Bitcoin base58 private key

-

bitcoin base58 private key

A private key is like a “master password”, and you can use it when you want to import bitcoins in to a new wallet. For this occassion, there is such. Type, Version prefix (hex), Base result prefix. Bitcoin Address Pay-to-Script-​Hash Address Bitcoin Testnet Address Private Key WIF. Base58 is similar to the common Base64 encoding scheme, except ToWIF converts a Neo private key to a Wallet Import Format tallerembajador.com.mx​Wallet_import_format */ /* Convert the private. bitcoin base58 private key

Bitcoin base58 private key - congratulate, your

Keys and Addresses

Show / Hide Table of Contents

Now that we know what a wallet actually is, how do we actually generate one? First we generate a private key, which is simply a 64 character hexadecimal string. This represents a number between the range 0 and 2(e77). From this number, the rest of the “Account” information is derived. For our purposes an account will consist of your Private Key, WIF (Wallet Import Format), public key, and address.

This random source can technically be generated from any source of entropy, but it SHOULD be generated through some form of cryptographic number generation. Most modern programming languages support some form of Private Key Generation via a secure random function available in a standard library.

The first real challenge of any wallet software is deriving all of the account information from the generated private key. Let's go into detail on how each piece of information is derived.

WIF

The WIF is relatively easy to understand. In practice, a private key can end up looking something like this:

It would be nice to have something that is a bit more human-readable, so we can convert the private key into the WIF, otherwise known as the wallet import format:

Although this is still not entirely readable, it is certainly better than the original string. The WIF also has some basic error checking, so that when you send to an address denominated by WIF format, you are more likely to catch an error. The conversion from the raw private key to the WIF format was done via a Base58 check encoding algorithm.

Base58 check encoding

Base58 is similar to the common Base64 encoding scheme, except that it removes non-alphanumeric characters as well as characters that might look similar to each other to the human eye. For example 0 (zero), O (capital o), I (capital i) and l (lower case L) are all omitted from the Base58 encoding scheme. The full list of available characters in Neo's Base58 encoding is:

A full implementation of Neo's check encoding (written in Go) can be seen below:

The steps to perform the check encoding can be broken down as follows:

  1. Prepend the version byte

  2. Double hash the resulting hex using SHA

  3. Append the first four bytes of the hash to the prepended version

  4. Convert the hex with prepended version and appended checksum to Base58

  5. If there any leading zeros in the bytes, attach 1

So to go from the original private key described above to the WIF format we can use this simple function:

We can see that WIF is an encoding algorithm of the private key which provides basic error checking, and improves human readability by encoding it into Base58 and attaching a version and checksum.

Public key derivation

Generally cryptocurrencies use the form of cryptography called Elliptic-curve cryptography. It is used to derive public key from private key whilst being computationally infeasible to do the opposite.

The form of elliptic curve equation is the following:

y2= x3+ ax + b

Bitcoin uses an elliptic curve called secpk1, while Neo uses secpr1, where k -- means Koblitz and r -- means Random. Essentially, secpk1's parameters were chosen in a way that allows more efficient calculation (for a very small security trade-off), while secpr1's parameters were chosen randomly.

The secpk1 equation is:

y2= x3+ 7

The secpr1 equation is:

y2= x3- 3x + b, wherebis

Because of the largebused in secpr1, below we will use secpk1 for explanation, but in principle it is the same.

This is what the secpk1 curve looks like:

Firstly we'll explain how to do point addition on an elliptic curve.

Having pointsPandQ, we draw a line that goes through both of them, and find the third point on the intersection of the curve and the line. Then we reflect that point across the x-axis to getR.P + Q = R

But in elliptic cryptography, rather than adding two arbitrary points together, we add the specified base point on the curve to itself. We draw a line tangent to the curve at the pointP, then apply the same rules as above. *P + P = 2 * P*

Remember that the private key is a bit number? Basically, the public key is the result ofPadding to itselfxtimes, wherexis our private key.

*X = x * P*, whereXis the public key.

To do the opposite (figure outxfromXandP) we would need to keep addingPto itself until we getX, which would, on average, make us do2point additions to figure outx, which is computationally infeasible.

ECDSA signing

Elliptic Curve Digital Signature Algorithm (ECDSA) is a simulation of Digital Signature Algorithm (DSA) by ECC algorithm. Its advantages include fast speed, reliable strength, and a short signature.

The brief steps are as follows:

Assume private key, public key, and base point ask,K, andGrespectively. We know that *K = k * G* according to the ECC algorithm.

Signing procedure

  1. Select random numberrand compute point *r * G(x, y)*.

  2. Compute *s = (h + k * x) / r* according to random numberr, messageM's hash valueh, private keyk.

  3. Send messageMand signature {*r * G*,s} to receiver.

Verification procedure

  1. Receiver receives messageMand signature {*r * G(x, y)*,s}.

  2. Compute hashhaccording to received message.

  3. Compute *h * G / s + x * K / s* with sender public keyKand compare with *r * G*. Verification succeeds if both are the same.

Deduction is as follows

Neo Address

A Neo address is generated from the address script, which defines who can spend a transaction output.

Usually the script used is of the form:

PUSHBYTES21opcode (0x21) + compressed public key (33 bytes) +CHECKSIGopcode (0xAC), meaning the output could be spent only by the owner of the private key for the specified public key.

To calculate a Neo address from transaction script: 1. Calculate SHA hash of transaction script 2. Calculate RIPEMD hash of the previous output (this is known as the script hash) 3. Use Base58 check to encode previous output with the version 0x17 (meaning result will start with A)

Below you will find example code to generate a Neo address from a public key:

The script hash is typically used in smart contracts as the public identifier, as opposed to the address. Since the use of byte arrays is common, it makes a lot more sense as the Base58 encoded versions is meant to be read by humans, not computers!

Источник: tallerembajador.com.mx

2 thoughts to “Bitcoin base58 private key”

Leave a Reply

Your email address will not be published. Required fields are marked *