Topic: Best way of initial coin distribution (Read 5230 times)

Okay, I unkinked it.  I finally know the RIGHT way to do a PoW/PoS hybrid coin.  I haven't made the blog post yet, but my thoughts drifted back to it in the context of another discussion and I thought about how to get the people who provide security paid in proportion to the security they provide, and I sat down and did math and eventually came up with something that will definitely work.  The coin remains a PoW/PoS hybrid forever - but proof-of-stake becomes more important (because the coin supply is increasing) so proof-of-work becomes proportionally less important as time goes on.

First of all, there's a mining subsidy for hashing.  It could decline over time - that's up to whoever sets the coin parameters - but it need not.  For purposes of the example, I'm going to say the miner gets one 'dirt' every time he mines a block, forever, but this becomes less important as time goes on because the stake portion of the system starts dominating security - and eventually provides the bulk of the awards generated by the coin. 

When a transaction is made, it has to be 'staked' - that is, it has to commit to a past block and can be included only in block chains generated from that block.  This means that if an attacker is mining a chain that he has not revealed, transactions made by other people cannot be included in his attack chain.  Transactions once staked, have become a finite resource that can be counted in support of one side of a fork and CANNOT be used to support the other.  So the only txIns that can count for both chains are the ones that are explicitly double spent by their owners.  If you stake your transaction on the losing side of a block chain fork, the transaction 'Never Happened' and cannot be replayed into the new block chain.

The owner of each txIn gets "Head Stake" (calculating as compounding interest) for the interval between the generation of the txOut and the block where it gets staked as a txIn.  The miner gets "Tail Stake" - the same rate of interest, but for the interval between the block the transaction is staked and the block the miner puts the transaction in. 

Where "Split Stake Awards" is defined as the amount of stake interest awarded for a single block for all txouts created before the fork and used as txIns in transactions staked after the fork, and the Mining Subsidy is the subsidy for a single block, the priority of any chain as compared to another is calculated as

(Hashes since fork) X (Split Stake Awards + Mining Subsidy)

Which is to say, the miners and the stakers are counted as amplifying the security of the total hashes by exactly the same proportion in which they get paid on a single block when they commit resources that can be used only once to one chain and not the other.

This starts out as straight proof-of-work, because there is NO split stake award for the first block, but after a while, depending on the staking interest rate, split stake awards get bigger than mining subsidies.  By the time we're talking about a block chain that carries a significant transaction volume, split stake awards would be the main reason why one fork is accepted over the other given remotely comparable amounts of hashing.  The odds of forking the chain with a block chain that you've prepared in secret would rapidly approach nil unless you have more than half of the (dirt X hashing power), and the importance of the dirt would far exceed the importance of hashing power.

Mining remains permissionless, and even if somebody with more wealth might be able to produce a higher-priority block because they stake their own coins, it won't matter if their block comes out more than a few seconds after yours.

Cryddit

I'm still looking for some insight from people here in order to do this exact thing.

I have created a new Coin for ColossusCoin and a Proof of Stake only Coin and want to create a snapshot in order to distribute it to ColossusCoin holders, whatever is left after 3 months becomes part of the Development Fund.

The CV2 Blockchain runs perfectly as a pure POS only Coin and has a POS difficulty of more than 50! while also very efficient and rewarding.

https://bitcointalksearch.org/topic/ann-cv2-colossuscoin20-yobitnet-novaexchange-swap-to-colx-is-closed-941433

It's also already listed on an exchange and has it's own Block explorer.

Again, if anyone has any experience in working with snapshots and wants to help with an actual distribution in this method either for Coins, or BTC then please pm me.

A quality coin wants sophisticated, active owners...
People that can't sell a shit coin in a Death Spiral should not own crypto.

Take a snapshot of Nxt accounts by size and # of tx... plus maybe small holders of quality Nxt assets:



Write a little more code to eliminate accounts that are obviously linked or test accounts...
And you will have 1,000 small, active NXT users and an instant, quality community for your coin.

Or give away 50% to screened Nxt accounts...
And the other 50% to similar BTS or SJCX or NSR accounts and promote Nxt in the "enemy" forum.

The CLAM approach (random coin blockchain) doesn't work that well because 99% of your winners will never know/care.

I say take a snapshots of a variety of shitcoin's blockchains after they have been dumped and are almost dead. Any whales holding a premine will have dumped long ago, leaving the bagholders stuck with it after buying. The bagholders are the kind of people you want in a distribution because they are less likely to immediately dump. The miners mentality is to mine like crazy, then dump onto bagholdrs. The IPO dev's mentality is to immediately dump the premine onto some bagholders. If you distribute to a large number of existing bagholders there are bound to be plenty with the holding mentality.

Unfortunately there are no really good preemptive measures against such attacks without compromising anonymity and/or decentralized approach. Involving mobile phones in the registration process however could make large scale attacks costly and less sustainable. If you tie the registration and application to IMEI or the serial of the mobile or maybe to both two then the attacker must have several phones and lots of active SIMs to be successfull. After that if you can make a low sell wall on one exchange for a few weeks or for a month as a second distribution phase (IPO, ICO, ITO, whatever) that will make the attacker's efforts much less profitable.

Whenever I hear the word "premine" it sends that type of negative message. For me, no premine and I would like to see mining effort being given the fair chance to everybody. Something like a cpu mine concept whereby a person will have a fair chance even if you have another person that own 100 cpu, in general, it will still give the same level ofvplaying field. Also, do Announce a release date at least 3 months ahead

Right, there is no a 100% solution.

Although it's an overstatement to say that this solves the sock-puppet problem, it's a great summary of useful techniques for mitigating it. Thanks for the reference.

http://arxiv.org/ftp/arxiv/papers/1207/1207.2617.pdf

interesting, can you explain more to me?  I'd like to hear your idea.

Take a look at the distribution method used by GCoin. GCoin itself is a crap but the distribution by slots is a great idea. With this method luck, effort and determination are all important factors and nobody can complain because of unfair distribution .

Edit: Unlike in POW with slots small time "miners" will have the same chance as the owners of big farms.

More edit: If it would be a smartphone application then the sockpuppet issue is more or less sorted.

Define "fair distribution", please.

I added PoW minting just for fun, people (including me) like that warm and fuzzy feeling of finding a PoW solution.

There are such cryptoproofs that do solve sockpuppet problem.

Facebook?  Really?  What is that Proof-of-NSA?  lol

A lot of people don't have social media accounts for a variety of reason.  Some people would get their non-tech savvy friends to participate in the distribution and then buy their stake from them for $20.  You are just giving the illusion of removing "sockpuppets".


You will never get a system that provides you with verifiable "equal distribution", which is what you really mean when you say "fair distribution".  Any system that initially provides "equal distribution" will quickly turn into an unequal system.  That is life.  There is a hierarchy to nature called survival of the fittest and nobody can escape it.  I agree that everything should be "fair" but it is impossible to make everything "equal" because people are not "equal".  It seems these false arguments always come up around CfB and NXT's initial distribution because people feel like they missed out.  I think a very good argument can be made that NXT's initial distribution was extremely fair.  It lasted around two months and it did not require users to outlay a substantial amount of BTC to participate, meaning it did not discriminate against the poor.  A lot of people didn't donate because they weren't interested or didn't see the potential.  That was their choice.  Everyone in life makes calculated choices based on their abilities and rational deduction skills and we all must live with our decisions.

He has already set a permission level at 1000.

In a perfect world where all people start off on a starting line at the same time with the same tools in hand, then yes, a permissionless system is the way to go.  But that isn't the case, on this system all kinds of gate keeping policies will be set with this.  Only people in the crypto world will know, and then among those only those that can mine, and then among those only those that have good methods of mining will end up with the lion share of his tokens.  When he sets up a system of mining on his MS, he is basically only given permission to BTT people with good abilities to mine to participate. 

That of course is not a hard permission, but it is a soft permission and the system has been rigged from the start to be so. 

And again, he is going to cap it at "around 1000".  He doesn't want 10,000,000 participating.  It is clearly not an open system.

So once you have a system set up that is rigged due to the nature of contest that only some people can enter because only that select group are qualified, then all others don't have permission, whether it is a hard rule or a soft rule, it is a fact. 

Now that he has a system of permissions, the best way to go about it is to set up the system in a way that insures the most widespread distribution avoiding sock puppets and concentrations of coins into the hands of 20 people.  Just accepting donations from anybody via an IPO style launch or PoW alone simply won't do it. 

The world needs proof, real proof, not some easily faked proof that there were 1000 participants. 

CfB is talented enough and has more than enough money to make 1000 fake sock puppets via amazon and have them mine on MS and then have cryptographic proof that there were 1000 accounts, but that doesn't mean anything.  It could still just all be his 999 sock puppets. 

So any system that just requires one day of mining by any computer any where without restrictions is a system that I call bull shit on.  And I will just be the first of many. 

I cannot think of a single way to reach a fair distribution without having a permissionless-entry stage.

I mean, when he INVENTED coinage Croesus of Lydia went entirely the other direction:  He said, "Here are tokens I give out to people who do me favors.  Now all of you have to give me one every year, so you all get to figure out what favors you can do for the people who do me favors in order to get them to give you one... every year."

In one swell foop the guy invented currency, government corruption, and taxation.  And, oh yeah, capitalism.  But he didn't see that last one coming.

The point is, not only was it "Permissionless" entry, it was COMPULSORY entry into the market, fostered by everybody working under an unavoidable debt.

CfB doesn't have the power to compel people to use his tokens, so permissionless is really the best he can do.

I just focused on the wrong part of the sentence then.  The part where it said it isn't about PoS vs PoW, but it is about finding a way that makes in impossible to economically game a system.  

Whether it takes 1 day or 100 years to distribute coins, it doesn't matter.  What matters is that it is done very widely, and in a way that the coins are still very valued.  How a person reaches the end goal doesn't matter.  There are advantages and disadvantages to both systems.  Not going to hash out the old debate here of PoW vs PoS.  People are already stubborn and hard headed in their beliefs.

Back to the point. How can CfB distribute his coins for his new project in a way that people won't accuse him of only having 20 stake holders?  

Hey, I got nothing against Proof-of-stake.  In fact it's got a lot going for it and I think I know a better way to secure a PoS chain that I'll probably try to do.  But because I'd want a fair distribution, I'll start with proof-of-work or something like it, then transition gradually to proof-of-stake over the course of years, while continuing to distribute coins steadily -- making a very slowly-increasing fraction of the distributed coins be PoS as opposed to PoW until the PoW awards are insignificant compared to the rest.

I am still looking for help with distribution through the CLAMS method through a snapshot.

I was working with the developer of CamorraCoin but he has been absent for more than a week and need someone else with knowledge in the field.

Please pm me if interested or know someone who is willing to help