Topic: See What DEX Really Means (Read 665 times)

This statement doesn't look factual. I mean what are the numbers or statistics that support that CEX hacking is more than DEX hacking because in this case we can't conclude like that...

The first DEX is Bitshares DEX and its native coin BTS. Anybody can issue their own coins at Bitshares DEX and issuers are able to decide to call back their own coins.

In practice be careful when you are given a private key, it may not be really be the coins that I deposit
as mentioned here*, that is, a BEP2.
(*)https://bitcointalk.org/index.php?topic=5151605.msg51379913#msg51379913

Do we need decentralized exchanges? yes, the vast majority.

Your own DEX "V.01 SN" start with a group of friends or family. Remember family or friends can still scam you, it's a shame but Trust is never 100%. So, you're not going to ask them for their statements, but you can see their wallets and find out if they have funds to exchange.

Ahh! but it happens that a new relative, a cousin, arrives and wants to exchange, the trust process
it drops to practically zero, so for these cases, a working user is assigned, under custody or arbitrator, until the "arbitrator" does not receive the money from one of the parties and confirms that both users agree, then send the money where it belongs.

Finally, for me; "See What DEX Really  Means"
So in this group everyone is responsible for their public and private keys, consequently your funds are your sole responsibility.
It is not necessary to ask for any document, because the trust problems are solved, It is literally based on trust, it is worth the reduncia in this case.

That is what I understand as DEX, when I get some "code" that represents a good start that will later become a business, that approaches a situation, I put myself in your hands but never 100% trusted by me.

Depends how "perfect" you are talking about. As gentlemand says above, Bisq is probably the closest at the moment to a truly decentralized exchange. However, it still has a website. That website is obviously being paid for, managed, and updated by someone. Although the code is open source and anyone can contribute to it, there are a core group of people who are managing the GitHub and merging pull requests. None of this is particularly dissimilar to bitcoin itself. Is it possible to be more decentralized?

A real DEX cannot be shut down by a government, in the same way a government cannot shut down bitcoin. They can ban it, make it illegal, seize the websites, etc., but none of that stops users continuing to run the software and communicate with each other. If a government is able to shut down a DEX, then it was never a DEX to begin with.

Sort of. The principle of decentralization of crypto is completely opposite on the SEC regulation and do you think that someone can bend the law just o align on there own principle? Many decentralized project are forced to comply on SEC and some are forced closed. Even IDEX which is a fomuos DEX are obligated to do KYC.

I wouldn't class any dex that ran on a website as properly decentralised. That means a centralised domain name and hosting. That can be hijacked and the operator can be feeding you false information.

I'd say Bisq comes closest at present. Ideally you want something that's part of an official client's code that talks directly to the other wallet you're trading with. The more eyes on it the better.

Does your answer suggests that there can't be a perfect decentralized crypto system?
Are you also saying that in the coming days, the government will regulate bitcoin and close it down if there is refusal?

Actually, it was (centralized) Binance that was hacked to some (7000 BTCs) extent, not Binance (allegedly) DEX.

Nevertheless, the DEX term has been twisted for marketing and appeal reasons many times, and things are not always what they seem:

Many DEX Had Been Hacked Literally So OP Trying To Say That Decntralised Exchange Can't Be Hacked? I Don't Think So. Even The Number One Most Reliable Decentralized Exchange Binance Had Been Hacked Too.




https://www.bloomberg.com/news/articles/2019-05-08/crypto-exchange-giant-binance-reports-a-hack-of-7-000-bitcoin

Well TBH, I'm not trying to play oversmart here but I've used some old DEXs and a few of them got hacked and I came to know that the ETH private keys that we used to login to our accounts, got compromised. That was one such incident which proves that some DEXs do record our privkeys entered to use them.


I understand that CEX also possess the same risks (or even better or maybe less), for me it's less stress to use a CEX because even if a reputed CEX gets hacked, they'll do anything to get us our funds back or they'll pay them back through their own efforts. But DEXs rarely help in these cases as there's lack of support and they need to bridge this gap in order to provide better customer service to us.

I was using this DEX before when that hacked happened, good thing my funds are safe. Yes, DEX shouldn't be hacked but I guess no matter how tight the security is, hackers will still find a way it is a matter of time. There is no truly safe here on the internet. Yes, Government regulation is always in our way, somehow it is one of the reasons that hinder crypto adaption but I guess it is for the best. Implementing KYC eliminates some bad actors, fraud, etc.

Just because Bisq was hacked, doesn't mean it isn't decentralized or wasn't transparent.

You can read how the hack happened here: https://bisq.network/statement-security-vulnerability-april-2020

The TL;DR is that there was a vulnerability in the code that allowed the attacker to redirect the escrow funds to themselves. Since the Bisq code is open source, anyone could have found this exploit, and it is unfortunate that the first person who did find it was a malicious user rather than someone who would have alerted the devs to patch it. The attacker in question did not hack a central server or central wallets, because there are none to hack. He traded peer-to-peer with other Bisq users, and used the exploit to steal funds from the people he was trading with.

It was unfortunate, yes, but nothing about it was due to centralization or a lack of transparency.

It's also worth noting that shortly after the hack, a proposal was opened, voted on, and accepted by the community to use trading fees to refund the affected individuals: https://github.com/bisq-network/proposals/issues/209

I remember when etherdelta [eth dex] users got their balances stucked in the exchange and they fixed the bug within two days but many users lost their deposits. After that, they lunched ForkDelta as a secure alternative.

I also remember what happened to Bancor three years ago. The hack occured in a shady way which let everybody think twice before to invest in those called DEXs.

Many other examples of exchanges promoted as DEXs and once got hacked or have errors, we discover that they are not fully decentralised so they lacks transparency from the biggenning .

What kind of DEX records the private key of their users?

DEX is not a single thing, it's an idea where you can expand and decide how it works. You can literally only allow people to connect with an HW so there's no private key input. I'd look for other options, to say the least. Where in a centralized exchange it's guaranteed that you don't hold any control over your funds.

The "hacker" was not able to get any data from any records, and it wasn't even a hack per se. It was DNS jacking, basically meaning they were able to replace the original site with a fake one, so the original itself was never really compromised. It was essentially a phishing attack; if you didn't try to log in while the fake was up, you wouldn't have been affected.

That being said, EtherDelta had centralized components, and was taken advantage of. DEX should still be more resistant to attacks than standard exchanges though, mostly thanks to the fact that they don't keep your coins for you.


Wouldn't you be running the same kind of risk by using a CEX? We've seen CEX hackings happen far more often than DEX hackings, even.

You haven't mentioned properly about what Dex really means.You just highlighted the features and advantages.But Dex exchange means where transection happens in peer to peer nodes without any third party interface and here account information are secured.Only user have access to his fund.

To know whole details about Decentralized Exchange then take a look in this thread:
Decentralized Exchanges

Theoretically speaking. DEX shouldn't be hackable as per the general of it but in previous years DEX really got hack just like what happened to Ether delta that the hacker retrieve the data of customers by accessing the site DNS records and some trick on the domain. I believe that the ideal DEX will not gonna exist in reality. All DEX should be forced to be regulated or else will be force closed because we have SEC.

Source for DEX hacking: https://news.bitcoin.com/one-week-etherdelta-hack-funds-still-stolen/

You mean quasi decentralized that claims to be full decentralized right? Which is pretty much like 95% of existing so-called "DEXs" that aren't actually decentralized, not even close. Binance "DEX" itself included.

While we are talking about DEXs, I have a question here:
What IF:

- A DEX literally gets hacked somehow with all our privkeys too getting leaked to hackers and they move all the funds (that's what the least they can do)

Another thing, a DEX doesn't really give us a much better experience compared to CEX be it in terms of trading or providing any sort of support to their users. The worst part of using it is that, we don't get that much liquidity over there and so, not enough volume is available to trade.

I dont know of hold hold, but fro BisQ, it is totally decentralised except disputes. They do somehow have plan to fix that in the future.  There also exist DEX exchanges on some asset platforms. But they only trade tokens of those asset platforms. Like tokens of Etehreum or tokens of Counterparty.

They called themselves a DEX, but as mk4 says, they just used it a flashy marketing gimmick. There was nothing decentralized about CryptoBridge.

Sure, but if it is truly decentralized then there is nothing they can do to stop users from said countries running the old version of the platform and trading with each other or anyone else using the old version.

So, a real DEX can't be hacked in the same way a centralized exchange can, because there is no central wallet, database, or servers for a hacker to attack in order to steal coins or personal data. There can, however, still be vulnerabilities in the code which can exploited.

The four parameters you set wouldn't determine whether it's centralised or decentralised. After years of testing different crypto apps, we know now that what we have called "decentralised exchange" is a total bullshit :
Control : If they can freeze your balance or use it while you are logging in, then you are still under control and i remember some DEXs forbid users from withdrawing for several reasons or pretending that the token wallet is under maintenance.
KYC : Search about CryptoBridge which was a well known Dex and how they suddenly started asking users to submit their KYC docs in order to continue using the app.
Universal Ban : Of course they can ban users depends on many variables. It just requires a fork from the running code to forbidden a selected IPs or logs from a specific region to use the platform. We saw this with DEXs having legal issues with some countries.
Hacking : I can't tell it's impossible but, as far as i know, it's possible as an inside job within the Dev team behind.

That's for exchanges that are quasi decentralized that claims to be fully centralised

Most of the "DEXs" were only riding the "DEX" hype, even though obviously they aren't decentralized to start with. At best, non-custodial, but definitely not decentralized. Even CZ himself admits it:


https://twitter.com/cz_binance/status/1098917213321408512

Sure "don't call it a DEX" even if you literally named it Binance "DEX".

What's our parameters of a decentralized exchange (DEX)

The general idea of decentralization is simply no central control and as such the market forces regulate the activities of such system.

Now, a DEX is an exchange that has no central control and as such can't be censored.

But, here are what will form the basis of this discussion.

Here are some of the things DEX means.

* no central control.
* can't be censored or banned completely.
* use a blockchin technology.
* no use of KYC or AML.
* its anonymous.

1. What are some other factors that make DEX an ideal one.
2. Hodl hodl and Bisq have been reputed to be DEX, are they really dex exchanges?

Keep your comments coming as we learn together.