In fact, Startum does eactly what you seem to want to do both decentralized and without an alt-chain.
Sorry, I'm not familiar with the Stratum alternative. If there is no alt-chain for verification, what is stopping malicious nodes from distributing bogus data to the rest of the network?
Stratum uses a different model. I'm not one of the developers, so I only understand what the
intent is; but each stratum server is a full bitcoin client
first, and also participates in the secondary network. The stratum servers don't depend upon each other to do anything outside of what the bitcoin network already does. The stratum protocol functions as a controlled spigot to the bitcoin network firehose. A stratum capable client can query a single stratum server that the user trusts (because he has a service paid for, or because he personally set up that particular server) and privately query the stratum server for data about particular addresses or transactions. The client, should it not trust any particular server, can reach out to several stratum servers in a semi-random way (either biased towards servers that it has contacted before and not be told falsehoods, or by some other method) and query multiple servers and check responses against each other. It provides a standard method for a single full bitcoin node to function as the blockchain to hundreds or thousands of light clients, that may or may not actually maintain either block headers or transaction inputs. Like a distributed version of a split wallet service, like BitcoinSpinner without the vendor lock-in.
Someone malicious can effectively DoS a significant proportion of lite nodes just by setting up a thousands of fake peers that connect to as many other peers as possible and all give out the same incorrect data. It might take more work for nodes to sort it out than if you just decided to be a full node (credit to Casascius for this argument).
That a remote possibility, but again most of the light clients that we expect to see in the future will be desktop apps that don't mine but are still
capable of switching to full node mode at will or by user direction. If the stratum network is being DDOSed, or is otherwise unreachable, most (probably not all) such clients would simply jump directly onto the main bitcoin network to acheive their ends. This is likely to cause problems in it's own right, but the option always remains open.
This goes back to the original source of this thread: an overlay network makes sense in some contexts, but perhaps using an alt-chain secured through merged mining might be a better alternative (albeit more complex).
I'm skeptical of that, myself. I will reserver my final judgement based upon what you can show me later.
Under what criteria does a node decide that important data is correct in an overlay network if there is no way to compare directly to the blockheaders?
First, it can compare to local blockheaders, it's just not limited to that.
Second, see above about checking several servers against each other, or simply running your own stratum server at home for use on your android.
It seems that to do this in a decentralized manner without an alt-chain, you have to trust whatever information is given to you by the majority of your peers. But peers are cheap and easily spoofed. One resourceful attacker can muck up the entire network with a million fake nodes. This is where an alt-chain is beneficial:
You make that sound like that's easy to do, or cheap. Yes, such an attack vector is possible under thin conditions. Still, it's potential gain is limited to what the spoofed client is willing to
send or what he believes that he has received, not all he has. I can't see all that kind of effort just to steal my lunch money. If you're buying a new car with bitcoin, you're going to be taking some more deliberate steps anyway. The general trend is that security & convience are at odds to each other, and these light clients are intended for convience with relative security, not the full absolute security that a hardened full client could provide while also running it on a cell phone. This also doesn't consider the use of risk assessment algos. For example, if your client tries to reach out to the stratum network to check a transaction sent to itself, but can't connect to your personal stratum server, so it falls back to polling 8 random servers & eight servers from within it's own 'good' history. It gets back all the right responses, but the version number of the nodes it knew about all have different checksums than last time. Could be that you haven't used this app in a while and everyone really has upgraded, or it could be that you've been corralled into a honey-pot network. The client notifies you of it's risk assesment, you can either take the transaction on faith or reject it and refuse to hand over the product.
--In a non-alt-chain network, you need a majority of nodes telling you the correct answer to end up with the correct answer
True. You also need the same from an alt-chain just to be able to have one. That only shifts the problem across time, it does not change teh problem logically.
--With an alt-chain secured through merged mining, it only takes only one honest node for you to get the correct answer (verified through proof-of-work), even if the other 999 peers are malicious
Once the block has been created, true. Not true while the block is being settled upon. This is why bitcoin, itslef, requires 6 confirmations before the standar client will resend the coins.
Unfortunately, my understanding of merged mining and Stratum's overlay network is really weak. Please fill me in if I'm missing the mark.
My understanding of merged mining is limited, but my understanding of regular proof-of-work is not. That said, as I undertstand it, merged mining permits the alt chain to leverage bitcoin's securlty to shore up it's own; generally by inerweaving specially identified transactions into the bitcoin blocks, while interweaving all or part of the last bitcoin block's header into the alt-chains's header; thus proving a time sequence in lockstep with bitcoin's own. While this little hack would permit a mnor alt-chain to benefit from the securty of the bitcoin blockchain, it does nothing that I know of to actually improve teh
trustworthyness of the miners that created the alt-chain block to begin with. Does namecoin do this?
