https://en.bitcoin.it/w/index.php?action=history&feed=atom&title=User%3ASergio_Demian_LernerUser:Sergio Demian Lerner - Revision history2026-05-25T10:41:40ZRevision history for this page on the wikiMediaWiki 1.43.8https://en.bitcoin.it/w/index.php?title=User:Sergio_Demian_Lerner&diff=35879&oldid=prevSergio Demian Lerner: Created page with "==Who am I?== Sergio Demian Lerner * Bitcoin security researcher * Master in Computer Science * Reporter of Bitcoin vulnerabilities [[Common_Vulnerabilities_and_Exposures|CV..."2013-03-05T14:07:55Z<p>Created page with "==Who am I?== Sergio Demian Lerner * Bitcoin security researcher * Master in Computer Science * Reporter of Bitcoin vulnerabilities [[Common_Vulnerabilities_and_Exposures|CV..."</p>
<p><b>New page</b></p><div>==Who am I?==<br />
Sergio Demian Lerner<br />
<br />
* Bitcoin security researcher <br />
* Master in Computer Science<br />
* Reporter of Bitcoin vulnerabilities [[Common_Vulnerabilities_and_Exposures|CVE-2012-3789, CVE-2012-4682, CVE-2012-4683, CVE-2012-4684, CVE-2013-2272, CVE-2013-2292 and CVE-2013-2293]]<br />
* Designer of Mental Poker protocol MPF.<br />
* My Blog: bitslog.wordpress.com<br />
* My Tweets: @SDLerner<br />
* My company: http://www.certimix.com/<br />
<br />
==Bitcoin related publications==<br />
<br />
* [http://www.dc.uba.ar/inv/tesis/licenciatura/2010/lerner MPF: A new family of practical and secure Mental Poker protocols]<br />
Tesis de Licenciatura en Ciencias de la ComputaciĆ³n, Facultad de Ciencias Exactas y Naturales, Universidad de Buenos Aires<br />
November 15, 2010<br />
<br />
In this thesis we propose a new family of practical and secure mental poker protocols, which are efficient enough to achieve real-time performance to security play Texas Hold-em over the Internet, for up to ten players, using personal computers.<br />
<br />
* [http://bitslog.wordpress.com/2012/04/09/mave-digital-signature-protocol-for-massive-bulk-verifications/ MAVE: Digital Signature Protocol for Massive bulk verifications]<br />
April 9, 2012<br />
<br />
In this paper we propose new decentralized digital signature protocols<br />
to allow massive bulk verifications (MAVE). The protocols satisfies very<br />
tight requirements of performance and storage. MAVE requires a third party<br />
with no special trust and a broadcast medium. MAVE can be used for groups<br />
of millions of users or autonomous agents that generate thousands of signatures<br />
per second that must...more<br />
<br />
* [http://bitslog.wordpress.com/2012/04/16/mavepay-a-new-lightweight-payment-scheme-for-peer-to-peer-currency-networks/ MAVEPAY: a new lightweight payment scheme for peer to peer currency networks]<br />
April 16, 2012<br />
<br />
In this paper we propose a new payment scheme based on the<br />
MAVE digital signature protocol, for use in peer to peer currency networks<br />
based on a block chain. The proposed payment scheme requires less resources<br />
for the users than Bitcoin and can be used to create a truly lightweight peer<br />
to peer currency network that stands 700 payments/second, and 5 million new<br />
user accounts/year, on an...more<br />
<br />
* [http://bitslog.wordpress.com/2012/08/06/destination-address-anonymization-in-bitcoin/ Destination Address Anonymization in Bitcoin]<br />
August 6, 2012<br />
<br />
Protocol proposal for anonymous customer-merchant relations in Bitcoin.<br />
<br />
* [http://bitslog.wordpress.com/2012/11/30/bitmessage-completely-broken-crypto/ Bitmessage v1.0: completely broken crypto]<br />
November 30, 2012<br />
<br />
Description of security vulnerabilities of the Bitmessage protocol 1.0<br />
<br />
* [http://bitslog.wordpress.com/2013/01/23/the-bitcoin-trasaction-fetch-memory-exhaustion-attack-tfmea/ The Bitcoin transaction fetch memory exhaustion attack (TFMEA)]<br />
January 23, 2013<br />
<br />
Disclosure of a DoS vulnerability in Bitcoin clients.<br />
<br />
* [http://bitslog.wordpress.com/2013/01/23/new-bitcoin-vulnerability-get-your-peer-public-addresses/ Get your peer public addresses]<br />
January 23, 2013<br />
<br />
Disclosure of a vulnerability in Bitcoin that breaks its pseudo - anonymization.<br />
<br />
* [http://bitslog.wordpress.com/2013/01/08/cve-2012-3789-disclosure/ CVE-2012-3789 disclosure]<br />
January 8, 2013<br />
<br />
Disclosure of 3 DoS vulnerabilities I found in Bitcoin.<br />
<br />
* [http://www.bouncycastle.org/jira/browse/BJB-22 Vulnerability in BouncyCastle ECDSA signature verification]<br />
February 19, 2013<br />
<br />
Disclosure of a security vulnerability found in BouncyCastle ECDSA signature verification code that, in applications that must verify other people's signatures, can result in remote application terminations and DoS attack. If affects Bitcoin nodes coded in Java/C# that uses the Bouncycastle cryptographic library.<br />
<br />
==My Patents==<br />
<br />
* METHOD AND APPARATUS FOR EFFICIENT AND SECURE CREATING, TRANSFERRING, AND REVEALING OF MESSAGES OVER A NETWORK<br />
United States 12/904,033<br />
Filed October 13, 2009<br />
<br />
The patent describes a new realtime peer to peer method for playing with cards over a network with cryptographic security (a '''Mental Poker protocol''')<br />
<br />
* METHOD AND APPARATUS FOR EFFICIENT AND SECURE CREATING, TRANSFERRING, AND REVEALING OF MESSAGES OVER A NETWORK<br />
Europe PCT/US10/52550<br />
Filed October 13, 2009<br />
<br />
== See also ==<br />
*[[Research]]</div>Sergio Demian Lerner