Craig Wright's signature is worthless

Uptrenda · 12時間前

This is just really bizarre. Why did he go to the trouble to write that post on "verifying" the signature without providing a valid signature any where on the page? I first thought the base64 encoded string at the top was the real signature but all it decodes to is: "Wright, it is not the same as if I sign Craig Wright, Satoshi."

Simple code to show the sig is the same as the sig in TX: 828ef3b079f9c23829c56fe86e85b4a69d9e06e5b54ea597eef5fb3ffef509fe:

import base64

import binascii

x = base64.b64decode("MEUCIQDBKn1Uly8m0UyzETObUSL4wYdBfd4ejvtoQfVcNCIK4AIgZmMsXNQWHvo6KDd2Tu6euEl13VTC3ihl6XUlhcU+fM4=")

print(binascii.hexlify(x))

3045022100c12a7d54972f26d14cb311339b5122f8c187417dde1e8efb6841f55c34220ae0022066632c5cd4161efa3a2837764eee9eb84975dd54c2de2865e9752585c53e7cce (which is the same sig used in https://blockchain.info/tx/828ef3b079f9c23829c56fe86e85b4a69d9e06e5b54ea597eef5fb3ffef509fe?format=hex -- which can be decoded here https://blockchain.info/decode-tx -- note the input script hex)

This outcome is just incredibly strange. Did he expect to convince us with that article or that no one would notice? Not sure what's going on here but I'd really like to know ...

He apparently gave cryptographic proof to multiple different people. Where is said proof?

Edit - other possibilities:

Gavin might have been hacked.
The article might not have been intended as proof but a protocol for journalists to verify his claims (though its strongly implied that he's signing the Sarte text but maybe the sig in the article was intended as an example.)
Gavin might have been tricked (but the post seems to imply that he at least verified the signatures himself - so where are they?)
Gavin is a liar (I'd like to believe this isn't true.)

Update: Gavin's commit access just got revoked. It seems I'm not the only one who thinks Gavin might have been hacked. https://twitter.com/petertoddbtc/status/727078284345917441

jonny1000 · 12時間前

When will the media learn?

I do not think that comment is totally fair. Three organizations broke this story, one of which was the Economist. The Economist said they didn't believe the individual in question was Satoshi. Therefore you can hardly blame them.

We are not so sure. Although they are not completely satisfactory, Mr Wright provided credible answers to the questions which were asked of him after he was outed last year. He seems to have the expertise to develop a complex cryptographic system such as bitcoin. But doubts remain: why does he not let us send him a message to sign, for example?

Source: http://www.economist.com/news/briefings/21698061-craig-steven-wright-claims-be-satoshi-nakamoto-bitcoin

Uptrenda · 12時間前

I was going to say: lets play devils advocate here and assume that this post was used as some kind of instructional to verify a proof that was released through other means. As in: here you go, read this to verify it. But the article strongly implies that the message being signed is the article here: http://www.nybooks.com/articles/1964/12/17/sartre-on-the-nobel-prize/ because of the file names used in the signing and in the commands.

Interestingly, when you arrange the article listed above and run the same commands on it: it doesn't even produce the same SHA256 hash shown in the images: ba8c100881b19e23029183e3676a0915569da686172cf85839cfbde1a6640327, ab2ed58c9225d4e8804cd3f9724267a6bb03bb0b9ebfc0d5c20e9ebb79291c63, or 5632f92609e76c65461c840fa8b1854a5e75f3fcca466e30f7ccbdb6be93efe9 depending on where you place new lines (instead of 479f9dff0155c045da78402177855fdb4f0f396dc0d2c24f7376dd56e2e68b05.)

I also considered that maybe he had somehow found a collision in SHA256 for that Sartre article and that's why the sig was valid but ... that's just not the case here (already reaching at impossible straws here.) Maybe his intention is to laugh at how gullible the press are in the Bitcoin world? But then why would Gavin have gone along with this? Maybe there is an actual proof that was shown to the reporters + Gavin and we're all jumping to conclusions ...

Will stay tuned but its highly likely this is bullshit.

c_o_r_b_a · 13時間前

So he literally just copied and pasted a random public transaction signature (encoded to base64) and put it on his blog? (Edit: Nevermind, I'm not entirely correct. He copied the already publicly known public key and signature from a transaction Satoshi made. But it doesn't change the situation; anyone could have done that.)

I mean, something's gotta be wrong there. Someone going through all this effort for the con would surely realize that'd be debunked in like an hour (which it was).

He's obviously almost certainly not Satoshi, but I'm just left with more questions than answers.

Random theory: Was it totally intentional and part of a sort of "confidence game" publicity stunt? That is, the Sartre reference ("If I sign Craig Wright, it is not the same as if I sign Craig Wright, Satoshi.") being used to mean something like "I actually am Satoshi, but I'm not going to prove it because it'd taint my research too much" or some other bullshit reverse psychology type of thing?

The other theory is that his blog post wasn't intended to be a demonstration of how to verify he's Satoshi, and instead was just... a random primer on ECDSA. But that makes even less sense. If that is the case, all we have to go on is the supposed verifications he did in private with Gavin Andresen and Jon Matonis.

TheJediWizard · 12時間前

It's all a ruse to lure the real satoshi out.

bitcoindood · 7時間前

Gavin's independent verification procedure per https://www.reddit.com/r/btc/comments/4hfyyo/gavin_can_you_please_detail_all_parts_of_the/d2plygg 1. Gavin provided arbitrary string to sign (good). 2. Signature was copied to a clean usb Gavin provided (good). 3. Gavin verified signature on a "brand new" laptop (good). 4. The "brand new" laptop was provided by Wright (fucking horrible). 5. Gavin was not allowed to keep laptop or usb (are you fucking serious).

thatdudeadam · 12時間前

Mr Wright said he planned to release information that would allow others to cryptographically verify that he is Satoshi Nakamoto. Soon after Mr Wright went public, Gavin Andresen, chief scientist at the Bitcoin Foundation, published a blog backing his claim. "I believe Craig Steven Wright is the person who invented Bitcoin," he wrote. Jon Matonis, an economist and one of the founding directors of the Bitcoin Foundation, said he was convinced that Mr Wright was who he claimed to be. "During the London proof sessions, I had the opportunity to review the relevant data along three distinct lines: cryptographic, social, and technical," he said. "It is my firm belief that Craig Wright satisfies all three categories."

http://www.bbc.co.uk/news/technology-36168863

-ment · 11時間前

The reason he says he will never accept any money, awards or a Nobel Prize is because he is a fraud and he would get into serious trouble if he did and was found out. He is in it for the fame and adoration. His insistent reminders that this is definitely not the case, his vague "proofs", his body language... should be enough for anyone paying close attention to become highly suspicious.

Jahus · 12時間前

If he wants to prove himself as Satoshi, he should make a transaction or sign a text with the private key he used for that transaction, shouldn't he?

MentalRental · 7時間前

Gavin Andresen weights in: https://www.reddit.com/r/btc/comments/4hfyyo/gavin_can_you_please_detail_all_parts_of_the/d2plygg

Craig signed a message that I chose ("Gavin's favorite number is eleven. CSW" if I recall correctly) using the private key from block number 1.

That signature was copied on to a clean usb stick I brought with me to London, and then validated on a brand-new laptop with a freshly downloaded copy of electrum.

I was not allowed to keep the message or laptop (fear it would leak before Official Announcement).

I don't have an explanation for the funky OpenSSL procedure in his blog post.

omeganemesis28 · 12時間前

I mean did it not ring any bells when reporters heard that he said he would not sign additional messages to prove it?

Hang on. Let me go claim I'm heir to this random rich dude's legacy to prove my point. Here is my claim, take my word for it, but no I won't give you my DNA sample to prove I'm related.

IBM_9001 · 9時間前

Hey guys... this is linked by the NYT. Best behavior :)

backslashHH · 5時間前

The claimed sha256 value of

479f9dff0155c045da78402177855fdb4f0f396dc0d2c24f7376dd56e2e68b05

is not from any Sartre article, but the first sha256sum of the transaction validation. Verifying transaction Output[1] of https://blockchain.info/tx/12b5633bad1f9c167d523ad1aa1947b2732a865bf5414eab2f9e5ae5d5c191ba gives data:

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

which is double sha256sum'ed and verified against the public key and the signature in https://blockchain.info/tx/828ef3b079f9c23829c56fe86e85b4a69d9e06e5b54ea597eef5fb3ffef509fe of Input[0]

$ printf '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' | xxd -r -p -|sha256sum 
479f9dff0155c045da78402177855fdb4f0f396dc0d2c24f7376dd56e2e68b05

BIGbtc_Integration · 11時間前

Leah Goodman of Newsweek also says it's maybe, well not, but could be almost true.... Maybe.

G1lius · 12時間前

"I am convinced beyond a reasonable doubt: Craig Wright is Satoshi."
-Gavin Andresen

And his credibility sinks further...

deardevil80 · 11時間前

Let me go claim I'm heir to this MEUCIQDBKn1Uly8m0UyzETObUSL4wYdBfd4ejvtoQfVcNCIK4AIgZmMsXNQWHvo6KDd2Tu6euEl13VTC3ihl6XUlhcU+fM4= in hex is 4d455543495144424b6e31556c79386d3055797a45544f6255534c3477596442666434656a76746f516656634e43494b344149675a6d4d73584e515748766f364b4464325475366575456c31335654433369686c3658556c6863552b664d343d and not pay to address..

karljt · 10時間前

If he is Satoshi then he will have many ways of proving it which he may well do over the next few days.

keihardhet · 5時間前

Gavin, the one who sends hackers 100k by accident now and then... very ... very unlikely source for anything coherent.

jphamlore · 4時間前

Whoever is Satoshi possesses an estimated 1 million coins worth a considerable fraction of a billion US dollars.

Does any of the behavior of those claiming to be Satoshi have the slightest plausibility given this fact?

jl_2012 · 12時間前

A real bitcoin signed message should be like this:

bitcoin-cli verifymessage 1BqcwhKevdBKeos72b8E32Swjrp4iDVnjP Hw6QbEy+Z5BNwiv0kPTyizzgU5T1H88RnPRvk7730VoGTReJndKzZ4Jnn1JjIkNiVwBIXsx19RwXQWVfWrZjW+M= "I am 'Loaded' of bitcointalk.org."

which should return true

fluffyponyza · 13時間前

Note: there may be an obvious answer to this, in that old transactions were paid straight to the pubkey and not to the address. Just double-checking that to make sure:)

Note2: confirmed by /u/SENPAI_NOTICES_YOU - the pubkey is in the raw transaction. My post below can be disregarded, the sticked post stands as correct. My post remains for reference.

Cross-posting my post on one of the other threads, just to add to the confusion:

Seems entirely possible he found some type of pre-signed message.

This was my first thought, but in his blog post he provides an ECDSA public key:

0411db93e1dcdb8a016b49840f8c53bc1eb68a382e97b1482ecad7b148a6909a5cb2e0eaddfb84ccf9744464f82e160bfa9b8b64f9d4c03f999b8643f656b412a3

This public key corresponds to the Bitcoin address 12cbQLTFMXRnSzktFkuoG3eHoMeFtpTu3S - but the process of going from the public key to the Bitcoin address requires you to first SHA256 hash the public key, and then RIPEMD-160 hash that result.

Now consider: it is EXTREMELY unlikely that a pre-signed message would've included the public key. It is also equally unlikely that Wright was able to brute-force through both hashing functions.

Thus we are left with only two options:

Wright managed to get a pre-signed message and the address pubkey from the real Satoshi at some point in the past
Wright is actually Satoshi

I'm not sure it makes a difference to me personally either way.

xanderbelly · 8時間前

The most obvious reason for this supposed "anomoly" is that reality itself is in the process of coming to consensus. One fork is where Craig Wright is Satoshi, one fork where he is not. We don't have enough confirmations yet to determine which will be the proper one.

This has much in common with the "Berenste(a)in Bears Universe Theory" because it points to the same underlying truth. Reality is not factual, it was decided by Einstein initially and the Copenhagen Interpretation of 1927 that objective reality does not, in fact, exist. It is all individual perception in a shared matrix where unconscious belief systems only allow a viewer to decode reality according to their pre-conceived notions.

To us, the cryptographic "proof" seems senseless and unbelievable, because it is. To us. It has to, otherwise the wave function would be collapsed instantly universally, which it cannot. At a subatomic level wave functions collapse, on the larger scale of our societal shared reality a consensus mechanism much like POW is used, and this uses (or manifests) as the passage of time.

To the others, the cryptographic proof is, right now, actual proof that Wright is Satoshi, in their Universe. If we inhabited their Universe B instead of our Universe A, we would see the cryptographic proof as valid. We have a fork of reality at this moment, and we are not sure which timechain will win.

Cryptographic proof is proof beyond a doubt, and this cannot exist in our Universe of subjectivity, because then the decisions would be out of our hands. This event is peeling back the curtain, showing us a window into the workings of our own reality; this is the power of POW and the Bitcoin blockchain.

We have literally created the "dent in the Universe" that Apple's Steve Jobs so figuratively spoke of.

Where we go from here, is a choice I leave to you.

IMHO

chimpos · 12時間前

Did they mention bitcoin was also dead?

PrivilegedGlimpse · 10時間前

Media learn what? they said some guy said he's satoshi.

edit: nevermind, BBC sounds convinced though they mentioned the doubts. probably based mostly on Gavins blog.

ItsTyrrellYo · 9時間前

dunno, if he doesn't come forward with some proper hard evidence soon, it might be a case that they're trying to lure the real Satoshi into confirming he still exists

MarkOates · 9時間前

Scammers... scammers everywhere

music8mycomputer · 8時間前

Looks like the blog post is part of a larger document I pulled from his xml feed from his page. http://codacoin.info/drwright.php

Ph03n1xII · 5時間前

The latest Bitcoin inventor claims don't add up http://www.theverge.com/2016/5/2/11566296/craig-steven-wright-satoshi-nakamoto-bitcoin-proof

elux · 13時間前

Craig Wright is 100% not Satoshi. Maybe publishing the true name of Satoshi would even be defensible, given the circumstances. At some point Bitcoin starts to matter more than Satoshi's privacy. Maybe one who knows will be provoked to do so.

Mark_dawsom · 13時間前

The only question now is was Gavin an accomplice or not.

igotthecode · 10時間前

I happened to compromise Craig Wright after the coverage in December and had that access for a few months - here is some code he was working on since December 2015.

/*
 * CONFIDENTIAL - NOT FOR PUBLIC RELEASE - DRAFT VERSION 0.1 DECEMBER 2015
 *
 * iamsatoshi.c - Prove to people in person that I am Satoshi Nakamoto.
 *                For use against friends, investigators, journalists, marks, and more.
 *                One might say, my greatest creation so far!
 *
 * IMPORTANT: Only run this on my own computer from within an encrypted
 *            volume, ensure spectator(s) have NO camera or filming
 *            equipment in front of screen! 
 *
 *            The "message" to "sign" must be over 1000 characters to 
 *            make sure any spectator(s) cannot remember the exact contents.
 *
 * Copyright (c) 2015 Craig Wright
 */
 #include <stdio.h>

 /* Take this from argv[1] instead to appear more genuine */
//#define PUBKEY     "12cbQLTFMXRnSzktFkuoG3eHoMeFtpTu3S"

/* IMPORTANT: For each demonstration, use a new signature from satoshi-signatures.txt, and make a note in there also which have been used, and with who, along with date/time */
#define SIG_BASE64 "MEUCIQDBKn1Uly8m0UyzETObUSL4wYdBfd4ejvtoQfVcNCIK4AIgZmMsXNQWHvo6KDd2Tu6euEl13VTC3ihl6XUlhcU+fM4="


int main (int argc, char *argv[1]) {
    int c, c2, count;

    if (argc < 2) {
        printf("Usage: %s <public key>\n", argv[0]);
        return(0);
    }

    printf("Opening private keyring to obtain private key for address: %s\n", argv[1]);
    printf("Private signing key retrieved! Please enter the text to sign now, hit enter twice when finished: ");

    count = 0;

    while ((c = fgetc(stdin)) != EOF) {
        if (c == '\n' && c2 == '\n')   
            break;
        c2 = c;   
        count++;
    }

    // REMEMBER THE SIGNING TEXT MUST BE OVER 1000 CHARS LONG!  LEAVE SUBTLE ERROR MESSAGE
    if (count < 1000) {
        printf("Error 1000: Please try again\n");
        return(0);
    }

    printf("Signing the above text using public key %s...\n", argv[1]);
    sleep(1);
    printf("Signature base64: %s\n", SIG_BASE64);

}

RubberFanny · 13時間前

Don't tell Gavin Andresen whatever you do! He is still patting himself on the back for meeting Satoshi!

FYI if you look at Dr (lol) Wright's latest blog, he provides a tutorial on how to create Bitcoin addresses....thanks....but the reason I say this is because he points to bitcoinsharp as being a great C# library for making Bitcoin addresses.... It isn't... bitcoinsharp is obsolete and it creates OLD UNCOMPRESSED PUBKEY ADDRESSES so he is recommending you use a C# library that creates old style addresses and bloats the blockchain and makes transactions larger? Doesn't seem very satoshi like. Thashiznets on github actually updated the bitcoinsharp code to do compressed pubkey addresses and I'd find it likely that Nicolas Dorier did in his NBitcoin implementation as well. Anyone with half a brain would suggest NBitcoin over bitcoinsharp as the C# method for address creation so not much research went into that blog post which s supposed to be helping us do something so trivial...

weev · 5時間前

There's an attempt by the United States government to sabotage Bitcoin in which Gavin is involved.

http://weev.livejournal.com/415748.html

Fake Satoshi is coming out in support of rapid block size expansion to not go to prison for tax fraud in Australia. It's a cooperative, international operation to kill Bitcoin.

eviscerations · 12時間前

/u/theymos - i don't always agree with the way you run this sub, but thanks for making this sticky.

so many fucking shills desperate to cling to this belief that this fucking con artist is satoshi it's disgusting.

i don't envy the work you'll have to do over the coming days deleting all the duplicate shitposting hive minds who won't accept the truth - that this guy is full of shit.

cheers.

twoambien · 12時間前

Can't wait until Satoshi shows up on Bitcointalk or some mailing list saying 'I am not Craig Wright'. I give it a week.

Sealyy · 11時間前

I'm currently seeing a lot of vote manipulation going on as well. +1 to raise awareness.

Stupidaussiewanker · 11時間前

If it isn't him which we all know. His digging himself a hole with the tax man

twoarray · 11時間前

Turn of events: Gavin is actually Satoshi.

illuminatiman · 12時間前

Will only believe someone is satoshi when they sell some of those satoshi coins !

RubberFanny · 11時間前

I think he is subtly hinting that we nominate him for a ton of award so he can add them to his linkedin profile! http://www.bbc.com/news/technology-36168863

What a shame the forum isn't enabled yet :( http://www.drcraigwright.net/forum/

kentsor · 10時間前

Could be a deliberate attempt to be discredited. Perhaps he is Satoshi, but this is an attempt to slide back into anonymity. Clearly very smart, so perhaps he's trying to appear as someone that's trying to claim credit but is ultimately found out to be a fraud.

pixelesmario · 7時間前

(Failed) verification of the signature posted by Craig Wright on May 2, 2016- https://github.com/patio11/wrightverification

mrdude817 · 7時間前

I like how wikipedia is now citing this very reddit thread.

earonesty · 6時間前

How can you possibly explain both the debunked command-line trickery used, and fooling Gavin in the same breath.

Guess 1 : a) Craig is satoshi (Gavin is right), and b) He lost his keys which resulted in c) A bit of crazy. I know if i misplaced >400 million dollars, I'd have a hard time formulating a coherent thought for quite some time.

Guess 2 : Gavin is no longer a credible witness to anything Bitcoin related. Maybe because of some malingering issues with core/xt/classic, or something to do with his new advisory position at DCG.

Guess 3 : Craig is very good at both social manipulation and command-line hacks. He created an environment where his signature would be verified and tricked a couple people into thinking it was a clean environment - hence the reason for the "special laptop", etc.

Any others?

pazdan · 5時間前

"Also, it seems that there's substantial vote manipulation in /r/Bitcoin right now..."

You must be new here xD, it's been going on for maybe 6 months now.

nihsotas · 5時間前

Great. This was a day, I hope it will not repeat again. So I have still time to fix my stuff and it is not stolen. Thanks JoukeH, whoever You are. Satoshi Nakamoto

BitcoinMD · 5時間前

Even if he did sign something as Satoshi, doesn't that just prove that he has one of Satoshi's private keys, not that he IS Satoshi?

DrCraigWright · 4時間前

I strongly dispute your representation of the evidence.

Bitcoin

Community guidelines

Related communities

Non-Bitcoin communities

Join us on IRC

Other Bitcoin sites

Download Bitcoin Core

調停者

MY PLEASURE

^{^{^I}} ^{^{^am}} ^{^{^a}} ^{^{^bot,}} ^{^{^and}} ^{^{^I}} ^{^{^don't}} ^{^{^respond}} ^{^{^to}} ^{^{^myself.}}

include <turingcomplete.h>