- How does the address prefix mapping work? How could I add a new prefix?
- Blockchain / Bitcoin / Previous address / Next address
- Does a 2011 client sync the whole bitcoin blockchain
- Are mainline Protestants our Brothers in Christ by virtue of the Trinitarian Baptism? [Catholic]
- Which came first, Infant Baptism ---or— Original Sin?
- BPSK demodulation
- Accelerometer BMI160 changing bias
- What are I2OSP & OS2IP in RSA PKCS#1?
- Should text be hashed before being used as an encryption key?
- Booked hotel, but never asked for payment information
- Schengen Visa application: filling out point 31 if an organization has invited
- Is there luggage storage or lockers in Biarritz?
- How does Disney World's “Magical Express” bus service work?
- Can anyone assist in identifying this large leaved plant with small blue flowers?
- What are the greatest unsolved problems of logic?
- Is this quote from Aristotle?
- Applying the Mere Means principle
- Did Aristotle discuss virginity?
- Comparing choices
- それぞれ and ずつ use and differences
Why does Monero use a 256 bit seed?
Apparently, ECC 256 bit keys have a bit strength of 128 bits. See https://crypto.stackexchange.com/questions/26791/how-many-bits-of-entropy-does-an-elliptic-curve-key-of-length-n-provide
And apparently, no one needs more than 128 bits of entropy https://security.stackexchange.com/questions/102157/do-you-need-more-then-128bit-entropy
So if I'm correct in saying that it's pointless for the private spend key to be derived from a seed with more than 128 bits of entropy, and given that it is currently the case that the private view key is derived from a hash of the private spend key, why does Monero use a 256 bit seed?
Perhaps the 'multi-target attack' mentioned here is relevant? https://crypto.stackexchange.com/questions/39991/can-i-use-128-bits-of-entropy-and-a-kdf-to-make-a-256-bit-ecc-key