Multi-Signature in theory and

practice

BitcoinSecurity

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

I was asked once:

Why would I ever need Bitcoin?

I can buy and sell everything I want with normal money

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Problem: Who CONTROLS your money?

When your money is controlled by someone else

It is no longer your money.

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Status Quo - Intermediary

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Status Quo - Intermediary

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Status Quo - Intermediary

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Status Quo - Intermediary

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Status Quo - Intermediary

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Problem solved? – Bitcoins

- Centralized Service??

- Give up control over my coins??

- Security issues with hackers?

- Sites close over night???

--> SAME PROBLEM AS BEFORE!

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

so…where should I store my Bitcoins

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

What if.. A service exists where you- DO NOT give up control over your coins

- DO NOT allow even the administrators to access your coins

- IS NOT possible that Hackers can steal coins, even when the server is compromised

-DO NOT need to trust the trading party, as still an escrow is in place? EVEN when the site is closed?

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Trick: Multi-Signature wallets

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Multi signature wallets

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Multi signature wallets

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Hackers and admins see encrypted wallets

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

“Normal” TransactionHow does it work?

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Part 1: Create multi-signature addressMulti-Signature

-Get two or more Bitcoin addressees.

-Combine them using addmultisigaddress JSON-RPC command

-As a result, you will get a special Bitcoin address starting with „3”.

-The resulting Bitcoin address is fully functional and can receive coins.

-You can create different combinations of M-of-N addresses. It means that you can specify how many private keys are needed to spend the coins.

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Part 2: Spending coins from multi-signature walletsMulti-Signature

-Create a transaction draft using createrawtransaction JSON-RPC command -Sign the resulting transaction data with one of private keys, utilizing signrawtransaction command -provide it with correct details, which may include: public key and redeem script-Pass partially signed transaction data to other party, which repeats this process-Finally, you broadcast the transaction to the network (using sendrawtransaction or another means)

Two-Factor authentication

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

And the last resort: Dead Man’s Switch

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Centralized services

www.bitalo.comPhone: +49 6322 9419292 | e-mail: martin@bitalo.com

Decentralized services

YOUFOR watching

THANK