Are received BTCs really mine?

2

when somebody send me BTCs I recognize that by seeing a transaction output is equal to my address. But how can I be sure that it's really me and only me who can spend the output?

I can check, I can unlock the output. But consider I'm an evil, I sell BTCs to somebody. But I create a multisign-script wich unblocks the transaction output also by my private key and when I receive $ I take my BTCs back.

Is there a protection against this? Do wallets check the output scripts somehow before claiming the balance?

smrt28

Posted 2017-12-08T07:35:35.107

Reputation: 135

Answers

3

Wallets will only consider outputs to be theirs if it is something that it can spend from. This usually entails checking the output script against the set of scripts that your addresses will be used to generate. So even if you can sign for something, if the script does not match any of the scripts stored in your wallet, then it will not consider that output to be yours.

If the output was a P2SH output, then you would need to have the redeemScript in order to spend from it, so unless the sender shared that with you (and if they did, you could check for any nastiness), your wallet won't even know that you could spend that P2SH output.

Also, there is no "claiming the balance" or claiming of any sort except when you spend an output.

Andrew Chow

Posted 2017-12-08T07:35:35.107

Reputation: 40 910

so, there is something like set of acceptable script templates which could be used for addr to addr transfer?smrt28 2017-12-08T07:52:22.580

Yes. There are script templates, and most wallets will only watch those script templates. There is no need to try every single output to see if you could spend it; that would be extremely computationally expensive and open up several DoS vectors.Andrew Chow 2017-12-08T07:54:22.517

Asked: 2017-12-08T07:35:35.107

Viewed: 603 times

Active: 2017-12-08T07:39:59.160