Topic: The Holy Grail! I wish I could kiss the author of Bitmessage on his face. - page 11. (Read 92719 times)

My apologies for making you repeat yourself. I ignore how these voting pools work. I'm guessing it's a large multi-signature thing (many people together can replace the signature of the server), but definitely I need to study it a lot more.

Thanks.

I think if you read the above posts I wrote, you will see that no, you don't lose the censorship-resistance features of the cryptocurrencies, because they are not sent directly to the OT server, but rather, are stored in a voting pool on the blockchain, where those coins are recoverable even in the event that the server itself disappears.

Also -- what is your "account" ?

On OT, your "account" is just your last signed receipt, and you and the OT server both have a copy of it. In fact that's all you really need to keep a copy of -- all the older receipts can be discarded and the system can still prove everything.

If the issuer creates IOUs, and the OT server disappears or "freezes," then the issuer can just re-issue the same units onto a different OT server and it can earn the transaction fees instead. (The problem with this is, what if jurisdictional authorities, or criminals, use violence to force the issuer to abandon a specific transaction server? This is why I recommend adding the cryptocurrency layer...)

If you add the cryptocurrency layer, the issuer will create colored coins and release them (Or the miners create BTC and release them.) Either way, when a user uploads those coins into the multi-sig voting pool, they are safe in the pool (the transaction server can't steal them, and the issuer has no power to pick-and-choose which transaction servers are being used -- the users choose.) If your transaction server disappears or "freezes," then your wallet can just submit a recovery request to the other pool members and get their vote on the blockchain, and get the coins back.

What if the entire POOL gets hacked? Then you are in a bad position. Ultimately the only solution is to have a well-designed wallet which distributes risk across multiple currencies and multiple pools. This is where I think everything is going, and that's what I am building.

You are also probably not considering the advantages of holding provably backed bitcoin OT tokens versus bitcoins themselves ... vouchers, checks, near instant off-chain TX, untraceable blinded cash, recurring payments, plus other stuff. There are payment advantages (i.e. additional monetary properties) to having OT tokens. Think of OT as a decentralised system layered on top of the bitcoin mesh ... and you start to see the bigger picture.

But don't you lose the censorship-resistance features of cryptocurrencies once you deposit them on a particular OT-server? Can't the server be killed, freezing all accounts within it?

Right. More specific reasons already detailed above.


I think it's open for debate, and the market will decide, but personally I disagree.

Why?

Because in my concept, you are only very rarely moving the colored coins in-and-out of the pool. Rather, you are trading them INSIDE OT. So your Nym, INSIDE OT, gives some colored coins to another Nym, INSIDE OT, perhaps by way of market trade or escrow agreement, in return for some other BTC or colored coin INSIDE OT, or in return for some legacy funds in real-world cash or in a real-world bank account.

As I've said, I would not want to move coins in/out of the pool for every transaction. Instead, I would keep them in the pool (in OT) for thousands of transactions, only moving them in/out when absolutely necessary.

...And the reason I would store BTC and colored coins on the main chain, instead of some alternate chain, is because I believe the security is best there. Since they will be "just sitting there" for some time, I prefer they sit somewhere safe.

I can understand the advantages of colored coins over OT-IOUs (well, I guess I can, it's mostly the strong censorship-resistance of cryptocurrencies, right?)

But the use of colored-coins as a method of fiat transferring (i.e., as a direct competitor to PayPalUSD or Dwolla or whatever) would be strongly hindered IMHO if one has to pay bitcoin fees in order to transfer these "fiat coins".
I still think a dedicated chain for holding these tokens would be better than coloring coins in the main chain. Don't you agree?

Consider the various forms...

----------------------------------------------------------------

GOLD ISSUER

1. The gold issuer issues gold units onto the OT server.
2. Any user who has the currency contract is able to open accounts denominated in those units, and from there, withdraw cash, write cheques, trade on markets, etc.

===> In this example, the OT server cannot forge any receipts. The only possible crime is inflation, but the gold issuer has an incentive to audit the OT server, which prevents inflation.

----------------------------------------------------------------

EURO COLORED COIN ISSUER

1. The Euro issuer issues colored coins.
2. Users have the option to upload these colored coins to OT servers (preferably via voting pools).
2. Any user who has done this is able to open accounts denominated in those units, and from there, withdraw cash, write cheques, trade on markets, etc.

===> In this example, the OT server cannot forge any receipts. The only possible crime is inflation, but the other voting pool members have an incentive to audit the OT server, which prevents inflation.

----------------------------------------------------------------

BITCOIN WITHOUT MULTI-SIG  (not recommended!)

1. The user uploads the BTC or colored coins to the OT server.
2. The OT server then issues the appropriate units to the user.
3. Whenever the user wants to get his BTC or colored coins back out, he sends a signed request to the OT server along with the units, and the server sends his BTC back to him on the blockchain.

===> In this example, the server would have to be trusted not to disappear and steal all the BTC he's holding.

===> The server would also not have any incentivized entity performing audits to prevent inflation.

===> The one benefit is that the OT server cannot forge any of your receipts (so at least the amount he owes you is provable.)

===> This configuration sucks (I do not recommend it) but this is basically what the entire Bitcoin world has been doing, up until this point.

===> This is why people keep getting screwed in the Bitcoin world. The server just disappears with your money, or gets "hacked."

----------------------------------------------------------------

BITCOIN **WITH** MULTI-SIG

1. The user uploads the BTC or colored coins to a list of BTC addresses, instead of to a single address. Each one of the addresses on this list belongs to a member of the voting pool.
2. Each voting pool member is an OT server. Once BTC or colored coins are in the pool, then only an M-out-of-N vote from the servers -- on the blockchain itself -- can retrieve those coins.
3. If the user wants to get his BTC or colored coins back off of the OT server, he sends a bail-out request, which the server countersigns, and then they forward this to the pool members, who verify the signatures and vote ON THE BLOCKCHAIN to release the coins back to the user.
4. Even if the OT server disappears entirely, the user can still submit a recovery request to the other pool members and get their vote, and get the coins recovered.
5. In answer to your question, the coins just sit in the voting pool the whole time while they are being transacted on the OT server. Ideally they will change hands a hundred times, a thousand times, a million times, before being pulled back out of the pool. The whole point is to enable off-chain transactions on transaction servers, with escrow and markets, etc, and to avoid expensive and traceable blockchain transactions except where necessary.

===> The only crime left to the OT server (who cannot forge receipts) is the crime of inflation. However, the other pool members have an incentive to audit each other, which prevents this crime. Therefore the pool itself replaces the "gold issuer" in the original example. See the Open-Transactions auditing doc.

===> You do not have the trust the individual servers, but you DO have to trust the POOL ITSELF. If a hacker were to gain malicious control over a majority, or 8 out of 10, or whatever, of those servers, then he could steal the funds in the pool.

===> This is why I would go even further, and use a wallet GUI that distributes my funds across multiple pools, and/or uses basket currencies to distribute a single currency across multiple issuers / multiple pools.

Ultimately, you cannot eliminate risk entirely, but you can reduce it, and distribute it, and take advantage of separation of powers.

The concept with OT is to create a wallet-centric experience for automating this, to achieve provider-independence. (Like Tahoe-LAFS.)



Yes, an issuer can directly issue his IOU units onto an OT server, without having to go through colored coins.

But colored coins are important IMO because they allow you to sever this direct link between issuer and transaction server.

That is, you can still have issuers, and you can still have transaction servers, but they are no longer directly connected.

This is important for liability reasons, and it eliminates the issuer's ability to pick and choose transaction servers (meaning that authorities also cannot pressure the issuer to do so) and it also allows the users to buy and sell the colored coins as commodities, similar to BTC itself. Trust me, if you work through the exact differences between those scenarios, you will see why it's better to issue them as colored coins. (But OT will work either way, yes.)

Colored coins are specifically for Dollar or Euro based currencies, or even gold-based currencies. For BTC, on the other hand, you just use BTC instead of colored coins. Then you have no issuer and the BTC itself is the primary currency being exchanged. OT will work either way.

For people that just want to buy and sell BTC once in a while - as opposite to those who wish to profit from active trading -, what's the advantage in holding fiat-backed colored coins?
Couldn't the same scheme of escrows and everything be used to acquire BTC directly, instead of going through colored coins?

By the way, I think using alternate chains with merged mining is better than using colored coins in the main chain. Colored coins would likely be "tagged satoshis" if I'm not mistaken. To transfer these colored coins around, you'd need actual bitcoins to pay mining fees (and first of all, you'd need a pool that's willing to ignore recent standards on anti-dust). That means that to move your "dollars IOUs" around you'd need bitcoins to pay the transfers fees. It's kind of weird, and will make this system only useful for those willing to acquire bitcoins - and these ones, AFAICT, will not have any other reason to hold these colored coins than active trading.
If instead you use an alternate chain where only fiat-backed coins exist, the mining fees would have to be payed in fiat-backed coins. That's more reasonable, and may even become a strong competitor to legacy fiat transfer methods, without requiring the user to hold bitcoins not even for a second. That could grow more quickly, and extend the advantages of "Bitcoin the payment network" to those who refuse to hold "Bitcoin the currency".
As an extra, as this alternate chain would have no currency creation, we'd already have an experimentation case for fee-only mining subsidy.

A single alternate chain could be created for holding everything related to the "issuance of tokens". It could hold everything you'd be willing to use colored coins for, I suppose.

Just want to say that when I see BMOT, I'm my mind I read it almost like бeгeмoт (begemot, e as in west), which is Russian for hippopotamus or behemoth. That second one sounds strangely foretelling 

Thanks for all the info FellowTraveler... I have one question though, what are "multi-sig voting pools", and how do they work? Do they actually hold onto funds, or do they just sign off on transactions involving them?

The OT servers are definitely not all controlled by a central anything. Each has its own server operator, presumably.

Also, an OT server is not an authority over anything, but would be more accurately termed a "cloud commodity."

The authority should be the user wallet itself, not any provider/server. Similar to Tahoe-LAFS: provider-independent.


I have repeatedly said in this thread that most of the new capability here is latent in Open-Transactions itself, and that Bitmessage only solves discovery.

I have also explicitly said that IRC could most likely be swapped in to replace Bitmessage -- and it would probably still work. (I don't see why not.)

In fact the OT servers themselves could even allow users to post and share certain announcements in order to solve this problem.

A Tor hidden service, as you suggest, would probably also work -- though it seems to be the most centralized form of all the suggestions.

I will definitely be coding it to use an abstraction layer so that different options are possible.


The purpose of the broadcast as discussed in this thread is purely for discovery purposes, not for auditing. Each OT server does need to make certain audit information available for query (it doesn't have to be stored in any censorship-proof medium.) But that's not the same thing as the discovery process that makes possible these cross-server wires, cross-server trades, and server/legacy bank transfers.

As far as I'm aware there are no precise mathematical/engineering definitions for centralized and decentralized networks? Obviously any network without a central hub controller is decentralized, can we agree on that at least?

I dont' know how other people use it but I thought the posted diagrams make clear the differences. I have seen node-to-node type networks (rightmost picture) referred to as distributed for a long time (3 decades already maybe?) but also they recently call them "mesh" networks. To add to the confusion, in many real-time networks applications SCADA (supervisory computer and distributed acquisition) were some of the first decentralised systems on the market, alongside their competitors/counterparts the DCS (distributed control systems) which actually were much more 'centralised'.

Perhaps it is time for someone to sort all this out with a good paper tabulating the network topologies nomenclature, fractal measures, scaling properties, etc? You might be up for that?

This is a very different definition of distributed/decenteralized than is used in some other places.

The other one is:

Visa's network is distributed— there are servers in many datacenters that share the work. But they are all controlled by a central party, they are not decentralized. Likewise, google, any CDN, basically any highly scalable modern service is distributed.

Decenteralized means there no central authority at all. Very few systems are decenteralized, though arguably many system-of-system federations are at least to a degree decentralized.

Right. What does bitmessage accomplish for you that a tor hidden service wouldn't accomplish? Or an IRC channel?

I thought OT federations needed unjammable broadcast networks in order to prove that they weren't performing inflationary double issuances of the assets they published notes for?

Now I'm wondering if OpenCoin will try to buy out Monetas.

I should also mention:

1. Cross-server transfers of funds will involve smart contracts verified by the servers on both sides. (Not by the users.) This is only for OT-server to OT-server, but still worth mentioning. The server itself would have to be "in on" the scheme with Jorg -- and an OT server can't forge receipts.

2. Conversion of one currency into another (on markets) is also performed by the server, and thus you don't have to trust the user you're dealing with. The same goes for escrow, for all internal transactions. Bitmessage allows you to find these other users, but the actual transactions are then performed on OT.

      Central Banking                           Open Transaction Confederation                          Bitcoin



OT is able to confer properties of a decentralised network ... and Bitcoin is actually a highly "distributed" network (any node to any node), a special case of decentralisation.

No problem. Excellent questions!


…and get money back out again. I assume by this you mean "legacy cash money in hand" and/or "legacy money in the legacy bank."

--- Keep in mind that most transfers will happen inside the OT system, or on the blockchain…
--- That is, while bailing legacy cash in/out of the system is possible, that should not happen for each and every transaction….
--- Also keep in mind that once you bailout BTC or colored coins from an OT server, then it has passed outside the sphere of OT, and you can cash it out in whatever conventional way that you normally would, based on the existing market for Bitcoin services. (This would be an option as well.)
--- …Therefore I restricted my Bitmessage examples to only cases where the two parties both are transacting within OT. (The reason being that we can then assume that OT's powers apply -- such as markets and escrow.)

That having been said, here are various options I can imagine for bailing legacy funds into/out of the system …

=> Bitcoin ATMs. These were at the Bitcoin 2013 Conference in various configurations, and so the option is rapidly approaching to use them.

=> Through your social network: This was always what enamored me of the Ripple idea originally -- that instead of using a centralized exchange, you can just "go through your friends." And if your friend will hand you some cash in return for a Ripple transfer, then similarly he should be willing to hand you some cash in return for an OT or blockchain transfer. (And vice-versa.)

=> Geolocation: Apple has recently publicized the concept of people providing ATM service for each other. Your iPhone just finds someone nearby who hands you $60. (At the same time, $62.50 is charged to your iTunes account.)
The same could clearly work for colored coins in a P2P app. (Even the open-source community could easily build such an app using OT -- though Monetas itself possibly could not, depending on the status of Apple's patent.)

=> SEPA transfer: In Europe, bank users can quickly and easily send transfers to each other's accounts through the SEPA API, and verify whether such transfers have been made.

=> Meetups: There are already local Bitcoin meet-ups; thus it seems like a viable method of exchange for cash.

=> Gateways: (Ripple seems to have popularized this nomenclature, so I'm going to use it here.) This is any business that users are willing to trust for the purposes of sending/receiving bank wires, SEPA transfers, ACH transfers, etc.

===> The main difference here is that in the case of Open-Transactions, your funds would not be stored as an IOU from the gateway. Many have said that on this forum, but that is not actually the case. On OT, you are buying/selling BTC and colored coins, instead of issuing IOUs.
(Issuers do have the ability on OT to issue IOUs, but that is not the solution I've suggested in this thread. Rather, I've suggested to store the actual coins in voting pools so that an OT server can transact them without having to be trusted not to steal them.)

===> In the case of OT, the "gateway" becomes a "trader". Instead of holding IOUs from a gateway, you are purchasing or selling BTC or colored coins from a trader. And that Trader is NOT an OT server -- but another OT user, like you!
And since this transaction is occurring inside an OT server:
- it will be instant, instead of requiring blockchain confirmations.
- It can be performed on a market, where orders are automatically matched according to their criteria.
- It can be performed through the use of escrow -- and the terms of that escrow can be customized by the parties (since the escrow itself is implemented as a smart contract -- and users can customize their own smart contracts.)
- Via Bitmessage, wallets can coordinate cross-server wiring of funds, as well as cross-server order matching, and cross-server discovery of other wallets willing to make transfers in/out of the legacy banking system, by way of OT escrow.

===> In any case, whether you are obtaining IOUs from a gateway (Ripple), or whether you are buying/selling BTC and colored coins from a trader (OT), either way, I assume that such businesses will be willing to take/pay cash at their physical locations, and bank wires otherwise. (Otherwise, why are they even in this business?) Therefore, you can move legacy funds in/out through such businesses.
Personally, I prefer cash-in-hand over IOUs, which is why OT places such a high value on the ability to customize your escrow terms.

=> Bank Wires: One example of why I prefer cash-in-hand: If you purchase precious metals for physical delivery, you will discover that orders can be shipped based on a bank wire, yet the same business is not willing to ship based on a credit card purchase (due to chargeback risk.)
Therefore bank wires are a valid method for getting money in/out of the bank account, albeit slow and expensive.

=> Bitcoin Exchanges: exchanges are one way to trade Bitcoins for national currency and get a bank wire, so it deserves to be on this list. Any BTC traded on an OT server could presumably be bailed-off of OT and cashed-in through a Bitcoin exchange (with the laws in that jurisdiction applying.)

=> The original issuer: In the case of colored coins, there is some issuer in some jurisdiction who originally created--and has agreed to redeem--those colored coins. Presumably he could be paid (and pay others) through BTC or through bank wires or cheques.
NOTE: Most actual users shouldn't have to deal with this guy directly. Another note: Once users have uploaded these coins into multi-sig voting pools, they can then devise basket currencies to hold and transact with. This enables users to distribute the risk of a single currency across many issuers.

=> Prepaid card / bank card: It seems that a prepaid card could be given to the user, with funds placed onto the card easily enough based on whether the user had paid the card issuer on OT.
- Escrow probably not necessary in this case, and card issuers can demand to be pre-paid.




She cannot, although the above examples are all different. This is why I place such a high premium on escrow, reputation, risk limits, and cash streaming protocols.


If the money is stashed inside a smart contract on OT, then the OT server is incapable of forging any receipts internally, nor is it capable of stealing BTC or colored coins from the multi-sig voting pool those coins should be stored in. Therefore the holder (OT server) cannot disappear with those coins.

You might ask, but which party to that smart contract is ultimately going to get the funds, in the event of a dispute?


This is totally determined by the smart contract itself. And since these can be customized (through scripted clauses), then ultimately the open source community will have to decide for themselves, for the various cases, what is an acceptable distribution of risk.

For example, let's say that Jorg is receiving colored coins all day, in return for SEPA transfers. He might deal with scammers all the time, which is why he demands a smart contract where the funds go into escrow and he can verify their existence (safely stashed there) before initiating the SEPA transfer.

Also, let's say that his terms specify that once he notifies the smart contract of the initiation of the SEPA transfer, he is guaranteed that he will receive the escrowed colored coins after X hours, unless Alice files a dispute.

…And in THAT case, say the smart contract terms require the decision to then be rendered by Judge Judy (as the sample escrow contract in OT actually does.) And then things will either be proved to her, or they won't. (And if you don't trust Judge Judy's adjudication skills, then don't use a trader who insists on using Judy's contract.)

Jorg might have to operate based on a whitelist or even a blacklist -- but at $X per transfer, he'll be operating. And remember, he's not issuing IOUs -- he's just buying and selling BTC and colored coins. He's also not operating an OT server, since he is actually just another user, like you.



Here is an article on Open-Transactions smart contracts.

--- To whatever degree that SEPA API calls are possible to automate verification of transfers, then I'm sure those will end up being used.

--- To whatever degree transfer protocols are possible based on parties providing manual notifications to the smart contract of certain payment events, those will be happening as well.

--- To whatever degree that "Judge Judy" has to get involved and make a human decision, in the case of disputes, then smart contracts will have to support that mechanism. (The escrow sample contract that comes with OT, already does this.)

---- To whatever degree that whitelists, blacklists, and other reputations systems become necessary, (monkeysphere ?)

--- …as well as to whatever degree risk limits and cash streaming protocols will be used, they will be, -- wherever they enable new transactions that people could not previously perform.

Imagine: Federated OT servers act like agents who agree on outcome with "best data" versus "best guess".
My friends and I set up a consortium of bitcoin/litecoin/bytecoin/etc and an offer sheet with floating values that our bots are deciding versus other consortiums or solo players. Money exchanges are still guarded by local laws, so we all need to check with lawyers or regulators.
Imagine: My bitcoins are colored to reflect straight up trades and not speculative trading. Litecoins are being used in arbitrage to balance trading gaps between sudden moves on markets that cannot enter money exchanges.

I believe that OT server doesn't hold funds directly, but waits until transactions are ready to be forwarded and then signs them off. Doesn't the anonymity gained from OT come from two parties not directly sending funds to eachother?

I'm just going off of what has been posted in the thread so far, I'd love to hear someone more knowledgeable to give us a summary on example transactions.

Uhm, how can the OT+BM (or any non-banking) system put any constraints, control, or monitoring on wire transfers which occur only between banks? I mean Alice can say her SEPA funds are in the air, but who knows if they really are?

I'm not sure how this escrow thing works. Is that based on trust (and how is that assigned?) or some smart novelty that eliminates the need of trust?