From d201d139cd159e3d762c922349c9705c8ab6bbdb Mon Sep 17 00:00:00 2001 From: Jonathan Brown Date: Tue, 30 Dec 2014 14:22:50 +0700 Subject: [PATCH] Mention that "Unsecure money receiver" use-case prevents theft --- bip-0032.mediawiki | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bip-0032.mediawiki b/bip-0032.mediawiki index 7e842044..60a31993 100644 --- a/bip-0032.mediawiki +++ b/bip-0032.mediawiki @@ -178,7 +178,7 @@ Such a mechanism could also be used by mining pool operators as variable payout ====Unsecure money receiver: N(m/iH/0)==== -When an unsecure webserver is used to run an e-commerce site, it needs to know public addresses that are used to receive payments. The webserver only needs to know the public extended key of the external chain of a single account. This means someone illegally obtaining access to the webserver can at most see all incoming payments, but will not (trivially) be able to distinguish outgoing transactions, nor see payments received by other webservers if there are several ones. +When an unsecure webserver is used to run an e-commerce site, it needs to know public addresses that are used to receive payments. The webserver only needs to know the public extended key of the external chain of a single account. This means someone illegally obtaining access to the webserver can at most see all incoming payments but will not be able to steal the money, will not (trivially) be able to distinguish outgoing transactions, nor be able to see payments received by other webservers if there are several. ==Compatibility==