-
Notifications
You must be signed in to change notification settings - Fork 3
Public redemption with known secret #115
Comments
Thank you for your question/feedback! BitcoinIn the Bitcoin HTLC we can see that a Which means that to create a transaction valid to spend the HTLC output, a valid signature of the inputs/outputs needs to be provided. EthereumYes, it is absolutely true. Anyone can trigger the Please note that we already working towards a new HTLC that would remove this possibility when trying to not embed the redeem/refund address in the HTLC. See comit-network/spikes#4 for more details. For the sake of completeness, let's review the scenario you are suggesting: Alice redeems on EthereumIn the case where Alice is the one who redeems Ether. If the secret has been leaked than what it means is:
In this specific scenario, 1. is a more serious concern than 2. Bob redeems on EthereumIn the case where Bob is the one who redeems Ether. Two sub-scenarios:
(1) If Alice has already redeemed her asset, Bob needs to proceed with redeeming. (2) If Alice has not yet redeemed her asset and someone decides to trigger Bob's Ether then indeed we remove the control of redeeming from Bob. However, Bob has little choice in this scenario as Alice is the one to redeem the asset first to reveal the secret. ConclusionIn conclusion, the fact that anyone could redeem the Ether HTLC (to the initial recipient's address) is not great however it is not a security issue per se. One could even see a service that redeems for Bob as soon as Alice redeems, allowing Bob not be permanently online when proceed with an atomic swap. In any case, we have already taken step towards a design that does not allow this exact thing. I hope this helps! |
@birnbuazn feel free to close this issue if @D4nte comment explains our standpoint well enough :) |
Please re-open if the question/feedback has not been fully answered. |
Open/unresolved questions
redeem
the asset. Theredeem_identity
is baked into the contract, so nobody but the intended recipient can get the money, but it still feels wrong that anybody could trigger the process. What if the secret has been leaked and the recipient doesn’t want to redeem?The text was updated successfully, but these errors were encountered: