Topic: How is it going? (Read 4598 times)

Impressive! You claim to be a service provider and with your immature biased blabla you managed to land on my ignore list together with your service after just some 5 posts that I read. Congratulations, you are number 7 on that list.

A compromised BCCAPI cannot double-spend. It cannot sign transactions because it doesn't have the keys. It could re-send the same transaction but that is pointless. It could lie to the client about a balance but that is quickly discovered.

To suggest that we would be careless enough to set up operations where "all it takes is one disgruntled employee" is simply insulting.

If you propagate the notion that nobody can run a secure service on the Internet (meaning something other than a one-man shop) then you are playing in the hands of the incumbent players (banks).

Additionally, the damage caused by accepting double-spent coins from a compromised BCCAPI server can be greater than whatever amount is stored in a hosted wallet.

I don't want us to derail this thread with pros/cons of various services, and I don't want to throw mud,  but I'll have to defend myself here.
I agree that a compromised Spinner server can lie about your balance. The damage is limited and once this happens everyone will know pretty quickly.
However, the difference is very simple: With the Spinner, whoever controls the server cannot run away with the coins.

Using the "our servers have never been hacked" argument is lame and you know it. We have seen many examples where so called secure systems have been hacked. All it takes is one disgruntled employee.

I am all for diversity, and I think we should focus on making the Bitcoin pie larger instead of fighting over the scraps. I would much rather read a thread where Paytunia describes why the service is secure (is there a firewall, is there cold storage etc) instead of spending time arguing in threads meant for something else. 

I fail to see why a BCCAPI spinner would be an option (the servers can be compromised and lead you to accept double-spent coins) and why paytunia would not (our servers have never been hacked and we are a registered business).

To make bitcoin grow stronger entails accepting diversity in design architecture and implementations. I will not issue any definitive opinion on any implementation until bitcoin reaches mass adoption.

There are two ways you can cut data usage. One is to enable "Sync on power" in the preferences window, you can do that right now. It means it'll catch up with the chain at night when you are charging the phone and have your home wifi available.

A better way is using Bloom filters. See this thread from 2011 where I introduce the idea:

https://bitcointalksearch.org/topic/rfc-requirements-for-headers-only-client-7972

It has since been implemented by Matt. With Bloom filtering you can select any arbitrary point on the bandwidth usage/privacy spectrum. If you don't mind remote nodes learning some subset of your addresses you can reduce bandwidth usage down to the minimum theoretically possible - just transactions that send money to/from your wallet plus the headers (a few megabytes of data per year).

In the likely event that you'd prefer remote nodes to be somewhat fuzzy about what you own and you have bandwidth to spare, you can use a filter that has false positives (it matches more than it needs to). It means downloading some data you then throw away but the privacy is better.

Clients can select the FP rate of their filters depending on things like wifi vs 3G vs LTE, battery usage, how much data quota you have left, etc.

For me the Schildbach-Client was a no go for its heavy data usage. How can this theoretically be brought down to some one digit MB per month?

I see the privacy benefits now but what else would put the Schildbach client ahead of the Spinner approach?

(Sure, paytunia is no option. I fully agree on that.)

Well, of course I respectfully disagree.

SPV clients like Bitcoin Wallet can be instant-on. They are not today because the programming involved is tricky and not completed yet. But we'll get there eventually. I already find Bitcoin Wallet to catch up plenty fast enough if I enable the "sync on power" option, I think in future Andreas will make this option on by default so all users benefit. It means typically the client is only a few hours behind. And of course you can spend without being fully caught up to the chain head.

The primary remaining issues are reliability (if you connect to an overloaded peer sync can be very slow), storage costs (this can be solved quite easily), and bandwidth consumption, the fix for which is largely implemented by Matt and just needs review+merge+people to upgrade.

Running SPV on a phone is by far the hardest solution to make work well. It is also theoretically the best in terms of security, privacy and how closely it matches Satoshis vision of a truly P2P system. I think once the remaining performance problems are solved there won't be much incentive to use other types of wallet.

Any solution which involves keys being stored on the server is a non-starter for me. There have been too many cases of wallets hosted by third parties getting hacked. Not to mention the legal issues.

Jan and Goonie deserve a lot of respect for their developments.

However, payment speed is of the essence while on the go, so I don't think (after careful testing) that mobile apps that hold keys or block headers in the device are suitable for widespread usage, going forward. Paytunia mobile brings the benefits of instant on and faster response time.

We (paymium, of which I am a co-founder) released an HTML 5 version of paytunia.com (namely m.paytunia.com) to complement our paytunia app on Google play and to make sure iPhone lovers can use it too (since the iOS paytunia app got kicked out of the AppStore by Apple).
A shortcut on the mobile desktop is all it takes to have the same experience as an app.
Keys are strored securely on our servers and the block chain is always up to date ("instant on" applications).

Same is true for our Instawallet app (check out the new home page of instawallet.

The number of active users of our services is around 20 000 and ramping up fast.

Hmm … now that I think about it:
Spinner needs a simple API. getBalance(address), maybe getHistory(address) and send(signedTransaction).
Without looking in the code I assume all this is publicly available even without Spinner, so I could have a website that uses your Spinner-server making you believe to have 10,000 wallets more and the numbers you named are actually addresses you ever received via the public getBalance API.

Anyway you should have a pretty clear picture of how many wallets are daily active, weekly active and monthly active although a sample of some 800 users is most likely not sufficient to get a consistent picture.

Yes, I don't have these numbers and no reason to collect them.

Cool, thanks for the detailed info
If you happen to have trend graphs of the charged wallets or a grand total of Ƀs Spinner is being trusted with, I would be very curious to see these


As you might guess from what I said above, I see no problem in stating what Jan stated above at all. Telling that x wallets hold 1 Satoshi or more is only stating that these people actually have and maybe use (certainly used) an account as opposed to had an account that they maybe used or not.

Spinner has a technical necessity for "eavesdropping" and adding a report-balance functionality to Bitcoin Wallet would indeed be more than rude so I hope that what you actually meant to say is that you do not have these numbers.

Thanks for your numbers. Here are Bitcoin Wallet numbers:

• Total installs to date: 18016 (plus several hundreds from the downloads page)
• Active device installs: 5513
• Cannot say about installs with actual BTC in them, as I would feel myself bad eavesdropping on peoples "bank accounts".

Time for an update as requested here: https://bitcointalksearch.org/topic/m.1256522

• Total installs to date: 2444
• Active device installs: 1402 (people who did not uninstall it again)
• Total installs with actual BTC in them: 870 (This is the one that really matters)

Given that Bitcoiners are sufficiently spread out that they don't meet in person very often, and shops that accept Bitcoins are rare, the numbers being posted here are actually pretty high.

Blockchain download and management has become more robust over time for anything based on bitcoinj, but there is still quite some improvements left to make.

Which version did you try (or how long ago)? It does not hold 2 GB but only approx 20 MB (headers only).

I have used all mobile wallets available, at the time anyway.

The blockchain never completed with this application. Now I think it was be unrealistic to hold 2gb on my phone.

Paytunia I had high hopes for but booted out on my model of phone. filled a bug report to them and recieved no response.

Bitcoin spinner was nice, but after coins were deleted from a family members phone (from a friend knowing what apps would not be needed for them, shhesh) I saw this as impractical for new users. I would use this myself in a flash.

Blockchain app is what I use now. very elegant. makes things all nice and linked aswell.

If you do not trust the backup/restore functionality try it with 0.1 BTC or ask some of the other 500 forum members who use it.
Back to topic.

I am soon going on vacation and have been thinking about a small project to do. Now, my wife has declared that there will be no coding going on.
Reading your post gave me this brilliant idea. My project will be to make a BitcoinSpinner guide. I'll make a PDF that will link from BitcoinSpinner's Settings -> Help option. It will basically be a HowTo describing best practices on how to secure your coins using BitcoinSpinner.
I'll throw in a section describing my motivation to make BitcoinSpinner as a free service that costs me $130 to keep alive every month and countless hours.

 

recently found bitcoin spinner for my android google cell..

I like it the most..

I like the backup and restore functions, but they are not well documented.. 

Mind you Im sure its easy, but needs a tiny bit more..  Im hesitant to try it..