Taproot

Taproot is a proposed soft fork change to Bitcoin that will allow payments to schnorr public keys that may optionally commit to a script that can be revealed at spend time.

Coins protected by taproot may be spent either by satisfying one of the committed scripts or by simply providing a signature that verifies against the public key (allowing the script to be kept private). Taproot is intended for use with schnorr signatures that simplify multiparty construction (e.g. using MuSig) and with MAST to allow committing to more than one script, any one of which may be used at spend time.

Primary code and documentation

• Original description
• bip-taproot
• Draft implementation

Optech newsletter and website mentions

2021

• Documenting the intention to use and build upon taproot
• Alternative methods of activating taproot discussed
• Summary of taproot activation discussion regarding BIP8 LOT parameter
• Summary of taproot activation discussion & additional meeting scheduled
• Meeting to discuss taproot activation mechanisms

2020

• 2020 year in review: Taproot, tapscript, and schnorr signatures
• Website tracking miner support for taproot before signaling begins
• Summary of results from surveying developers about taproot activation
• Bitcoin Core #19953 merged with consensus implementation of BIP341
• Discussion about taproot activation parameters
• Discussion of various topics, including taproot activation
• Upgrading LN commitment formats, including for taproot
• Question about the different features in taproot for upgrading
• Question about leaf versions in taproot
• Discussion about backporting wtxid relay for taproot activation
• New chatroom for discussing taproot activation
• Coinpool: using taproot to help create payment pools
• Taproot eliminates vulnerability related to segwit fee overpayment attack
• BIP341 transaction digest amended with extra commitment to scriptPubKeys
• Example sizes of multisig taproot transactions
• Request for comments on amending BIP341 taproot transaction digest
• Request for additional signature commitment to previous scriptPubKeys
• Security analysis: taproot in the generic group model
• Taproot security from quantum computing threats
• Discussion about taproot versus alternatives
• btcdeb adds tap command for experimenting with taproot and tapscript
• Final organized review, presentation slides, and LN integration ideas

2019

• 2019 year-in-review: taproot
• Impact of bech32 length-change mutablity on v1 segwit script length
• Blog post about x-only schnorr pubkeys
• Bitcoin Optech schnorr/taproot workshop
• Announcement of structured taproot review
• Update on changes to schnorr, taproot, and tapscript
• Suggested removal of P2SH address wrapper from taproot proposal
• Executive briefing: the next soft fork
• Reducing taproot commitment size
• Overview of Taproot and Tapscript
• Extended summary of bip-taproot and bip-tapscript

2018

• Taproot (major developments of 2018, January)
• What a taproot soft fork might look like

See also

• MAST

  
  

Previous Topic:
Spontaneous payments Next Topic:
Tapscript

Edit page
Report Issue