoXrevy9ztKZhIyFI+5fR4qNyPWOzDi427RypZpSso=; b=PbrU4rpHS+mXLPxy4MBs7WEZYckRFbcBX3GQWlw2gfc8zDY3y6pXFdatbNWaszCcw2 j3NUOLzkw7kc/fNVrJMlgzSCltSf0AcT1KRJBg/bh2ns/FsJq4i4Fbvja+CfA0dK6B+F BJs98rn3VRt16tTbA8rYA4tjIHv8dMLnMujK+rBb+Fw9naEa3sl9x0W+a3ic2Lq1efod te267qebzoCLnR2Mmrf2DcpvXBip4pDsfyCMyji3tQMpjWI+8DHtJCKlihNaTG0A/4e+ J9diijZDueio74/42KwuAVM4ehYon13vixmnRaFqhg0USKpzqR6xsgWRDhn6igiIitoQ 1UeA==; darn=gnusha.org ARC-Authentication-Results: i=3; gmr-mx.google.com; dkim=pass header.i=@gmail.com header.s=20251104 header.b="DjNPlim/"; arc=pass (i=1); spf=pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::132a as permitted sender) smtp.mailfrom=bnagaev@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com; dara=pass header.i=@googlegroups.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20251104; t=1780958102; x=1781562902; darn=gnusha.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:x-original-authentication-results :x-original-sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version:sender :from:to:cc:subject:date:message-id:reply-to; bh=GgkAWBj9wI8doK+fZXiCOtnlKhF9HFnFUVmJbm5iFlI=; b=QQTXF4Y0FHe2GoWfHTIAHqxMmsE7sUHHWF6Tult9pgTKKQy6IDL2QtfTyNtPxauxH5 N+6xr3KImnI3pay5Uo5Z9P/IDBQsd1gL5m49QpBrBfAeBGRVn1vCgTOeF4KASIXKX2nC FgGcYwGh0U+nP4GlQc0Uk+tRk041B779w84gXVAsNJucLx5K4WgCLvgeP8i1pbxFV/FX fmPeym4O6/7wEUq9dow6TN2PLg8aigUnNaYOeZHGOlvy/guS+D5Pa40iNryAnV4MZ1ja HpRkyU7sr93kf8VB9DmK5Xfgkra9Bbx/dEzZDW0iB/PyghlOJ+66vOb1SCs7TOqOXu4J slyQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1780958102; x=1781562902; darn=gnusha.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:x-original-authentication-results :x-original-sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version:from:to:cc :subject:date:message-id:reply-to; bh=GgkAWBj9wI8doK+fZXiCOtnlKhF9HFnFUVmJbm5iFlI=; b=nZpPiTzfQnz/H0Js/OUFVlzjm4Oqp7rZ2ayMssIZiJB1yZhYUlAFhNk7QEPg14hDre bItm2b/SGEbLW5K8PWoT24y3i4mAxFGlf+ghfhavNpqVVU+Jjwiblf2YZjvQzv4aG7J8 CUjmqEsGcmdtRmDokIDlOpzLDqTkVn0F5a59hWoJtXstKKQOTO1Lf00M45+yG+NQIsjx 6IMy2Bl1jYkf0fMV0F0Zd2UMyRQfD61EpOkHme5LFNISAj8veneLMTPiXoF08ojZgykE EZlk5PTTPE9X9wlnvPIDjHe60Pzg+oJyGU2KsfOX2XkQwTYEBgrAhsivz1MsqFVdbSLK NLTA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1780958102; x=1781562902; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:x-original-authentication-results :x-original-sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version:x-gm-gg :x-beenthere:x-gm-message-state:sender:from:to:cc:subject:date :message-id:reply-to; bh=GgkAWBj9wI8doK+fZXiCOtnlKhF9HFnFUVmJbm5iFlI=; b=kmUXMUeg+DpC1voTj1qRTUJHOmHeCa3zRqq70JUN6Aq5BkOMimRkKHBMmI1U5eBADj PWyw5JKUfOrOck5WZAnMuE09qQ7RstWg6JZlCURjHD0wLoyPqDhID/v7rldHo2qBbJsh /MOrU0GKUA+0KMgJyot2S1iTv8lWslh6kwa9QJ4aSLnBcyVbMvdotg82l+hmmyNv/xfy J3W9SVtR3oWXCw1v6TGyP+/Ro5/ewwJ0V+ITJ68cYIqP21nLNmuiuEbSDkmPVJc38njf U59lob8lPyTkwtF77mz3FTzP+QjhYiFS6IoT1htzNjAPpXgZyQrMewBlwTntONt+O3Yl 7u0g== Sender: bitcoindev@googlegroups.com X-Forwarded-Encrypted: i=3; AFNElJ/eyh2yhqR2FW4PlFZFYCG5nACNmRszwZcCc4JLhWLLkI4LWmHWrxGd7mSW/sKnO/sN3WCQIEGLWf0z@gnusha.org X-Gm-Message-State: AOJu0Yz2tOt75QDusqeUY2KxSbkI+UlZryDFE2Bl7hFwTXSo0U7K/QfQ ilDqrrbohm8zCnlUSNbMfftREGNSJEjV5T9CoiANkKu3jUlff+hJRuKd X-Received: by 2002:a05:6870:453:b0:434:357:6dcd with SMTP id 586e51a60fabf-4413da7b96amr4563471fac.8.1780958102090; Mon, 08 Jun 2026 15:35:02 -0700 (PDT) X-BeenThere: bitcoindev@googlegroups.com; h="AX0PUUeDxEWwI/VvhHQ+H54ZPLGg+0p+TXzv/4RgwQ26vu4JVA==" Received: by 2002:a05:6870:d614:b0:43d:8cd:b99f with SMTP id 586e51a60fabf-44109ef138bls4181088fac.2.-pod-prod-03-us; Mon, 08 Jun 2026 15:34:58 -0700 (PDT) X-Received: by 2002:a05:6808:181e:b0:485:4396:91a3 with SMTP id 5614622812f47-4868e02beedmr9710262b6e.30.1780958098075; Mon, 08 Jun 2026 15:34:58 -0700 (PDT) Received: by 2002:a05:620a:6b10:b0:8f9:4d19:af67 with SMTP id af79cd13be357-915e60152e3ms85a; Mon, 8 Jun 2026 15:20:58 -0700 (PDT) X-Received: by 2002:a05:6122:1d14:b0:583:5e28:17b1 with SMTP id 71dfb90a1353d-5ac58baf066mr7517810e0c.12.1780957257509; Mon, 08 Jun 2026 15:20:57 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1780957257; cv=pass; d=google.com; s=arc-20240605; b=K42dPYJBTEZ5d2vS80M1319aqyBQSVsLTQJhHQUx3RRgPv0+u8CzETsZTO5UcijRbF F3WHK3hwIRHGhbX+JJ4/4+7cbaJnPePyGyUza5oYUY4NEvO9hBCBMtDTGH728uxA/6Xd 1tK8dni7qbqDPT1w8Oc3vyJsJ4AAh4BZzO47n0exoWz6amysc/yKTQs8cDmiHFWtPTAD Q2EYn7kZ9+3+a3Vf2qRK+Ai8Epdc5zZfcizmFhCzthCwV8aS82ijodo9EP+A3RfuB0rw XoDUoNR01je7+MrvmXrYw3/xQBFT5qQYzq+K1NCtna1HzHBKgsAoauna8eX/KkWPR5V2 cNKA== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=p8qUMu32rqkKY0bnVNnC98OQbze2045OLUlJ0bty3Gk=; fh=4D1Slhzyn+pFOAwDEq6EbVZL0AY9bgxPzukgtJPpAy4=; b=AYV/saC0krXTgRvUdKaLH1mO1GWg1YVQc7XRN6+RtBYaamMJjhbUyskzcaZh/fT9us SsfFFVnGOf74iznjyeE0EujWJucYQM+Bs7Qn9ShdGrBq05PgqTSioYOL40kff2L5cyXv uiQIp5d7AOB803PHd2IstQ8bCGd4FwoVOSay96UoWlMop228Ecf+9oSo/7lm3QmEBLyD HEa2+UkEz9gSukg2/bERpz96Ds7ZR00fgqi3KtD85EfcWaXpAhITXnVOR8vGGM3t4t5+ XNxFxXBdWyCZQj/suHQtKKlQQXtRHT+e4pgkRgbCVWbzqvzZfuzJJg4PSEIaclq8PwpS /fzQ==; dara=google.com ARC-Authentication-Results: i=2; gmr-mx.google.com; dkim=pass header.i=@gmail.com header.s=20251104 header.b="DjNPlim/"; arc=pass (i=1); spf=pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::132a as permitted sender) smtp.mailfrom=bnagaev@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com; dara=pass header.i=@googlegroups.com Received: from mail-dy1-x132a.google.com (mail-dy1-x132a.google.com. [2607:f8b0:4864:20::132a]) by gmr-mx.google.com with ESMTPS id 71dfb90a1353d-5a6d87fc801si642702e0c.1.2026.06.08.15.20.57 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Mon, 08 Jun 2026 15:20:57 -0700 (PDT) Received-SPF: pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::132a as permitted sender) client-ip=2607:f8b0:4864:20::132a; Received: by mail-dy1-x132a.google.com with SMTP id 5a478bee46e88-304fb780deaso4824496eec.1 for ; Mon, 08 Jun 2026 15:20:57 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1780957256; cv=none; d=google.com; s=arc-20240605; b=DkyuUPNH+2mmmvh6Hj3LbnJBfN4QxMCqSCguCn1XK4hIsx8fRaTTpCSVxoEbBokm10 yHXX2MAHGBRNaawdKJOiI7osPGB1zTF9QNUQOjKkiwzDu4QiWjkMjdbWTh7LrQdAKTAW kSXTj/v/I5638gBecvP8sbKtYI5iDkYCAtrww+brxtnyeaSwjNPYmTmC72JFat9+BcGP 5Rf7FbQbtYW1FxmYro8hgfnliaBCZdUAfSjtxcv3zZip97YT34mBfEqFCACFKjQMvZav DncuSe8NMutlM84v4+LiKHXTRBLfR8UUAB3/wx6EAKvxbv5YcQkLbXNbZSnQeNPtz1On guXA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=p8qUMu32rqkKY0bnVNnC98OQbze2045OLUlJ0bty3Gk=; fh=4D1Slhzyn+pFOAwDEq6EbVZL0AY9bgxPzukgtJPpAy4=; b=TUboTKf9PRNzk6mYyL2aHZzs+c1jVIFfw0fCSbkbnFrlfr80PovQ9tOvc0S5ItbjlS PtVoKk2hs4Q9Fx6O5VRsE1d/YsxHu/tjlJn0KZHIizkT2MlXEeV0Gpwi68Gv3ztiNzFF hxolxJLrE4mFFbwF+AajF/hPmB/dNgMuD7CuVGg7PtQVe770E97q7cJdgq7IJwcz2Sey vVmb0U27jDcHBnE+/Wv6p2Zcm7Vpd65uU4pUDsgTST28n5z3T0InOUMMufalbcqcQxML vSxlf4GmN5lAdF7wUdVR6GpCn0DZrcpUaGuw+AQkUb9obpwCZRL2AJ1HfuVw06i9YqO3 d35g==; dara=google.com ARC-Authentication-Results: i=1; mx.google.com; arc=none X-Gm-Gg: Acq92OG9ESuAA3NB0TYtkrD5BxdLYp/Htm2+mx6TyEtN7lblnLGIPjBrIB+l72EqU/3 X3ZNeLzRKci54C9I/z0mt9zdLgMTW8kXbuq57FEhChZ/7E5AqW3rYb/Q4OpRMR3l9w5cRo3lYDP XrNW6lCzNfG/Ae5o5kL5lsEXKduxTsfY84epe9i5VV7PlVvm7f6+3pek8uS4iGJowqe3bu5aV+f hX7scxnXrIaz/U90xGoVH0ieFTrGOs9RnEZIKhTAA1zlAxwsoJM/SQmrw1jtQ/PiPha7YGJwdGh 6bhDYk6gVz616WS+ X-Received: by 2002:a05:7301:19ad:b0:2da:44ac:6d17 with SMTP id 5a478bee46e88-3077b1cc91fmr10283725eec.17.1780957256197; Mon, 08 Jun 2026 15:20:56 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Nagaev Boris Date: Mon, 8 Jun 2026 17:20:18 -0500 X-Gm-Features: AVVi8CfmAf0jprge9Y08WJNJP2vhF1KjyOmStAD5a3nhHGkZ04OTpu6w5ICx9IY Message-ID: Subject: Re: [bitcoindev] [BIP] P2WOTS: 64 Slot Winternitz UTXO's (witness version three) To: opus lux Cc: "bitcoindev@googlegroups.com" Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Original-Sender: bnagaev@gmail.com X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass header.i=@gmail.com header.s=20251104 header.b="DjNPlim/"; arc=pass (i=1); spf=pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::132a as permitted sender) smtp.mailfrom=bnagaev@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com; dara=pass header.i=@googlegroups.com Precedence: list Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com List-ID: X-Google-Group-Id: 786775582512 List-Post: , List-Help: , List-Archive: , List-Unsubscribe: , X-Spam-Score: -0.5 (/) Hi Opus Lux, Thanks for working on this! What do you think about SHRINCS signature scheme? https://github.com/BlockstreamResearch/shrincs-specification https://github.com/BlockstreamResearch/shrincs-cpp/ - C++ implementation https://delvingbitcoin.org/t/shrincs-324-byte-stateful-post-quantum-signatu= res-with-static-backups/2158/ It uses an asymmetric tree, saving signature size for lower indices, putting the leaves closer to the Merkle root. Also it includes a stateless fallback to SPHINCS+ in case a signer lost the state (the slot counter). Also it utilizes a constant sum optimization in WOTS to save some space on shrinking the sum digest. Best, Boris On Mon, Jun 8, 2026 at 5:12=E2=80=AFPM 'opus lux' via Bitcoin Development Mailing List wrote: > > Hi all, > > I's like to officially propose P2WOTS (Pay-to-Winternitz-One-Time-Signatu= re), a new native Bitcoin output type using witness version three. It provi= des post quantum security using only SHA-256 and contains no elliptic curve= key material anywhere. > > The 34 byte scriptPubKey commits to a Merkle Key Tree over 64 independent= WOTS+ one time key pairs. > This construction directly solves the WOTS+ one time signing limitation, = each spend consumes a fresh independent slot key, making address reuse safe= without ever violating the one time property. > > BIP draft PR: > https://github.com/bitcoin/bips/pull/2194 > > Looking forward to technical feedback from the community. > > Regards, > Opus Lux > > -- > You received this message because you are subscribed to the Google Groups= "Bitcoin Development Mailing List" group. > To unsubscribe from this group and stop receiving emails from it, send an= email to bitcoindev+unsubscribe@googlegroups.com. > To view this discussion visit https://groups.google.com/d/msgid/bitcoinde= v/LB_O7FqGG5kTYN96-MClXIl7retn-UyDlPQbVhVOnxlMO5i-h1Oq1NDhAkaZUqx--yeNW38X8= p90IulPeSDLJzhJd5UwHYvFEzc8YhVWvtU%3D%40proton.me. --=20 Best regards, Boris Nagaev --=20 You received this message because you are subscribed to the Google Groups "= Bitcoin Development Mailing List" group. To unsubscribe from this group and stop receiving emails from it, send an e= mail to bitcoindev+unsubscribe@googlegroups.com. To view this discussion visit https://groups.google.com/d/msgid/bitcoindev/= CAFC_Vt6x%3DwM61NTFyn00JntRFJPWUt8_x9yxPcrGgPfpDCo_%2BQ%40mail.gmail.com.