Bitcoin Forum>Bitcoin>Development & Technical Discussion
Author

Topic: What if 50%+ attack starts at a disadvantage and has to succeed qucikly ? (Read 628 times)

DannyHamilton
legendary
Activity: 3388
Merit: 4615
What if 50%+ attack starts at a disadvantage and has to succeed qucikly ?
January 12, 2015, 08:50:37 AM
#4
Quote from: grau on January 12, 2015, 05:18:24 AM
Am I right?

Yes.

There is only a "guarantee of success" if the attacker can maintain better than 50% of the global hash power indefinitely (or if the attacker has 100% of the global hash power).  If there is a time limit on their ability to maintain the attack, then the probability of success drops.  The shorter the time available for the attack, and the smaller the margin over 50% the less likely that the attack will succeed.
grau
hero member
Activity: 836
Merit: 1021
bits of proof
Re: What if 50%+ attack starts at a disadvantage and has to succeed qucikly ?
January 12, 2015, 06:56:54 AM
#3
Quote from: bcearl on January 12, 2015, 06:38:59 AM
The past can be considered more secure, but the attacker could fork at the current block, spend coins on the public block and save them in his own.

I wrote about security of transactions in a scenario where the attack starts after the transactions were confirmed and attacker has limited time on hand.

I think that the scenario is of practical relevance:

Assume that the checksum of a company's book is regularly committed to the Bitcoin block chain. The CFO learns that an error was made with a time lag.
The question is if he can camouflage it by buying 50%+ mining capacity for a short period of time, that he can afford.
bcearl
full member
Activity: 168
Merit: 103
Re: What if 50%+ attack starts at a disadvantage and has to succeed qucikly ?
January 12, 2015, 06:38:59 AM
#2
The past can be considered more secure, but the attacker could fork at the current block, spend coins on the public block and save them in his own.
grau
hero member
Activity: 836
Merit: 1021
bits of proof
Re: What if 50%+ attack starts at a disadvantage and has to succeed qucikly ?
January 12, 2015, 05:18:24 AM
#1
I was thinking about the scenario where an attacker bundles 50%+ computing power, to revise some transaction already confirmed several times.

This would mean that the attacker has to fork from an earlier block and catch up with the tip of the chain. The probability that he manages to catch up is 1, but the time needed to carry out the attack depends on his margin of majority and the disadvantage he starts from.

Add to the scenario that the attacker has to complete the attack within a limited period of time, then it becames apparent, that 50%+ power is still not a guarantee for success.

Assuming the probabilty that the honest minority finds the next block is p (and the attacker has (1-p) > 0.5) then the expected time to catch up is proportional to

advantage/(1-2p)

showing that expected catch up time goes to inifite while margin over 50% is approaching 0. Constraining the expected catch up time raises the required margin exponentially.

While evaluating feasibility of a practical attack, not only its expected value but the variance of the outcome is of importance. The variance of success will be also huge if margin over 50% is small.

Am I right?
Bitcoin Forum>Bitcoin>Development & Technical Discussion
Jump to: