The impact of bad crypto (DASH, SDC, etc). How much does math matter? - page 8.

TechorMarketing

full member

Activity: 174

Merit: 101

Quote from: balu2 on April 22, 2016, 05:58:07 PM

The thing is: 99.9999% of inhabitants of this planet can't even track a btc-transaction on blockchain.info

So the anon-coin-hype has finally worn off same as the pos-hype?

So we're back to conventional pow, right? Roll Eyes

The poll was not focused on privacy, the danger of high school level mathematics is far greater than that. The random number generator (RNG) error with the DASH paper wallet generator literally put users at risk of their entire balances being stolen.

balu2

hero member

Activity: 742

Merit: 500

The thing is: 99.9999% of inhabitants of this planet can't even track a btc-transaction on blockchain.info (so highschool-math is obviously good enough)

So the anon-coin-hype has finally worn off same as the pos-hype?

So we're back to conventional pow, right? Roll Eyes

AlexGR

legendary

Activity: 1708

Merit: 1049

Quote from: TechorMarketing on April 22, 2016, 05:46:22 PM

This issue is related to privacy not "bad crypto" or math.

It's bad crypto alright. Monero users were transacting "anonymously" for a year only to discover later that they could be trivially deanonymized because those in charge hadn't fixed a "hole" in the system from the start.

As to the InstantX jamming theoretical attack:

The attack vector on InstantX was about the attacker owning hundreds or thousands of masternodes (ie paying tens of millions of USD to acquire them) just to ...jam a InstantX transaction, which, if failed, would go as a standard transaction.

So, the game theory of the attack vector is that someone will pay tens of millions of dollars to jam an instant x transaction, while undermining his money in the process.

Do you see that the game theory of the attack vector is completely broken in terms of costs to the attackers and gains for the attacker?

That's elementary logic right there.

It would be like saying "bitcoin is fundamentally flawed because someone could buy 51% of the mining equipment and attack it". Yeah, well, if they did that, their equipment would then be useless. It's an economic suicide for the attacker, so to speak. The game theory has to account for this, no?

TechorMarketing

full member

Activity: 174

Merit: 101

Quote from: AlexGR on April 22, 2016, 05:39:36 PM

XMR / Monero broken crypto:

Quote from: equipoise on April 04, 2015, 12:59:53 PM

I think chainradar are using all the 0 mixin transactions from exchanges and pools in order to guess - the things in https://lab.getmonero.org/pubs/MRL-0004.pdf. I tried some transactions with mixing 7 and 5 between my wallets and they are successfully guessing most of them. This issue is already addressed in the MRL-0004 and we knew that, but it's scary seeing it in chainradar. Everybody should stop using mixing of 0 until this is enforced in the protocol - including pools and exchanges. I suppose some mixings between your own wallets with high mixing should resolve the issue for now. Trollfest incoming Sad

.

The issue was discovered and addressed by MRL. Since the latest hard fork 0 mixins are not possible (aside from a minor exception for dust transactions).

This issue is related to privacy not "bad crypto" or math errors. Monero now has a minimum mixin enforced for all transactions unlike DASH where DarkSend is optional and far less effective.

https://hellomonero.com/article/moneros-march-23-2016-hard-fork-what-you-need-know-updated
"Minimum mixin level has changed to 3. Note that Monero does not use the term "mix" in the way other cryptocurrencies do. A mixin is the number of ring signature partners that you have. A mixin of 3 means that your transaction will be indistinguishable from 3 other partner transactions."

bitbite111

member

Activity: 70

Merit: 10

Quote from: AlexGR on April 22, 2016, 05:39:36 PM

XMR / Monero broken crypto:

Quote from: equipoise on April 04, 2015, 12:59:53 PM

I think chainradar are using all the 0 mixin transactions from exchanges and pools in order to guess - the things in https://lab.getmonero.org/pubs/MRL-0004.pdf. I tried some transactions with mixing 7 and 5 between my wallets and they are successfully guessing most of them. This issue is already addressed in the MRL-0004 and we knew that, but it's scary seeing it in chainradar. Everybody should stop using mixing of 0 until this is enforced in the protocol - including pools and exchanges. I suppose some mixings between your own wallets with high mixing should resolve the issue for now. Trollfest incoming Sad

.

Damn it. I was hoping monero was something I could invest in.

AlexGR

legendary

Activity: 1708

Merit: 1049

XMR / Monero broken crypto:

Quote from: equipoise on April 04, 2015, 12:59:53 PM

I think chainradar are using all the 0 mixin transactions from exchanges and pools in order to guess - the things in https://lab.getmonero.org/pubs/MRL-0004.pdf. I tried some transactions with mixing 7 and 5 between my wallets and they are successfully guessing most of them. This issue is already addressed in the MRL-0004 and we knew that, but it's scary seeing it in chainradar. Everybody should stop using mixing of 0 until this is enforced in the protocol - including pools and exchanges. I suppose some mixings between your own wallets with high mixing should resolve the issue for now. Trollfest incoming Sad

.

TechorMarketing

full member

Activity: 174

Merit: 101

Examples:

DASH high school math:

Quote from: TPTB_need_war on April 08, 2016, 11:26:06 PM

Quote from: TaoOfSaatoshi on April 08, 2016, 11:02:48 PM

Hey, I heard that you can break InstantX. When can we expect that to happen? I will personally tip you if you do it. Don't disappoint me. Generalize this said you could.

I found a high school level probability math error in the InstantX white paper that had been there for a guess roughly a year and nobody had done the peer review. So this tells you there is no world-class development team.

The white paper was claiming astronomical odds of colluding masternodes able to corrupt the InstantX transactions. I showed the probability was much more reasonable.

DASH paper wallet faulty RNG (January 4th - April 5th, 2016):

Hello Everyone,

Unfortunately we broke paper.dash.org on January 4th and the seeding process for generating a wallet was insecure since then. There are no known Dash thefts that have taken place because of this (yet), but if you created a wallet using paper.dash.org between January 4th and April 5th, please move your money to a new place.

We take these kinds of issues quite seriously and believe it's our fiduciary responsibility to create the most secure environment for users to store value safely in our ecosystem. To address the issue we’ve reverted the patch that caused the issue and have also reverted paper.dash.org to an earlier, much safer version.

Thanks,

Evan Duffield

https://dashtalk.org/threads/security-advisory-for-paper-dash-org.8525/#post-90291

SDC broken crypto:

https://shnoe.wordpress.com/2016/02/11/de-anonymizing-shadowcash-and-oz-coin/
https://github.com/ShenNoether/Deanon

Clearly there are not enough qualified cryptographers to go around. Is high school math good enough if you have fancy graphics and marketing materials that can attract interest from uneducated users? Is it realistic to expect copy/paste altcoin devs to produce the type of cryptographic research generated by MRL?

https://lab.getmonero.org/
https://eprint.iacr.org/2015/1098.pdf

Topic: The impact of bad crypto (DASH, SDC, etc). How much does math matter? - page 8. (Read 7308 times)