The average user who uses bitcoin to send, receive or store value will mostly not notice these improvements (other than a new address format).

But like segwit in 2017, there are plenty of upgrades for greater efficiency, flexibility and privacy in bitcoin.

340-342 are big ones.
BIP340 standardizes the use of something called Schnorr signatures - the building block for 341 and 342.

Previously, bitcoin has used ECDSA (google if nec) to authenticate its tx's.

Schnorr signatures are more provably secure, non-malleable, and linear (this is the key part).
Because they are linear (can be added), Schnorr signatures allow for very simple key and signature aggregation.

This enables what are called "multi-signature transactions" without the world knowing there are multiple parties behind the public key/signature.
Perhaps one would want a bitcoin script to specify that at least 3-of-5 participants must provide their signatures to spend coins.

With ECDSA, m-of-n multisig tx's need at least M signers to prove ownership of a UTXO and thus would need M signatures, increasing tx size and fees.
This is clearly not scalable.

But with Schnorr, the M signatures can be aggregated into a single signature, without needing to publicly identify itself to the network as a multisig signature.
In layman's terms: Schnorr allows something called multisig transactions, which means bitcoin can be used for more complex transactions than just "Alice sends Bob $5"

Some examples of why you would want this:
2-of-2: Husband and wife savings account — both signatures are required to spend the funds, preventing one spouse from spending the money without the approval of the other
2-of-3: Parents’ savings account for child — the kid can spend the money with the approval of either parent, and money cannot be taken away from the child unless both parents agree
2-of-3: Decentralized cold storage vault - One of the keys is held in your own home, the second in a bank safe deposit box and copies of the third key are distributed to a close friend, a relative and stored in the office.
The home vault is not vulnerable to raiding or burglary because spending the money requires a visit to either the friend, bank or office. Losing the safe deposit box also doesn't result in loss.
BIP341 extends upon Schnorr with something called Taproot.

Taproot works to conceal other complex Schnorr-enabled use cases as normal, single-key spends to the blockchain.

Basically, it increases privacy.
It's implemented with something called MAST (Merkle-ized Abstract Syntax Trees).

It's not too important to understand how they work, but what they provide is key.
If we have some complex script that says a party cannot spend their coins until a month has passed (a timelock) or that they could be spent with a 3-of-5 multi-signature transaction, then as it stands in bitcoin today, both conditions will be revealed once the coins are spent.
With MAST, if any of the data in the Merkle tree is revealed, we can easily verify it's legitimacy with just the Merkle root, while keeping the rest of the tree and any other conditions hashed and hidden.
This means that only the condition that is met needs to be revealed if all participants agree.

Nothing more.
AND since we can execute complicated transactions using just one signature, the number of bytes used for aggregated keys and signatures is exactly the same no matter how many signers are involved.

In other words - we can do fancy stuff privately and efficiently.
BIP342 introduces something called Tapscript.

Basically, this is an upgraded version of bitcoin's programming language - so that all of the structural improvements in 340 and 341 can be implemented.

It's not important for most users to understand what 342 changes.
extra-layman's terms:

Bitcoin is getting better.

the fed is still printing.

do what you want.

• • •

Missing some Tweet in this thread? You can try to force a refresh

Keep Current with Berryhorse

Berryhorse Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!


Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!