Pages:
Author

Topic: Is trust in Bitcoin developers required? (Read 984 times)

legendary
Activity: 2674
Merit: 2965
Terminated.
May 19, 2015, 07:46:50 AM
#23
Even though Bitcoin, the platform itself relies on trustless transactions, the actual software relies on the trust we put on the development team.
If you didn't trust them you wouldn't download their software would you?

This is the "just don't update" argument and it's not going to fly forever.
But who would vote?

Merchants, exchanges, pools, payment providers ... anything is better than the centralized and totalitarian system currently in place.
Stop your nonsense. You're essentially calling a democratic system which is open to corruption. That would never work in this ecosystem. Most of the people/services who vote, would be paid to vote for X or Y.

The don't upgrade argument is great. As long as services don't upgrade (which they won't if it is something bad) we are fine. If it had worked so far, why would it not continue to do so?
legendary
Activity: 2506
Merit: 1030
Twitter @realmicroguy
Even though Bitcoin, the platform itself relies on trustless transactions, the actual software relies on the trust we put on the development team.
If you didn't trust them you wouldn't download their software would you?

This is the "just don't update" argument and it's not going to fly forever.
hero member
Activity: 952
Merit: 513
Even though Bitcoin, the platform itself relies on trustless transactions, the actual software relies on the trust we put on the development team.
If you didn't trust them you wouldn't download their software would you?
legendary
Activity: 3248
Merit: 1070
So what is the point of trustlessness if we are trusting developers?

Bitcoin had grown in size to the scope that the current core update procedures are antiquated and simply ... dangerous.

I think having some type of voting system in place might be a solution. Make it so only changes receiving 80% of the vote are implemented.

But who would vote?
There a tons of people that know little to nothing that if given the choice to vote could vote on the stupid suggestion/BIP.
All ends in trust, there's no way to avoid that.

a council, a group of people who have a good knowledge of the technical aspetc of bitcoin and blockchain, but then you need to trust those, and thus voting them need another group who should be trusted

we can raise a chain of trusted people, like a "group node" of users
legendary
Activity: 2506
Merit: 1030
Twitter @realmicroguy
But who would vote?

Merchants, exchanges, pools, payment providers ... anything is better than the centralized and totalitarian system currently in place.
legendary
Activity: 1386
Merit: 1000
English <-> Portuguese translations
So what is the point of trustlessness if we are trusting developers?

Bitcoin had grown in size to the scope that the current core update procedures are antiquated and simply ... dangerous.

I think having some type of voting system in place might be a solution. Make it so only changes receiving 80% of the vote are implemented.

But who would vote?
There a tons of people that know little to nothing that if given the choice to vote could vote on the stupid suggestion/BIP.
All ends in trust, there's no way to avoid that.
legendary
Activity: 2506
Merit: 1030
Twitter @realmicroguy
So what is the point of trustlessness if we are trusting developers?

Bitcoin has grown in size to the scope that the current core update procedures are antiquated and simply ... dangerous.

I think having some type of voting system in place might be a solution. Make it so only changes receiving 80% of the vote are implemented.
hero member
Activity: 765
Merit: 503
The algorithms behind the scenes can be as beautiful as you want them to be BUT ultimately most people using these wallets can't code or read code so they need to trust that the cryptocurrency wallet they download isn't sending their passwords off to the creator of the cryptocurrency.  Certainly open source helps but theoretically the site hosting the wallet could giving out different versions to different people or something.

So what is the point of trustlessness if we are trusting developers?

I don't really agree with that statement myself, but I'd like to spark a discussion about the topic and hear the thoughts of others as well as solutions.

To throw your hands up and say "i don't read code" is a cop out IMO.  Like learning any new skill it takes time and effort.  You might not be come a master builder, but you'll learn what looks legit and what doesn't.

hero member
Activity: 672
Merit: 508
LOTEO
The algorithms behind the scenes can be as beautiful as you want them to be BUT ultimately most people using these wallets can't code or read code so they need to trust that the cryptocurrency wallet they download isn't sending their passwords off to the creator of the cryptocurrency.  Certainly open source helps but theoretically the site hosting the wallet could giving out different versions to different people or something.

So what is the point of trustlessness if we are trusting developers?

I don't really agree with that statement myself, but I'd like to spark a discussion about the topic and hear the thoughts of others as well as solutions.

There is not just one group of developers in the bitcoin network. There is the protocol to which different clients (both full nodes and light wallets) connect. You do not have to trust the developers only the network.
legendary
Activity: 1904
Merit: 1074
Not all developers work together.. You have competing developers from other Alt coins, who would gladly expose any backdoor or fulnerability like that, to boost their own coin.

You also have cryptography experts with no interest in Bitcoin, who are hired by countries to secure their networks. If a specific country, say China wants to accept Bitcoin as a payment method, they would outsource to experts in the field, to test it.

These experts have a reputation and a income to protect, so they will make sure, that they give 100% correct information to their employers.

Would you as a Bitcoin Core developer, give anyone ammunition, by creating a backdoor, and risk being exposed and losing your income and reputation?

Does that answer your question? 

That's just plain stupid.
Why would anyone waste their time trying to find backdoors or vulnerabilities on any other coin instead of using their time more productively by improving their own?


It's acctually very simple...

Bitcoin is sitting comfortably at the top, with no real competition. {Price & Adoption} If you are the competitor, and you can expose such a backdoor, it would drive people away from Bitcoin and possibly towards your currency. {You would obviously use that as ammunition to boost your own coin}

Why is it so difficult to understand that?

The code is not that complex, that it would take a expert weeks to analize it... they most probably evaluated it anyways, when they developed their own coin.   
sr. member
Activity: 462
Merit: 250
Not all developers work together.. You have competing developers from other Alt coins, who would gladly expose any backdoor or fulnerability like that, to boost their own coin.

You also have cryptography experts with no interest in Bitcoin, who are hired by countries to secure their networks. If a specific country, say China wants to accept Bitcoin as a payment method, they would outsource to experts in the field, to test it.

These experts have a reputation and a income to protect, so they will make sure, that they give 100% correct information to their employers.

Would you as a Bitcoin Core developer, give anyone ammunition, by creating a backdoor, and risk being exposed and losing your income and reputation?

Does that answer your question? 

That's just plain stupid.
Why would anyone waste their time trying to find backdoors or vulnerabilities on any other coin instead of using their time more productively by improving their own?
legendary
Activity: 1904
Merit: 1074
Not all developers work together.. You have competing developers from other Alt coins, who would gladly expose any backdoor or fulnerability like that, to boost their own coin.

You also have cryptography experts with no interest in Bitcoin, who are hired by countries to secure their networks. If a specific country, say China wants to accept Bitcoin as a payment method, they would outsource to experts in the field, to test it.

These experts have a reputation and a income to protect, so they will make sure, that they give 100% correct information to their employers.

Would you as a Bitcoin Core developer, give anyone ammunition, by creating a backdoor, and risk being exposed and losing your income and reputation?

Does that answer your question? 
sr. member
Activity: 462
Merit: 250
Ultimately you need to trust someone, since no person is capable of knowing everything. That's how society works. People specialize on different fields, trusting that other people in other fields know what they're doing.

Imagine you have a building. It's open source, in the sense that you have access to all blueprints and all details about the construction process. But you're an accountant, and you don't understand anything about architecture. So, do you trust the architect and all the construction workers that are making the building you will be living in for the next decades?

That.
It doesn't matter that Bitcoin is an open source project.
The average Joe is not a programmer therefor wouldn't know what to look for even if they saw the code.
legendary
Activity: 3248
Merit: 1070
well everything is open source here you just need to take a look at the code, so there isn't the need to trust someone

i would have prefered if bitcoin was an automated client that could enhance itself everytime, but this is not possibile in the 21 century
full member
Activity: 154
Merit: 100
That Darn Cat
I don't think we need to really trust past devs of the bitcoin chain and all because it is transparent.  We need need to be able to trust bitcoin devs that work with wallets, exchanges, and start new trends or expansions to the current online bitcoin experience.
legendary
Activity: 2156
Merit: 1393
You lead and I'll watch you walk away.
The point you can stop placing your trust in the Bitcoin elite is when you stop using Bitcoin or you die. You are always going to need to trust someone whether it be the devs, the mining farm operators or the businesses you send "no charge back" money to. You will be trusting someone if you use Bitcoin. There's no getting around it.
hero member
Activity: 602
Merit: 501
So sounds like you are saying trust is required.. and while understandable.. why not simply trust them with a central ledger and do away with the blockchain?  I thought point of the blockchain was to minimize trust?

To partially answer my own question, I guess that this allows different people to trust different companies yet still use the same currency between themselves.. that's definitely useful.

The trust in open source comes from the fact that it is OPEN. So simply , you are not trusting someone, you are trusting a large group of disconnected people. As a result of this disconnect, if something was wrong, it would be pointed out and collusion is almost impossible.

hero member
Activity: 490
Merit: 500
37iGtdUJc2xXTDkw5TQZJQX1Wb98gSLYVP
The algorithms behind the scenes can be as beautiful as you want them to be BUT ultimately most people using these wallets can't code or read code so they need to trust that the cryptocurrency wallet they download isn't sending their passwords off to the creator of the cryptocurrency.  Certainly open source helps but theoretically the site hosting the wallet could giving out different versions to different people or something.

So what is the point of trustlessness if we are trusting developers?

I don't really agree with that statement myself, but I'd like to spark a discussion about the topic and hear the thoughts of others as well as solutions.
i believe thats why people are getting hacked because even though bitcoin is hackproof, the websites and exchange are hackable
hero member
Activity: 527
Merit: 503
So sounds like you are saying trust is required.. and while understandable.. why not simply trust them with a central ledger and do away with the blockchain?  I thought point of the blockchain was to minimize trust?

To partially answer my own question, I guess that this allows different people to trust different companies yet still use the same currency between themselves.. that's definitely useful.
sr. member
Activity: 462
Merit: 250
Yes, image that when you choose a wallet of one company, if you don't trust the company, will you choose their wallet? sure you are not.
Pages:
Jump to: