No, that particular message could be created by anyone (including people who are not Paul le Roux), who has the key to the 1Q2 address, at any time, past or present.
All we have to go on right now is that someone knows the private key that corresponds to the 1Q2 address and used it sometime before the last hour to generate a hash of a message that says that Paul le Roux sent bitcoin to Hal Finney.
How do we know the message was signed during the last hour and not in 2017 or 2014 or whatever? Does it include the hash of a Bitcoin block created in the last hour?
Maybe the key was inherited by someone? I don't intend to take my cryptos with me to the grave, or redistribute my wealth between holders, however you prefer to see it.
Oof. Apparently my irreverent tone was not well-received.
I'll be more sober about it. A cryptographic hash is not proof that data was signed by a particular individual, unless you know for certain that individual is the only person who has the key. That is a hard standard to meet with a dead man when the key has demonstrably been used after his death. That transaction in 2017 means that someone besides Finney simply must know Finney's key. Anything signed by this key cannot be trusted to have come from Finney.
Can someone who knows more than me about the internals of bitcoin help me understand:
1) Is there a place on a blockchain explorer somewhere where I could find the signature that Shkreli has posted? I tried looking up the wallet address and found the transaction from Jan 2009, but I don't see that signature anywhere.
2) The reason I ask the first question is that I believe that if the private key is compromised, then whoever has it could have generated a new signature corresponding to that wallet address and any arbitrary message, correct? So if Shkreli is in possession of the private key, he could just be banking on people not actually verifying that the signature he posted appears on the blockchain?
At its core, a Bitcoin address is a public/private key pair used to sign data. One type of data you can sign is a Bitcoin transaction, which when signed and valid, gets processed by the Bitcoin network. "Send 0.01 BTC to xyz" -- signed retrac. But it's standard public key cryptography, and you can use that key to sign any kind of data.
The signature in question was not posted to the Bitcoin network. It's almost exactly like signing an email with a PGP signature. The message/signature pair alone are proof that the message was signed by the key in question.
2) Yes. Anyone with the private key could sign a message. And for clarity, such things are not date-stamped in a secure way, so there's no way to know when it was signed.
For me, one major incongruity is that, it is possible to post such data to the Bitcoin network. If you need a permanent record of when a key signed something, that's honestly about the only thing blockchains are good for! Hal Finney understood this very well. So when he allegedly signed that message 8+ years ago for future generations to finally know the truth, why didn't he take advantage of an architecture, that he helped create, that enables making such claims in a (more) verifiable manner?
This is great info, thank you! I agree that it’s strange that Finney wouldn’t have posted this message to the blockchain. Unfortunately I think most people superficially familiar with bitcoin don’t understand cryptography deeply enough to realize that the most likely explanation for all of this this is that Shkreli or an associate is in possession of Finney’s private key.
> 2) Yes. Anyone with the private key could sign a message. And for clarity, such things are not date-stamped in a secure way, so there's no way to know when it was signed.
Certainly if the message included a hash of the last Bitcoin block that'd be a very strong date-stamp.
I would consider that a strong date-stamp too, but it doesn't do what we would need here. It can only set an earliest possible date for the message. It does not bound it on the other end.
It's like using today's newspaper to prove when a photo was taken. If the front page of Dec 13 2022's New York Times is in the photo (and the photo is authentic) then the photograph must have been taken on or after Dec 13 2022. But I could use that same newspaper in 2025 to prove the same thing. The photo was taken on, or after, Dec 13 2022.
Bounding the other end -- to prove that this key was not used after a certain point in time -- is really quite a puzzle with no particularly elegant solution, as far as I know. Trusted central authority that date-stamps and signs messages when it receives them. Or a blockchain, ironically.
Is there a way to provably destroy a piece of information? The closest thing I heard of was the Z-Cash "ceremony" [1]. If there was, we could create messages that are provably and absolutely timestamped.
Another possible way would be crafting the message in a way that requires a low-entropy system, like a living human person, a sophisticated computer, or an immense power source. But, this would only be useful on extreme time scales, or within limited space.
Such a timestamp could only be interpreted as a "no-earlier-than" proof. You couldn't use it to prove that the message was created before a certain date, as all existing bitcoin blocks can easily be referenced in any future messages.
1) Not all signatures are on chain. All that is needed is to post the signature somewhere and verify it with the message and public key.
2) Whoever has the private key can produce the signature, and the signature can only be produced by someone who has the private key (assuming the cryptography is secure)
I realize not all signatures are on the chain, that’s obvious if you know what a signature is. That’s why I’m asking whether it appears on the chain. :)
If it appears somewhere associated with that transaction, that’s pretty strong evidence that Shkreli is correct.
If it does not appear on chain at all, then Shkreli is wrong and his post proves nothing about the identity of Satoshi.
Your reaction was my reaction, for what it’s worth. It seems like everyone more or less is suspecting the same thing. (Private key leaked, no way to backdate the hash, therefore this proof isn’t as newsworthy as it seems.)
On the other hand, if it does appear somewhere in the blockchain, it’s a pretty big scoop.
"I received an email from an old cryptography community acquaintance of Finney's who has asked to remain anonymous. The email was titled "What are the odds?" It pointed out that Hal Finney had lived for almost a decade in Temple City, the same 36,000 person town where Newsweek found Dorian Nakamoto. Finney's address was only a few blocks away from the Nakamoto's family home."
Shkreli is live streaming this right now and somebody on his voice chat just said to him "No offense Martin, but you're probably the last person I would go to if I had incontrovertible evidence of Satoshi's identity"
For all the horrendous shit that this Shkreli guy is known for, I always think of his Microsoft Excel skills first.
I always wonder why people are so impressed about his excel skills.
I have seen many people in BI being much better. He just knows his shortcuts and pivot tables, this is standard stuff.
And the mayor discipline, if anything, are customized macros which run cross device for a whole department, like opening one reports, filtering the data, creating a new file with a date stamp etc and sending reports and stats.
It doesn't impress me now but it was the first exposure I had to see Excel being used fluently. I later learned that it was very common in the world of finance and nothing exactly impressive. It's like how I impress somebody with my mediocre sql skills until they see a real dba in action.
Five years from now SBF will be a Kevin Mitnick-type providing talking head advice about the future scammer du jour, teleconferencing in alongside Elizabeth Holmes from their respective prisons, while elder scamsman Shkreli moderates.
I've read about Paul Le Roux before as he is likely the person behind Trucrypt.
While he's a criminal, if he really created Truecrypt and Bitcoin and also ran an international drug/gun running operation...I'm impressed. I think this dude's story could make a awesome book/movie some day...
Here's at least one book on him: The Mastermind: Drugs. Empire. Murder. Betrayal. by Evan Ratliff.
Another is: Hunting LeRoux: The Inside Story of the DEA Takedown of a Criminal Genius and His Empire by Elaine Shannon.
Michael Mann has the rights to turn Hunting LeRoux into a film. He did Heat, Ali and Collateral (probably one of my favorite movies). Unfortunately, he also did Blackhat.
Also, the author of that book brought up the link to Satoshi. It's in his interest for the idea to be out there. Nobody would be looking up this book today, otherwise.
1) The address that was used to send this message is not the first address that the genesis(the first "mined") block sent money to.
2) The "genesis"/Satoshi address has been used through the years a lot
3) The "Paul le Roux" address is far less active
4) this transaction was made 9 days after the first block was mined
My conclusion here is: Paul le Roux _MIGHT_ be Satoshi, but unlikely, more like very early adopter who either knew Finney, Satoshi or both. But neither can be said with 100% certainty.
5) the transaction in question does not contain the message in the post. The message was just signed by the receiver's key, whose current owner is unknown.
I worked with Paul before he went down the path of the criminal. He seemed really smart too bad he went bad. This would be in 1991 or 1992. I also worked with one of the programmers caught as part of the Madoff 5. I'm hoping that is all of my brushes with people who go bad.
> Le Roux was arrested on 26 September 2012 for conspiracy to import narcotics into the United States, and agreed to cooperate with authorities in exchange for a lesser sentence and immunity to any crimes he might admit to later. He subsequently admitted to arranging or participating in seven murders, carried out as part of an extensive illegal business empire.
> Le Roux was sentenced to 25 years in prison in June 2020.
On 12 June 2020, Le Roux was sentenced to 25 years in prison. According to the presiding judge, Ronnie Abrams, "the scope and severity of Mr. Le Roux's criminal conduct is nothing short of breathtaking. I have before me a man who has engaged in conduct in keeping with the villain in a James Bond movie." However, she also added that the sentence reflected Le Roux's cooperation and the danger he faced.
This just feels like another entry in a long list of supposed proofs of who Satoshi is, which is missing detail (almost certainly by design) and which could have many other plausible explanations. The most obvious of which is that a private key leaked.
Can someone independently verify the decryption claim here?
Should I interpret this to mean that either bitcoin signatures can be attacked via hash collisions, or that they're not actually cryptographically secure, given enough time and computing resources? Either seems bad.
Unless I'm grossly mistaken, it seems Shkreli doesn't understand the basics of cryptography because he's using incorrect terminology here.
The signature isn't encrypted at all, it's just a piece of data (a hash, if you will) that was generated using the private key associated with the wallet in question.
In order to generate the signature, you need to have a message to sign, and a private key. All Shkreli has shown is that the signature he posted is valid for the given message and the wallet (which is in fact an old wallet of Hal Finney’s). I’ve posted elsewhere in this thread about this, but so far I can’t find any evidence that the signature he posted actually appears in the blockchain associated with that January 2009 transaction. Until we have proof of that, the most likely alternative explanation is that the wallet’s key is compromised and someone is signing random messages with it that say whatever they want.
A public key signature works by encrypting the hash with the private key, to verify you decrypt the hash with the pubic key and check it against your own hash of the payload.
Edit: No argument with your second point, just pointing out the mechanism does involve the signature being an encrypted form of a plaintext hash/message digest.
This is indeed how RSA works, and is seen as a weakness of RSA, among other things it can lead to accidental oracles if you use the same key to both sign and decrypt things.
To my knowledge, this is not how ECDSA works. ECDSA is "just" a signature algorithm, e.g. provides integrity and cannot encrypt or decrypt anything - in EC-land you would use a technique like ECDH to arrive at a symmetric key that you then use to do encryption.
Thanks for the clarification! I didn’t explain myself well at all, but what I was getting at was that Shkreli claims the sig “decrypts to” the message given, when it does nothing of the sort.
I used the Bitcoin-QT tab and filled out the three fields and got a green message at the top of the page that said "Message verified to be from 1Q2TWHE3GMdB6BZKafqwxXtWAWgFt5Jvm3"
Would also explain why Satoshi went silent since the guy is sitting in federal prison.
When is he getting out? I would sell my BTC before he can move all those coins.
It would be in the interest of the Bitcoin community to agree on a fork to start burning those large wallets that are know to belong to Satoshi ensuring future stability.
1. 1Q2TWHE3GMdB6BZKafqwxXtWAWgFt5Jvm3 is Hal's address, so that means the message was written by someone with Hal's private key (not from Satoshi's).
2. Hal died 2014, that address last sent btc in 2017, so someone else (estate?) had access to the private key. I wouldn't be surprised if the private key got leaked (maybe even sold), so it's entirely possible that someone else signed that message (and recently at that).
3. Not sure if there's evidence that Hal even knew who satoshi was
But yeah, crazy... I verified the message too, I just don't think it's conclusive evidence of who satoshi is/was
Interesting and important note from playerTwo in the comments.
> On December 13, 2022, Martin Shkreli alleged that a message connected to a January 12, 2009 transaction sent to the Bitcoin wallet belonging to Hal Finney, who received the first ever Bitcoin transfer, revealed Le Roux as being the sender.[44] This claim was debunked in short order by Bitcoin developers such as Peter Wuille[45], and Greg Maxwell[46]. These individuals, along with other less known pointed out the poster of the signed message was not even competent enough to spell Le Roux's name correctly. In addition, the signature does not appear in the public blockchain.
Block 170 is not the Block Satoshi Nakamoto used to send the first txn to Hal. Block 181 shows the actual txn. In it we see the send back feature of change to Satoshi Nakamoto that was unique to their wallet. In wallet 1cbq... Block 181 10 coins left in wallet went to Hal & sent 30 back to the origination wallet. This wallet was special & Hal wanted to keep it special. In the letter to Hal that morning at 12:00 Satoshi Nakamoto sender tells Hal coins were sent & the senders initials were in the wallet used to send it. That was 1-12-09 1:02am after the attempt to first test send of a txn in Block 170 was made. In the letter to Hal, Satoshi sends their regards on the morning of the Jan 12.
It's not an original idea. It was popularized a few years ago by Evan Ratliff, author of a book about Paul Le Roux, 'The Mastermind'
Convenient for the author to discover the link to Le Roux. Then talk about it on podcasts while promoting his book, and have articles written about him.
All Shkreli does is promote himself to get eyes on whatever he's doing next. You can't ignore the incentives. It's difficult to prove who Satoshi is or is not. Craig Wright made a succesful career out of it.
Also, Shkreli has been critical of Bitcoin. Picking Le Roux, a criminal, as Satoshi helps to paint Bitcoin in a bad light.
I'm watching the video and from where I started Martin is talking to the person who gave him this info and he is reading these very comments and the comments on his blog post and being very skeptical and also thinks it is fake now too. Very good watch, and I like the non-attachment to the specific outcome Martin has towards all of this. He is looking at this objectively.
Per the link, the signature corresponding to the address and message is valid. The address belongs to Hal Finney, and the message implies Satoshi (who sent him the initial btc) is Paul Le Roux. Any insights?
Summary: a private key associated with the very first non-coinbase transaction in Bitcoin appears to have signed a message making the claim in the title.
For those downplaying the claim based on the source, this is irrelevant. The signature and the public key are all that are needed. The author is irrelevant to verification, although he probably has an interesting story to tell about how he came about this message and signature.
You can see that this payment was included in block 170. The network produces ~144 blocks/day. So this transaction occurred almost at the launch of the network.
Hal Finney has claimed, without proof AFAIK, that this payment was made by Satoshi to him:
The implication is that a private key known by Finney signed the message claiming that Satoshi was Paul Le Roux. The latter was the subject of a piece speculating that he was Satsoshi:
As you can see, a signed transaction was published as late as ~2018~ 2017. Finney died in 2014.
So there are a few possibilities for what's going on, including:
1. Finney is not dead.
2. Finney's private key was leaked to someone who signed the message.
3. secp256k1 cryptography (the kind used for Bitcoin signatures) is now broken.
4. Finney signed the message sometime before he died.
Given that few outside of Bitcoin know about Finney's legendary status, (3) seems unlikely because the attacker could have just signed with the private key for the genesis block.
This leaves (1) and (2), and (4). I'm doubtful about (1). Finney suffered from a horrible, fatal disease and it was obvious in the interviews he gave.
The most likely explanations are (2) and (4) IMO. The presence of the transactions signed after Finney's death is consistent with (2).
When a Bitcoin payment is spent, the private key often has little monetary value (but a lot of privacy value). So the cryptographic material encoding it might be treated in ways allowing it to be used by others.
Then again, it's possible that Finney signed the message, later died, and his private key was leaked.
However, you slice it, this is not clear cut. There are various kinds of evidence that would make it more so, but AFAICT, they have not yet surfaced.
Edit: Maybe Finney signed the 2017 transaction before he died and then it was later published. This kind of thing might be done for estate planning (although not a good idea). The transaction:
spends three coins locked to the 1Q2 address and is dated 2017-09-05. However, one of the coins was only appeared in 2017. This raises the question of where that coin came from and whether it could have been minted before Finney's death.
From Gregory Maxwell (Bitcoin developer) on the OP comments:
> That signature type didn't exist until after Hal's was out of comission, so it was presumably created by someone who obtained hal's private keys after his death FWIW. You can see that address was actively sending transactions long after hal's death so unambiguously someone else has control of the key.
> The signature you posted isn't compatible with the Bitcoin blockchain, it's a new signature type we introduced specifically for message signing which was first released in Bitcoin 0.5.0 on November 1st 2011. But the specific format that it's in is an electrum style which wasn't even proposed until mid 2013 -- https://bitcointalk.org/index.php?topic=218471.0 I'm not sure when it was first implemented. By the time signmessage was created in late 2011 Hal was profoundly disabled and only able to use a computer with someone elses help, it wasn't widely used until years after. Other commenters have pointed out that this address was active in 2017 so that gives an obvious explanation: The message wasn't signed by Hal but whomever is using his keys now.
Hal Finney is dead, his keys were used in 2017 after he died in 2014.
Somebody knows his keys == nothing said to have been done by his key can be demonstrably proved to be him, even back to the beginning: how do we know when his private key was compromised?
I know next to nothing about the internals of bitcoin, but based on a high-level understanding of public key cryptography:
- 1Q2TWHE3GMdB6BZKafqwxXtWAWgFt5Jvm3 is the wallet address but can also be thought of as a public key. The owner of the wallet also has a private key corresponding to that public key.
- HM7vpPSUbNsfDHRX6gv8xx...[etc] is a cryptographic signature generated by signing an arbitrary message using a private key. To generate the signature, you need the plain text of the message, and a private key. To "verify" the signature (i.e., confirm that it was generated by the private key you expect), you only need the message and the public key (or the wallet address, in this case).
- Shkreli claims (and it has indeed been confirmed) that the signature he posted is valid for the message and the wallet address. In other words, someone in possession of the private key for the wallet in question, has signed the message given using that private key.
What I don't understand is where the signature came from -- I do see a Jan 2009 transaction involving that address on various blockchain explorers, but that particular signature is nowhere to be found. This could absolutely just be me not understanding how all of this works, but in order for this to be "really big news" I think you'd have to show proof that the signature given was posted with the transaction back in 2009. Otherwise, it just means that Hal Finney's wallet is compromised and someone has been signing random messages with it.
> What I don't understand is where the signature came from -- I do see a Jan 2009 transaction involving that address on various blockchain explorers, but that particular signature is nowhere to be found. This could absolutely just be me not understanding how all of this works, but in order for this to be "really big news" I think you'd have to show proof that the signature given was posted with the transaction back in 2009. Otherwise, it just means that Hal Finney's wallet is compromised and someone has been signing random messages with it.
Furthermore we know that the wallet spent coins in 2017, three years after Hal's death. Someone other than Hal had (has?) access to the private key for that address.
Update: I get it now. It doesn't have to have been on the blockchain. It's just a message that was signed with a private key, and...., using Hal Finney's public key (wallet address), the message, and the message signature, we can confirm that it was signed by Hal Finney's private key.
Of the non-government agency guesses, this one would be the most credible if not for one thing - not even Szabo could sit on $50 Billion in bitcoin and just casually never spend it. The NSA is the most credible culprit as Bitcoin creator.
However, I do think Nick Szabo is the mysterious "Nicolas van Saberhagen" creator of Monero. Besides, Monero aligns more with his ideology. Bitcoin is supremely traceable and a handy tool for government. Monero, not so much.
> Craig Steven Wright (born October 1970)[1] is an Australian computer scientist and businessman. He has publicly claimed to be the main part of the team that created bitcoin, and the identity behind the pseudonym Satoshi Nakamoto. These claims are regarded as false by much of the media and the cryptocurrency community.
I'm pretty sure created a gmx.de account around the turn of the Millennium and I'm not from a German speaking country. They had an email service and I needed an email.
The problem with absolute statements is that they always get it wrong.
2. 1Q2TWHE3GMdB6BZKafqwxXtWAWgFt5Jvm3 is Hal Finney's (Not Satoshi's) address.
3. Hal Finney passed away in 2014.
4. Some coins that belonged to that address were spent in 2017. [1]
It appears that someone else (definitely not Hal) has the private key to that address.
[1] https://www.blockchain.com/btc/tx/70ec308460a38f6de25f89c6ed...