Topic: Decrits: The 99%+ attack-proof coin - page 8. (Read 45353 times)

Okay, okay, that's an assumption. This assumption is stronger than those made by bitcoin. It's a start. Before, I thought that it's impossible to know the truth at all by passive observation, now it turns out that you need to disrupt the communication severely to prevent that. If broadcast is not working at all, the network is split and the situation is hopeless. If it works, but slower than usual, then we need to evaluate how much slower it can be made, how this could be prevented, etc.

At least there is a grade of how long were you offline. The nodes connecting for the first time ever are the extreme case. A node who missed one message is probably easier to handle.

And who decides who was 1, 2, 3?

You keep pushing the problem to the same problem all over again. I already told you this, but you refuse to listen. See quote of myself below.


For how many more posts are you going to waste time talking in circles like a dog chasing his tail? You can't design away the problem of needing consensus on the order but no one can make that decision (without opening a point of failure that can be gamed).

I hear an echo:


Because it is wrong as explained above.

Well, now there's an algorithm, we can get down to business. Like, calculate what a particular ID allocation strategy could give you, in what time and for how much money
One thing I didn't specify is the random generator to use. Lets settle for HMAC_DRBG from http://csrc.nist.gov/publications/nistpubs/800-90A/SP800-90A.pdf initialized with the first post of this thread as it is now in UTF-8

The point I was making by analogy (was not about the viability of propagating the info to those who are online rather) is the "always-online" is about as far from reality as you can get. There is no way to relax from those who are always online to those who are not always-online being able to know who to believe is telling the truth.

I thought we are discussing 50+% nodes attack. With more than half nodes not cooperating in broadcast reliability is seriously affected. And reliability of transfer is far far away from time bounded broadcast.

No, that's not so unreasonable. It's not true, of course, it's an assumption, but in a highly connected network the broadcasts are quite reliable. You can try to amuse yourself by computing the probability of a message being not received by a peer when everyone is connected to N other peers, as a function of reliability of a connection and size of the network. Imagine that everyone passes the message to all neighbors once upon receiving it.

Now with not-always-online nodes there may be problems, but again these could be addressed to minimize damage to them.

Another *new* ALt coin!

Super!

Alt coins rock!

Super!

I can nearly have as many coins as I can have Currency!

Super!

What's next?/  poocoin, aaacoin,aabcoin,aaccoin... abacoin...zzzcoin?

Super!

I hope Zack, Jeb and Bongo are mining!... i bet they are!

Super!

I tried explaining this to him, but he adamantly refused to accept it. There is no point in arguing with him.

So the whole issue is based on the ability of SH to choose their IDs? Let their ID be their number in the SH sequence. So the very first SH has ID=1, the one who registers after him ID=2 and so on. Their order for signing TBs is determined by a chosen good pseudorandom number generator in [1..number of SHs at the moment], initialized with seed value of 0 at the very first TB.
Not good? Please provide an algorithm to gain significant control over your position in TB signing queue with that (good luck). We can test it right away, I'll write the program SHs have very limited control over their ID now, they can just wait until the number grows to their desired position, or fill the IDs by creating a lot of SHs, which is supposed to be costly, and your resources are limited.

I skipped the rest because it was all based on this.

Ludicrous. If everyone could see everyone in the world, then there would be no corruption due to secrets. Now how do we relax that to reality.  

At this moment 6 billion people are doing something and you have no specific knowledge (but I can bet fornication is widespread).

@anty-mint
hey, "dolt" !
(may i borrow your nice style  )
I thought you had give up on Decrits long
 time ago ?
Why are you still here ?
Satan, go away :PpPpP

Etlase2 and I discussed this upthread and I think he and I agreed that without randomization of the order, that there was a threat.

The threat we discussed was that evil peers could position themselves to always be the chosen SHs and thus control all signing of TBs.

Randomized in this case means the selection order can't be known a priori when prospective SH peers chose their ID.

No there are not infinite number of ways. There is either randomization or there isn't. This is fundamental to cryptography. I suggest that you are not qualified in cryptography, and are only a (n exceptionally astute) layman. Otherwise you would have known what I meant. Am I correct?


You fail to understand a basic premise of cryptography, which is that entropy can't come from an algorithm, it can only come from instances of uncertainty occurring in nature (e.g. how often does the bee land on your flower). Thus I can for sure say that it can only come from the outside inputs to the process. And those signatures are the only outside inputs in our system. We could also use the entropy from the transactions, but that doesn't eliminate the insoluble problem I showed.


Ludicrous. Then there must be a fork for every observing peer. You fail to reason that the consensus CB entropy determines the signing order for the fork in the next CB period.


The proof is that the only way you get the necessary entropy is by having every peer compete to be first. Everyone other form of entropy has a point of failure that there is no decision, the consensus is required ad infinitum at every point where you design it away to another point.

That node itself cannot be fooled. For example, assuming that everyone is always online, the system is perfect already (under the other assumptions, of course). It's a starting point which shows that the truth can be established at least under some assumptions. Now the next question is how to relax those assumptions, to make the system more fault-tolerant, such that loss of some messages could be compensated, for instance. Etlase2 did some steps in that direction in the detailed descriptions above.

This one please. What exactly do you mean by "randomized", and what kind of attack you imagine if this property is not present?
In cryptography "random" usually means "unpredictable", which cannot be the case here, as you say in point 1. Why can't we just let SHs sign TBs in alphabetical order of their IDs? If this is bad for some reason, there's an infinite number of other ways to do it.

Every peer will decide for himself. Remember the assumption of bounded time guaranteed broadcast.

Even if that solution didn't work out, there is no proof of this statement.

Sounds dangerous

And how is this always-online node knowledge relevant when it cannot prove it is true? How will another node tell honest and liars apart? Calculate 50%+ votes?

 the reason i haven't read it yet is because i'm reading the pages in order - from 2 to say 8 Etlas seemed to prove to you that the functions he had would work, and you claimed you misunderstood what he was saying , yet even a binary dunce like myself understood the basics of what he was trying to express.

i will look at your post no problem.  

I already explained why it can't work, i.e. why it would fail. The logic presented at the link below is simple and clear.

Thanks for spamming this thread with content-free (no content) hot-air, and burying my post that contained the succinct UNARGUABLE logic why MY and Etlase2's Proof-of-Consensus can't work. Did you fail to read that I also proposed a Proof-of-Consensus coin in my thread (proof-of-hard disk) and that I was saying that both of our concepts won't work (Etlase2's is Proof-of-Share, they are both subset of Proof-of-Consensus). Why would I kill my own idea if I didn't realize it can't work?

You have not made a single technical argument in the numerous posts you've made. You obviously don't understand the technology.

It better not be deleted, or I will protest to the moderators. I have very important analysis in this thread, that I need to refer back to.

hey i never said they would be perfect ! -

as the old saying goes :

"a woman thown can not be chosen"  < i just made that up ,  sorry..