Pages:
Author

Topic: delete - page 2. (Read 5097 times)

legendary
Activity: 1713
Merit: 1029
July 29, 2012, 11:57:05 AM
#34
What if the protection was done in such a way that a 51% attack would require the attacker to not only have tons of hashing power, but have a bunch of the cryptocurrency wallet programs running? This could be executed like this:

The current blockchain would the the blockchain the majority of the clients are using, so no matter how much hashing power is poured into mining an alternate blockchain, unless the majority of clients are getting that block projected as it is mined, merging the chain would cause the other clients to disregard the forked chain as it wasn't the one they agreed to use. As well, while someone could rent a bunch of EC2 instances and run tons of clients on them, perhaps the system would also take into account the ip-space diversity, making a 51% attack require tons of clients running all over the place (aka, needing a botnet).

Would that work at all or am I just spewing out words?
legendary
Activity: 1190
Merit: 1000
July 29, 2012, 11:50:25 AM
#33

Maybe you need to reread the software license. This is a seriously uninformed comment.

So, you a mere software license,  a legal construct, would prevent a developer from intentionally making a mistake that is (for outside auditor) indistinguishable from honest mistake and allows remote code execution ?

Good grief, as long as we have a good software license, we are quite safe indeed   Roll Eyes
 

Some people (usually those who cannot read or write code) feel safer with a proprietary software license and closed code bases. They presume if the attacker cannot read the code, then the product is impenetrable. Unfortunately, that is a false presumption.

For those of us that can read & write code, we would rather have access to it. Having the permission to modify it is also nice.

To answer your question, yes a license can prevent that sort of mistake by enlisting the entire world to examine and improve the code base.
member
Activity: 112
Merit: 10
July 29, 2012, 10:36:35 AM
#32

It's not an investment vehicle. Exchanging one currency for another is not investment. It's valueless hedging. Musical chairs does not a factory make.

What the living hell makes you think crypto-coins are, at this point, currencies ?

They are, depending on how you view them, exotic goods or extremely exotic derivatives/securities of a very special kind.


It's the least amount of effort which leads to a different analysis: None of the big investors actually give a shit for bitcoin evolving into something useful for many different interests. Furthermore, since the big shots want it easy, they will attack any innovator that makes things less comfortable. Because they can. There's several such wankers already in this community.

And who are the glorious victimized innovators, might I ask ?

"Accountability and feedback"... Fuck you and your crumbs from the master's table.

The fat lady sings again...

Maybe you need to reread the software license. This is a seriously uninformed comment.

So, you a mere software license,  a legal construct, would prevent a developer from intentionally making a mistake that is (for outside auditor) indistinguishable from honest mistake and allows remote code execution ?

Good grief, as long as we have a good software license, we are quite safe indeed   Roll Eyes
 
hero member
Activity: 686
Merit: 500
Wat
July 29, 2012, 04:20:29 AM
#31
There are several decentralized proof-of-stake proposals, here is one: https://bitcointalksearch.org/topic/m.462786
The idea is to solidify the true chain with checkpoints that are signed by participants who have financial interest in the cryptocurrency. This means that if there's a fork before the checkpoint block, it doesn't matter which branch of the fork is chosen (all the participants who have financial interest will follow the same rules therefore they'd choose the same branch, so if the branch was prepared by a single entity with lots of hashpower who competed with all the distributed hashpower then it's fine to choose the branch of this single entity), and therefore if someone wants to protect himself from 51% double-spending attack he simply needs to wait until a signed checkpoint block in order to be sure that the relevant transaction couldn't be reversed. An attack with lots of computing power cannot fake ECDSA signatures as if he had more financial interest than all the others, because that'd be infeasible without knowing the privkeys that control the coins.
I think that both Litecoin haters and Litecoin supporters would agree that it'd be a very worthwhile experiment to implement a decentralized proof-of-stake in Litecoin, but it's not an easy design/programming task and it should be done carefully, preferably by a team of programmers.
Coblee: maybe it's indeed better that you start a thread when you have time to brainstorm serious ideas, to avoid the offtopic BCX comments.

This proof of stake is an interesting concept.
hero member
Activity: 686
Merit: 564
July 29, 2012, 04:16:50 AM
#30
That's the paradox that needs to solved or a system to prevent abuse. Solidcoin's 51% attack schema worked, trust me I tried a dozen times from every angle I could. Unfortunately I think it was the wrong approach or better said, the wrong execution of the right idea.
You didn't try hard enough.
sr. member
Activity: 360
Merit: 251
July 29, 2012, 04:05:53 AM
#29
There are several decentralized proof-of-stake proposals, here is one: https://bitcointalksearch.org/topic/m.462786
The idea is to solidify the true chain with checkpoints that are signed by participants who have financial interest in the cryptocurrency. This means that if there's a fork before the checkpoint block, it doesn't matter which branch of the fork is chosen (all the participants who have financial interest will follow the same rules therefore they'd choose the same branch, so if the branch was prepared by a single entity with lots of hashpower who competed with all the distributed hashpower then it's fine to choose the branch of this single entity), and therefore if someone wants to protect himself from 51% double-spending attack he simply needs to wait until a signed checkpoint block in order to be sure that the relevant transaction couldn't be reversed. An attack with lots of computing power cannot fake ECDSA signatures as if he had more financial interest than all the others, because that'd be infeasible without knowing the privkeys that control the coins.
I think that both Litecoin haters and Litecoin supporters would agree that it'd be a very worthwhile experiment to implement a decentralized proof-of-stake in Litecoin, but it's not an easy design/programming task and it should be done carefully, preferably by a team of programmers.
Coblee: maybe it's indeed better that you start a thread when you have time to brainstorm serious ideas, to avoid the offtopic BCX comments.
Edit: this link explains the proof-of-stake ideas better: https://en.bitcoin.it/wiki/Proof_of_Stake
hero member
Activity: 686
Merit: 500
Wat
July 29, 2012, 02:46:23 AM
#28
If a fork comes out and its still got the 51% vulnerability it is no better then bitcoin.

If bitcoin cant survive without chain lock ins it cant advertise itself as p2p either.
legendary
Activity: 2940
Merit: 1090
July 29, 2012, 12:06:17 AM
#27
Another approach that has so far been working really really well for those that have taken it is to put aside the actual using of a blockchain format for your new currency until some future time when the sheer volume of transactions will provide enough incentive (via transaction fees) for miners to get on board. All the chains that have taken this approach, that I know of, have proven far far more successful (in such terms as how many dollars each coin is worth for example) than any of the alts that have tried to fly in blockchain format throughout this early period.

For example although DeVCoin got quite a bit of hashing power through merged mining, and GRouPcoin seems to have survived simply by no one being interested enough to attack it yet, neither are worth nearly as much as the coins that took the more cautious approach of retreating to an Open Transactions format until such time as deploying as a blockchain again starts to look less vulnerable than it looks so far. (GRouPcoin is their weathervane for that; the longer GRouPcoin continues chugging along without being crushed, the more the other coins keep saying hey maybe we could have stayed in blockchain form afterall, like GRouPcoin did, maybe we too would have been unattacked all this time... But, notably, GRouPcoin is valued far less than the coins that retreated into the security of the Open Transactions form...)

-MarkM-
full member
Activity: 182
Merit: 100
July 28, 2012, 11:55:48 PM
#26

Is the point to move closer to centralization and put the power in the hands of the wealthy? We already have that system. It’s global.

At this point, cryptocoins are best seen as investment vehicles. People who have invested a lot into an investment vehicle tend to work towards ensuring that it does not devalue.

The logic for giving people with the biggest investment in the chain "superpowers" is sound.

This rhetoric wouldn't fly on the school playground, how the fuck do people actually believe this.

It's not an investment vehicle. Exchanging one currency for another is not investment. It's valueless hedging. Musical chairs does not a factory make.

It's the least amount of effort which leads to a different analysis: None of the big investors actually give a shit for bitcoin evolving into something useful for many different interests. Furthermore, since the big shots want it easy, they will attack any innovator that makes things less comfortable. Because they can. There's several such wankers already in this community.

Quote
Solidcoin merely gave too much superpowers and in a technologically inferior manner. I'm sure there is a less noxious way that would allow to retain some accountability and feedback from "peasants".

It gave out no superpowers. One little clique had them.

"Accountability and feedback"... Fuck you and your crumbs from the master's table.

Quote
Now, there is another sound approach - you see, unless there is an AI catering to the chain, there already is no less than one implicit "trust node", the developer.
And you trust the developer absolutely.
You trust him not to put a well-disguised "accidental" remote exploit into the code to pwn your box and take your money Grin .

Maybe you need to reread the software license. This is a seriously uninformed comment.

Quote
So you may as well allow yourself to occasionally accept "this blockchain is canon, the other one is heresy" kind of "decrees" signed by dev-node...

When the possibility of checkpoints was added, it was by vote of the user.
full member
Activity: 182
Merit: 100
July 28, 2012, 11:47:20 PM
#25
If you allow partial blocks to be written say every X% transactions then it's not enough to have the longest blocks, you also need to maintain that speed and during an attack speed varies even if they are blind mergers. Attackers will have to check their stats all the time. Once there's multiple attackers the threshold goes from 51% to 75% or more.

The solution to the 51% problem is either an emergency pool that mines only when there's a sudden drop in hashrate, leaving the altchains to grow (or you'll replace violence by the state with violence by zealots), or take a paranoid monopolar (easily bipolar) system and make it naturally multipolar.
member
Activity: 112
Merit: 10
July 28, 2012, 11:44:31 PM
#24

Is the point to move closer to centralization and put the power in the hands of the wealthy? We already have that system. It’s global.

At this point, cryptocoins are best seen as investment vehicles. People who have invested a lot into an investment vehicle tend to work towards ensuring that it does not devalue.

The logic for giving people with the biggest investment in the chain "superpowers" is sound.

Solidcoin merely gave too much superpowers and in a technologically inferior manner. I'm sure there is a less noxious way that would allow to retain some accountability and feedback from "peasants".

Now, there is another sound approach - you see, unless there is an AI catering to the chain, there already is no less than one implicit "trust node", the developer.
And you trust the developer absolutely.
You trust him not to put a well-disguised "accidental" remote exploit into the code to pwn your box and take your money Grin .

So you may as well allow yourself to occasionally accept "this blockchain is canon, the other one is heresy" kind of "decrees" signed by dev-node...
member
Activity: 70
Merit: 10
July 28, 2012, 11:32:56 PM
#23
i am not saying anyone here is mal intentioned - i want to believe everyone here honestly wants to fix the issue.

i am just pointing out that that the fixes proposed thus far have some severe flaws...but i cant come up with anything better myself.

IMO people should accept 51% attacks as part of the risk of dealing with nascent alternate cryptocurrencies, one which there is no fix besides throwing in extra hash power yourself to protect your investment, and that is that
full member
Activity: 182
Merit: 100
July 28, 2012, 11:30:21 PM
#22
Supernodes allow even the peasants to mine the trust chain. And besides it's unnecessary if you just allow potentiall attackers to fuck up each others' forks by using partial blocks.

I cannot believe you guys think the peasants should be second class especially regarding trust nodes.

Fuck this.

It's a good thing my friends are working on something compatible with most chains cuz it seems each community does not know how to say no to power trips.
legendary
Activity: 2940
Merit: 1090
July 28, 2012, 11:21:19 PM
#21
No, the point is anyone can buy a dirt cheap mass-mass-mass-produced ASIC coffeewarmer but its special purpose hardware so an attacker would not just happen to have tons of them lying around left over from cracking some CIA private communique or whatever.

Admittedly putting power in the hands of the masses does tend to mean putting it in the hands of the botnets... But you plan that anyway it seems.

-MarkM-
member
Activity: 70
Merit: 10
July 28, 2012, 11:19:59 PM
#20
Is the point to move closer to centralization and put the power in the hands of the wealthy? We already have that system. It’s global.
this
legendary
Activity: 2940
Merit: 1090
July 28, 2012, 11:12:11 PM
#19
Part of the problem is that security costs, and your whole objective seems to be to make mining not cost anything.

As long as you make mining so easy anyone can do it, it will be so easy anyone with as much computer power (or money, whatever your powerbase is) as all those cheap old obsolete machines your miners use can attack it.

To stop attackers you need mining to be so hard that even for the professional miners mining legitimately it is very hard just to keep up with the state of the art.

-MarkM-
member
Activity: 98
Merit: 10
July 28, 2012, 11:10:11 PM
#18
power corrupts. would the trusted nodes want to give away their power after they see the benefits?i dont think so.


Everyone update their litecoind / litecoin-Qt and the trusted node will lose all its power, it's as simple as that.
member
Activity: 70
Merit: 10
July 28, 2012, 11:07:41 PM
#17
i dont think we should be trading 51% attacks for centralization/supernodes/trusted nodes/shifts in the trust model.

this goes against everything bitcoin (the only succesful cryptocurrency ever so far) was designed for.

if "fixing" the 51% attacks means the above, i would rather it not be fixed.

This "trusted" node can be undone after Litecoin has enough hash rate any time.
power corrupts. would the trusted nodes want to give away their power after they see the benefits?i dont think so.

IMO everything propposed here so far goes against everything a cryptocurrency stands for, i am all ears for a decent trade off that doesnt break the principles cryptocurrencies stand for though.
member
Activity: 98
Merit: 10
July 28, 2012, 11:03:07 PM
#16
i dont think we should be trading 51% attacks for centralization/supernodes/trusted nodes/shifts in the trust model.

this goes against everything bitcoin (the only succesful cryptocurrency ever so far) was designed for.

if "fixing" the 51% attacks means the above, i would rather it not be fixed.

This "trusted" node can be undone after Litecoin has enough hash rate any time.
member
Activity: 70
Merit: 10
July 28, 2012, 11:01:02 PM
#15
i dont think we should be trading 51% attacks for centralization/supernodes/trusted nodes/shifts in the trust model.

this goes against everything bitcoin (the only succesful cryptocurrency ever so far) was designed for.

if "fixing" the 51% attacks means the above, i would rather it not be fixed.

also:
hard coding things in instead of relying on the blockchain/the cryptography/math/algorithms will only bring a false sense of security and more potential counter intuitive attacks in. because of this, hard coding things in is NOT the fix we are looking for.
Pages:
Jump to: