Drivechain Overview and Misconceptions. Paul Sztorc TAB Conf Atlanta, GA Jan 27, 2018 v1.0 Feb 4 th, 2018 v2.0

Similar documents
Unlinkable Outsourced Channel Monitoring

Overview: 400% growth in 20 months

Autodesk software rental plans

HOW FAIR IS THE GOOGLE BOOK SEARCH SETTLEMENT? Pamela Samuelson Berkeley Law School Feb. 12, 2010 FAIR TO WHOM?

Making the Internet More Free and Accessible For Authors and Readers

Avigilon View Software Release Notes

Contradictions, Dialectics, and Paradoxes as Discursive Approaches to Organizational Analysis

MAKE HAZARD ANALYSES BETTER SINGLE-USE DEVICES GAIN PERMANENT PLACE PATH FOR PROCESS SAFETY EMERGES

Ensure Changes to the Communications Act Protect Broadcast Viewers

REQUEST FOR PROPOSALS AND TERMS OF REFERENCE

THOMAS-KILMANN CONFLICT MODE QUESTIONNAIRE

Caring for Sacramental Records

Internet of Things: Networking Infrastructure for C.P.S. Wei Zhao University of Macau December 2012

Programming Distributed Systems

These restrictions, also called Network Constraints, are characterized by:

SURVEYS FOR REFLECTIVE PRACTICE

RESEARCH PAPER OVERVIEW. Argument & Perspectives on Truth

Excerpt from PNSQC 2011 Copies may not be made or distributed for commercial use PNSQC.ORG 2

Eagle Business Software

Ethical Policy for the Journals of the London Mathematical Society

Security Challenges in the Internet of Things. Dr. Sigrid Schefer-Wenzl

Security in digital cinema

MOVIELIME.COM. Reinvent the Movie Experience

Spec 3.0 MRD Overview

T : Internet Technologies for Mobile Computing

5620 SAM SERVICE AWARE MANAGER MPTGS Driver Version Guide

CASE STUDY. Smart Motorways Project. Temporary CCTV Monitoring Systems for England s Motorway network.

Fallacies and Paradoxes

How to solve problems with paradox

Why Does it Have to Be So Hard?

Internet of Things (IoT)

ILDA Image Data Transfer Format

IF MONTY HALL FALLS OR CRAWLS

ILDA Image Data Transfer Format

A SMART, SAFE AND SMOOTH FUTURE TELESTE FOR CITY TRANSPORT. Video security and passenger information solution for city transport

Administrator: TLC Marketing UK Ltd, 17a-19 Harcourt Street, London, W1H 4HF.

Before the Federal Communications Commission Washington, D.C

Digital noise floor monitoring (DNFM)

Board Meeting Broadcast Project Preliminary Report August 02, 2017

Table of Contents. iii

Printed Documentation

Before the Federal Communications Commission Washington, D.C ) ) ) ) ) ) REPLY COMMENTS OF THE NATIONAL ASSOCIATION OF BROADCASTERS

Warriors Magazine, LLC

SCOPUS : BEST PRACTICES. Presented by Ozge Sertdemir

ARIEL KATZ FACULTY OF LAW ABSTRACT

GfK Audience Measurements & Insights FREQUENTLY ASKED QUESTIONS TV AUDIENCE MEASUREMENT IN THE KINGDOM OF SAUDI ARABIA

Subchains: A Technique to Scale Bitcoin and Improve the User Experience

Better Business Graphics: Avoiding Death by Powerpoint Joe Levy

Your Sky Q Contracts SKYQUK 0917

Comments on Recommendations of ECTEL to the NTRC on Revised Draft Electronic Communications Bill

DIGITAL TELEVISION: MAINTENANCE OF ANALOGUE TRANSMISSION IN REMOTE AREAS PAPER E

Applying to carry BBC content and services: a partners guide to process

IOT TECHNOLOGY AND ITS IMPACT

COMMISSION OF THE EUROPEAN COMMUNITIES COMMISSION STAFF WORKING DOCUMENT. accompanying the. Proposal for a COUNCIL DIRECTIVE

Digital Money Bits (DMB):Adding Reliability to the Cross-Border Remittance Industry

Broadcasters Policy Agenda. 115th Congress

Write to be read. Dr B. Pochet. BSA Gembloux Agro-Bio Tech - ULiège. Write to be read B. Pochet

Licensing & Regulation #379

Author Guidelines. Table of Contents

MEDIA WITH A PURPOSE public service broadcasting in the digital age November 2002

Broadcasting Decision CRTC

F M1SDI 1 Ch Tx & Rx. HD SDI Fiber Optic Link with RS 485. User Manual

P1: OTA/XYZ P2: ABC c01 JWBK457-Richardson March 22, :45 Printer Name: Yet to Come

Do we still need bibliographic standards in computer systems?

Mosaic 1.1 Progress Report April, 2010

Agilent 86120B, 86120C, 86122A Multi-Wavelength Meters Technical Specifications

This document describes software package upgrade for WV-S6131/S Release version: Release Note Reference Number: S6131_013.

Success Providing Excellent Service in a Changing World of Digital Information Resources: Collection Services at McGill

Before the FEDERAL COMMUNICATIONS COMMISSION Washington, DC In the Matter of ) ) Review of the Emergency Alert System ) EB Docket No.

Summary of. DMC Meetings How to avoid common traps? Giacomo Mordenti Global Biometrics Head, Livanova

7. For example in relation to Northern Ireland,

Procedures for conducting User QA on the scanner

2018 TEST CASE: LEGAL ONLINE OFFERS OF FILM EXECUTIVE SUMMARY

How to write a scientific paper for an international journal

Bringing an all-in-one solution to IoT prototype developers

TO BE PUBLISHED IN THE GAZETTE OF INDIA, EXTRAORDINARY, PART III, SECTION 4 TELECOM REGULATORY AUTHORITY OF INDIA

Detecting Bosch IVA Events with Milestone XProtect

Agilent I 2 C Debugging

A Guide to Paradigm Shifting

Maintenance and upgrade of a BARCO video wall installed in the Crisis Room of the ECML

Radio Spectrum the EBU Q&A

ISELED - A Bright Future for Automotive Interior Lighting

In this paper, the issues and opportunities involved in using a PDA for a universal remote

Technical Note. Manufacturer: Elan g! DVR 7.0 OVERVIEW SUPPORTED FEATURES

Where to present your results. V4 Seminars for Young Scientists on Publishing Techniques in the Field of Engineering Science

ALASKA SCHOOL DISTRICT

2015 Rate Change FAQs

3rd Slide Set Computer Networks

An Inverse Evaluation of Netflix Architecture Using ATAM

Television. Abstract 1

ITU-T Y Specific requirements and capabilities of the Internet of things for big data

Agilent MSO and CEBus PL Communications Testing Application Note 1352

Primary Frequency Response Ancillary Service Market Designs

STAPS THE STAPS PLATFORM - A BLOCKCHAIN PLATFORM FOR CONVERTING STEPS INTO CRYPTOCURRENCY. White Paper. Release 1.0

Capturing the Mainstream: Subject-Based Approval

Machina Research. M2M Communications for Policy Makers

BEFORE THE FEDERAL COMMUNICATIONS COMMISSION WASHINGTON, D.C

Music Business Handbook and Career Guide, 10th Ed Sherwood Publishing Partners. Chapter 4

No monopoly for High Throughput Satellite (HTS) services at sea

Transcription:

1 Drivechain Overview and Misconceptions Paul Sztorc TAB Conf Atlanta, GA Jan 27, 2018 v1.0 Feb 4 th, 2018 v2.0

2

3 Drivechain gives miners more power Optionality Criterion DC allows users to choose to make a certain gamble: the risk is that I [Paul Sztorc] am correct about a given miner-strategy being objectively the most profitable, the reward is unlimited technical flexibility without the need to bother everyone else (with a hard fork) Letting users gamble that a mining-policy is objectively the most profitable -- Indistinguishable from the Lightning Network

The Problem People are Different 4

Drivechain? 5

6 Drivechain? Stickied by theymos -- top of /r/bitcoin for two weeks

7 Agenda 1. Review: What are Sidechains? 2. Drivechain Specifically a) Puzzle Pieces / Existing Ingredients b) Achieving Opt-In c) Fusion of Ideas > Slow, Transparent Withdrawals 3. Security Model of Drivechain often misunderstood 4. Blind Merged Mining 5. Helpful Comparisons

9 What are sidechains? From Project Site www.drivechain.info

10 What s the point? Popularity d(location), not d(price) When I made this, BTC was at $6,800 Bitcoin Cash

11 What s the point? Crush the Alts Value Metcalfe s Law Blockspace & Security Alt Tx Fees to Our Miners Existential Threat Scalability Contention True cause: people are different (vs blockchain 100% consensus)! Lightning network does not solve scalability contention miles per gallon (scalability) vs. fuel tank size [gallons] (decentralization) Scalability debate isn t about scalability. It is about decentralization -- how much a node should cost to run. Roger / Luke

12 Part 2 Drivechain How do we make this wonderous technology?

13 Existing Ingredients -- get us Mostly There 1. Altcoins Themselves LTC, Eth would already be sidechains if not for i. they print their own money. ii. they reliably have their own miners/consensus. iii. they lack accounting rules for interchain transfers. a. Mainchain balance down by 1 Sidechain balance up by 1 b. Sidechain balance down by 1 Mainchain balance up by 1 2. Embedded Consensus Counterparty, Colored Coins 1. Inherits Consensus ( Merged Mining) 2. Asymmetric Protocol Child Watches Parent deposits tightly controlled coinbase txn miners transfers 3. Instant Atomic Cross-Chain Swaps 1. Zero-trust, simple, and fast (1 block w/o LN, immediate w/ LN) 2. but not pegged (not forced to be at desired 1:1 fixed rate). (You deposit 10 Core-BTC into RSK, making it 10 Ethereum-BTC. But will anyone willingly give you 10 Core-BTC for Eth-BTC?) (We want all the Altcoin-related price risk to be hedged away.) a b

14 Part 2b Achieving Opt-In Before I talk about the pegged main-to-side xfers, I need to talk about some other things. Warning: Advanced Blockchain Theory Ahead! 8 difficult slides

The Sidechain Must be Optional 1/8 15 By definition, the. Mainchain must process withdrawals blind to what is going on in the sidechain. Otherwise, it would be a de facto hard fork (which is exactly what we are trying to avoid in the first place). Can t be opt in unless you are out by default. But, then, an invalid withdrawal must be treated exactly the same as a valid one! There is no basis for discriminating between them. A B E F A B H B D C E F B D C Time I Two Possible Histories Time II

The Sidechain Must be Optional By definition, the. Mainchain must process withdrawals blind to what is going on in the sidechain. Otherwise, it would be a de facto hard fork (which is exactly what we are trying to avoid in the first place). Can t be opt in unless you are out by default. But, then, an invalid withdrawal must be treated exactly the same as a valid one! There is no Slepak basis for Error discriminating No main:fullnode between them. A constraints on miners. False. B E F Train Metaphor A B H 2/8 16 B D C E F B D C Time I Two Possible Histories Time II

17 3/8 The Sidechain Must be Optional By definition, the. Mainchain must process withdrawals blind to what is going on in the sidechain. Ignorance Mandate Otherwise, it would be a de facto hard fork (which is exactly what we are trying If you want in tothe know withdrawals are in side:valid, thenare run out the sidechain node. to avoid firstwhich place). Can t be opt unless you by default. ALL this tech is for the people who *don t* want to run the sidechain node But, then, an invalid withdrawal must be treated exactly the same as a in other words, the people who don t want to know. valid one! There is no basis for discriminating between them. A E B B C D E A F The Opt-In Veil of Ignorance F I One of these is SC-theft. But which one? B H B C D II

18 Users Affect Miners Affect Users (UsAMAUs) 4/8 The Bad News Some users All Miners [intransigent minority; uasf] By definition, the sidechain must be optional. All Miners All users [ Am I getting paid? ; chain status] Mainchain must process withdrawals blind to what is going on in the sidechain. If miners persuaded to follow different Ignorance Mandate Otherwise, itare would be a de facto hard fork (which is[but exactly what we are trying to avoid firstwhich place). Can t stuck be opt in unless are by default. compatible] If you want in tothe know withdrawals arewith side:valid, then run out the sidechain node. rules, then you re themyou as well! ALL this techan is invalid for the people who *don t* to run the sidechain But, then, withdrawal mustwant be treated exactly thenode same as a in other who want valid one!words, Therethe is people no basis fordon t discriminating between them. We want opt in. to know. Ergo, people must be OUT by default. A A E But UsAMAUs is constantly sucking everyone in. B B F H How to fight it? B C D E The Opt-In Veil of Ignorance F I One of these is SC-theft. But which one? B C D II

19 5/8 The Sidechain Must be Optional By definition, the sidechain must be optional. Mainchain must process withdrawals blind to what is going on in the sidechain. Mandatory Ignorance Mandate Otherwise, it would be a de facto hard fork (which is exactly what we are trying to avoid firstwhich place). Can t be opt unless you by default. If you want in tothe know withdrawals are in side:valid, thenare run out the sidechain node. ALL this techan is invalid for the people who *don t* to run the sidechain But, then, withdrawal mustwant be treated exactly thenode same as a in several other words, the who want to know. optional smart contracts valid one! There is people no basis fordon t discriminating between them. have already been forked into BTC (RSK federation, XCP, Mt Gox website). A E B Mandatory sidechain = today called extension block B C Preceding D tweet E F A F The Opt-In Veil of Ignorance I One of these is SC-theft. But which one? B H B C D II Problem with extension blocks, is ironically, miners can t steal from them, ie that extblocks force people to know.

Mutually-Exclusive Criteria 6/8 20 mandatory Sidechain must be optional PT s point is even true for zk-snarks / CoinWitness those would be a non-optional evil fork (soft-hardfork) albeit a hopefully irrelevant one.

Stealing Bitcoin 7/8 21

Mutually-Exclusive Criteria 8/8 22 Peter Todd / Luke Dashjr: miner-theft should be possible. Main:users must be able to ignore sidechain. Main:users must believe that main:miners will not change the main:chain as a result of what happens on a sidechain. Marcel / Slepak: want miner-theft to be impossible. Optional 100% (Peter Todd / Luke-Jr Happy) Zone 1 Zone 2 (Marcel / Slepak Happy) 0% 100% 0% Optional 100% Mandatory 100% Secure Miner-theft is Impossible Secure

23 Mutually-Exclusive Criteria Peter Todd / Luke Dashjr: miner-theft should be possible. Main:users must be able to ignore sidechain. Main:users must believe that main:miners will not change the main:chain as a result of what happens on a sidechain. Marcel / Slepak: want miner-theft to be impossible. Optional 100% (Peter Todd / Luke-Jr Happy) Zone 1 Zone 2 (Marcel / Slepak Happy) 0% 100% 0% Optional 100% Mandatory 100% Secure Miner-theft is Impossible Secure

Revisited 24

25 Revisited the sidechain to be optional. thus protecting mainchain users from being kept in the dark about the status of their mainchain payments.

26 Revisited ForceNet forces full nodes to the validate sidechain all sidechain to be optional. rules, preventing theft but forcing thus protecting mainchain mainchain users to upgrade, users from as in being a hard kept fork, in the or evil fork dark or Soft-hardfork, about the status like of their extension mainchain blocks payments.. (incl SegWit). ForceNet = mandatory sidechain + 51% censorship attack. Because of UsAMAUs, SegWit is an ext-block / evil fork and NOT 100% Opt-In.

27 Evil Fork (Hard Fork) or Permanent Inferiority Dr. B figured out a lot of this back in 2014 optional Soft fork, not yet activated evolution of extblock design Soft fork activated a long time ago 21 million coin limit secure Mandatory extension block requires you to know. Optional extension block pretty secure, but one way not pegged and thus not as useful.

28 Dr. B Extension Block vs Drivechain Drivechain: mandatory trivialities (for miners). Optional everything (for users). optional then, do what we can for security evolution of drivechain emphasizing opt-in secure

29 Dr. B Extension Block vs Drivechain Drivechain: mandatory trivialities (for miners). Optional everything (for users). optional then, do what we can for security evolution of drivechain emphasizing opt-in secure Liked by Giacomo Zucco, CEO Blockchainlab.it

30 Misunderstood from Both Sides Liked by Giacomo Zucco, CEO Blockchainlab.it Alp prefers it to be Optional even though it already is.

31 Misunderstood from Both Sides Does he know : * he disagrees with Todd/ Dashjr / Alp? * this arg would disqualify ALL sidechain designs? MrHodl prefers it to be Mandatory (ie, node-secured)

32 Misunderstood from Both Sides sidechains. Does he know : * he disagrees with Todd/ Dashjr / Alp? * this arg would disqualify ALL sidechain designs? MrHodl prefers it to be Mandatory (ie, node-secured)

A Crazy UsAMUs 33

34 A Bizarre UsAMUs Two Models Desire for Power Profit Motive Miner s Decisions Miner s Decisions SegWit Withheld Profit Motive? Scaling 3 too little too late 2016 in context rise of Eth / Alts Earnest confusion about how to Profit-maximize, breakdown of Communication Scaling 2 Miner roundtable

35 A Bizarre UsAMUs Two Models Desire for Power Profit Motive Miner Mind Miner s Decisions Miner s Decisions Withhold SegWit Increase likelihood of Blocksize Increase More Money SegWit Withheld Profit Motive? Scaling 3 too little too late 2016 in context rise of Eth / Alts Earnest confusion about how to Profit-maximize, breakdown of Communication Scaling 2 Miner roundtable

36 A Bizarre UsAMUs Two Models Desire for Power Profit Motive Actually not a UsAMUs Miner s Decisions Miner s Decisions Only the speculators are affected. Just the but SC users might lose the SegWit gamble Withheld arg in Profit disguise. Motive? Scaling 3 too little too late DC allows users to choose to make a certain gamble: the risk is that I [Paul Sztorc] am correct about a given miner-strategy being objectively the most profitable, the reward is unlimited technical flexibility without the need to bother everyone else (with a hard fork) 2016 in context rise of Eth / Alts Earnest confusion about how to Profit-maximize, breakdown of Communication Scaling 2 Miner roundtable

Fusion of Ideas 37 Mainchain txn rules: Already prevent counterfeiting. Can never (by definition) enforce sidechain rules. (Theft-notwithstanding a peg has achieved itself). Our unsolved problem is theft, not peg. ACCS no theft, easy to use, and fast

38 Drivechain -- Long Slow Transparent Vulnerable Withdrawals optional Slow, at least 3 months, but pegged (1:1 rate). Recall, users get speed elsewhere: main-to-side deposits via Embedded Consensus ((main side), (side main)) trades via atomic swaps. Cross-chain LN Users shouldn t be using the slow withdrawals equivalent to having a legal contract enforced. (Similar to closing a LN channel only done if something goes wrong.) Batch the withdrawals. secure

Batch the Withdrawals 39

Part 3 Security Model 40

41 Part 3 Security Model Only b/c PoW From: drivechain.info/faq

Remember Our Example? 42

43 All Aboard!! Remember?

44 All Aboard!! And also? H

45 All Aboard!! Another Theft-Attempt Z K

46 All Aboard!! A third theft-attempt X

47 Per Sidechain, Only One Traincar can advance at a Time (each main:block) The others move back. [E,F] [E,F] [H] [Z,K] t = 9 Through t=16 [H] [X] [Z,K] [X] Sidechain #6

48 Per Sidechain, Only One Traincar can advance at a Time The others move back. t = 10 [E,F] [H] [Z,K] [X] Sidechain #6

49 Per Sidechain, Only One Traincar can advance at a Time The others move back. t = 11 [E,F] [H] [Z,K] [X] Sidechain #6

50 Per Sidechain, Only One Traincar can advance at a Time The others move back. t = 12 [E,F] [H] [Z,K] [X] Sidechain #6

51 Per Sidechain, Only One Traincar can advance at a Time No action taken. Abstain t = 13 [E,F] [H] [Z,K] [X] Sidechain #6

52 Per Sidechain, Only One Traincar can advance at a Time Everything moves back. Alarm t = 14 [E,F] [H] [Z,K] [X] Sidechain #6

53 Per Sidechain, Only One Traincar can advance at a Time The others move back. t = 15 [E,F] [H] [Z,K] [X] Sidechain #6

54 Per Sidechain, Only One Traincar can advance at a Time The others move back. t = 16 [E,F] [H] [Z,K] [X] Sidechain #6

55 Finish Line = Withdraw BTC If a train car advances 13,150 places (3 months confs) finish line Passengers can disembark. Its txns can be included [in a main:block]. BTC has moved from sidechain to mainchain, finally. Trains expire after 26,300 blocks (6 months). This info is now costly to make, but easy to verify (next slide). Just like PoW. This is a de facto SPV Proof the best so far. [E,F] [H] 13,150

56 Easy to Verify Many ways to do it, DC won t force a particular way...because it can t (remember the veil). Meanwhile, sidechain should make it very easy to learn the correct withdrawal. Include it in every sidechain header (for 6 months). Include it as the left node in a compound Merkle tree. Recall: mainchain has which withdrawals are side:valid. But (disinterested) main:users and main:miners can still: 1. Run sidechain in SPV mode, and examining the withdrawals there for stability and consistency. But, no idea which headers are valid 2. Ask a friend who runs this sidechain. 3. Social proof look at reputable authorities, social media. 4. Use the Alarm (mentioned earlier). Full Sidechain Node Drivechain Monitoring Improvement Factor 2 GB per week (assuming current [1,4] MB limits) One bit per 3 months (in equilibrium case) 192,000,000

57 The UASF Defense [and threat of] If users detect a bad withdrawal, they can choose to reject any block that includes it. (Ie, train arrives, but the doors don t open, and passengers aren t allowed to disembark.) Plans to make this very easy in the UI just a few clicks. ( +Box: Danger if not joined my economic majority. ) Users can take their time, and will never be surprised. Takes 1+ month to advance 4,000 spaces, which is (1/3) the required distance. Compare to V.O.I. and March 2013 HF. Miners don t know if users plan to UASF-defend, until they do it (ie, users automatically bluff for free). Since it won t accomplish anything, why bother attacking? If zero attacks, it is free to defend. Ideal!

58 The UASF Defense [and threat of] If users detect a bad withdrawal, they can choose to reject any block that includes it. (Ie, train arrives, but the doors don t open, and passengers aren t allowed to disembark.) Plans to make this very easy in the UI just a few clicks. ( +Box: Danger if not joined my economic majority. ) Users can take their time, and will never be surprised. Takes 1+ month to advance 4,000 spaces, which is (1/3) the required distance. Compare to V.O.I. and March 2013 HF. Miners don t know if users plan to UASF-defend, until they do it (ie, users automatically bluff for free). Previous Paradoxes Since it won t accomplish anything, why bother attacking? If zero attacks, it is free to defend. Ideal! Same Process, but: 5-6 hours after vs 3 months before

59 The UASF Defense [and threat of] If users detect a bad withdrawal, they can choose to reject any block that includes it. (Ie, train arrives, but the doors don t open, and passengers aren t allowed to disembark.) Plans to make this very easy in the UI just a few clicks. 3 months ( +Box: Danger if not joined my economic majority. ) Users can take their time, and will never be surprised. Takes 1+ month to advance 4,000 spaces, which is (1/3) UASF, forbidden the required distance. Compare to V.O.I. and March 2013 HF. Miners don t know if users plan to UASF-defend, until they do it (ie, users automatically bluff for free). Since it won t accomplish anything, why bother attacking? If zero attacks, it is free to defend. Ideal! UASF Timeline

But wait, there s even more The UASF Defense [and threat of] asymmetry for the defenders! 60 If users detect a bad withdrawal, they can choose to reject any block that includes it. (Ie, train arrives, but the doors don t open, and passengers aren t allowed to disembark.) Plans to make this very easy in the UI just a few clicks. 3 months ( +Box: Danger if not joined my economic majority. ) Users can take their time, and will never be surprised. Takes 1+ month to advance 4,000 spaces, which is (1/3) UASF, forbidden the required distance. Compare to V.O.I. and March 2013 HF. Miners don t know if users plan to UASF-defend, until they do it (ie, users automatically bluff for free). Since it won t accomplish anything, why bother attacking? If zero attacks, Failed it is free UASF? to defend. Ideal! Consequences for the losing side? Theft? No Can t Spend BTC? No Rollback? No miners not here can t receive BTC until you give up.

61 Liked by Giacomo Zucco, CEO Blockchainlab.it No Rollback

62 Miner Economics Miners -- incentive to maximize exchange rate. If sidechains good, activation increase BTC price. Price increase equilibrium difficulty increase. After difficulty increases to a certain point miners will only be able to remain profitable, if they have a 100% support good sidechain policy. Does NOT mean they run sidechain nodes. May just mean alarm if there is ever more than one train

63 A 51% Attack (Miner Centralization) A Comparison Mainchain vs Sidechain vs LN -- FYI, I think all three are secure. With 51%, I would not attack the entire LN at once. I would attack via a mosquito strategy where miners connect to LN-hubs and try to defraud <1% of the channels. Perhaps: 1 channel/day, or 1/hour. Regular Bitcoin Drivechain Lightning Network Method of Theft: Intentional large (6+ block) chain reorganization Advance a dishonest withdrawal 13,150 times. Broadcast an old channel state & refuse to include fraud proof. Proving Fraud: Automatic (You ll notice the reorg) Easy (1 bit/3 months) -- DoS Resistant Easy (auto-watch for valid, ultrahigh fee, LN-channel-shaped txns) Attack Requires 51% for? 7+ blocks (70 +minutes) 13150 blocks (3 months) [ reorg 7+ blocks 70 min ] 1000+ blocks (1 week) [ reorg 7+ blocks 70 min ] Affects: All main and side chains. All sidechains. Single individual txn. Will Others Care? Yes Probably Probably Not Recourse: PoW Change (Hard) UASF (Easy) PoW Change (Hard) harassment If attack succeeds: Exchange rate falls (unreliable network); Tx-Fees fall (lower demand) E.R. falls (token no longer multi-chain); Tx-Fees fall (no SC fees) E.R. falls (LN unsupported); On-chain txn fees. perverse incentive

64 Part 4 Blind Merged Mining Making Drivechain 100% opt-in, for miners as well as users.

65 Drivechain: 100% Opt In, Yet Very Easily Secure Time SPV SPV SPV SPV (Main) Full Node (Main) Full Node (Main) Full Node (Main) Full Node

66 Opt In Add Drivechain Inter-chain xfers Blind Merged Mining SPV Drivechain Time SPV SPV SPV SPV SPV (Side ) (Side Full Node ) Full SPV Node Drivechain SPV SPV (Side ) (Side Full Node ) Full SPV Node (Main) Full Node (Main) Full Node (Main) Full Node (Side ) Full Node (Main) Full Node (Side ) Full Node

67 Opt In Sidechain Full Node is Optional Time SPV SPV

68 Even Running DC-compatible software is Optional (SF) Time SPV SPV

This is Actually Required (Remember?) 69 Else, we regress to the extension block which is an Evil Fork mainchain FULL nodes must do more validation lest they become un-full. Ironically, problem with Extension Blocks is that miners can Never steal from them. At which point it becomes a full force consensus rule, and you are forced to know.

70 Even giving people an option almost certainly can t have any effect at all (let alone a negative one)! because the Altcoins (and Spinoffs) already give users those options.

71 So, no criticism is really possible runs a Sidechain Full Node? No Yes That is fine they are completely unaffected. That is fine they have consumer sovereignty. Ie, need to be allowed to make their own mistakes (mistakes they would make anyway by using Altcoins). Other users can always ignore these mistakes.

72 So, no criticism is really possible (?) runs a Sidechain Full Node (to mine)? No Yes Exchange rate Tx fees That is fine I guess it wasn t profitable. That is fine?? I guess it was profitable. Wait a minute

73 Network Externalities Miners Pay? M Cost of outsourced validation Cost ($) of Full Node: Bandwidth Equip / CPU / Power Storage Web wallet Phone wallet Always Rarely Externality Full Node Cost ($): Privacy (Observing Bandwidth) Decentralization (Harder to Validate, fewer seed nodes) Concentration of Power (Resource Asymmetries Become More Relevant) Highly nonlinear and explosive, potentially existential! Never Miners may harm other miners.

Miners Imposing On Each Other Miner may run this sidechain anyway, relying on pool. Thus forcing *all* miners to rely on pool, as none can accord externalities. 74 M B1 S1 B2 S2 B3 S3 Sidechain shouldn t be run but it will be anyway. Benefits outweigh costs, so do run the sidechain. But the network (ie, other miners) is not compensated (ie, not reimbursed)!

75 Blind Merged Mining Only affects people who run nodes, ie *not* the miners. Defined land in main:coinbase M -- defines the next mined sidechain header Ɛ B1 S1 Ɛ B2 S2 B3 Ɛ S3 OP code letting you buy this space. Basically turns every sidechain full node into a pool administrator. Gives (100-Ɛ)% fees to hashers, keeps Ɛ for themselves. Market will drive Ɛ toward zero, probably even lower than the outsourced node validation cost. This effectively equalizes profits. Miners earn same profit, whether they mine a sidechain or not. If inter-miner externalities are high, revert to Blind Merged Mining (and don t pay them).

76 Blind Merged Mining Only affects people who run nodes, ie *not* the miners. Defined land in main:coinbase M -- defines the next mined sidechain header Ɛ B1 S1 Ɛ B2 S2 B3 Ɛ S3 OP code letting you buy this space. Massive increase in: decentralization, pool competitiveness. Basically turns every sidechain full node into a pool administrator. Gives (100-Ɛ)% fees to hashers, keeps Ɛ for themselves. Pool operators cannot exclude miners. Market will drive Ɛ toward zero, probably even lower than the outsourced node validation cost. More efficient than regular MM: No software upgrade needed (miners don t need to run new, experimental, buggy software. Miners are paid in mainchain BTC (as opposed to sidechain coins which they may not want). This effectively equalizes profits. Miners earn same profit, whether they mine a sidechain or not. If inter-miner externalities are high, revert to Blind Merged Mining (and don t pay them).

77 Disproportionately Low Support Misunderstandings? Dec 2013 Oct 2014 Nov 2015 Feb 2016 Oct 2016 Jan 2017 Feb/April June Sept Present 2014 2015 2016 2017 2018 Sidechains Very Old ( Drive Chain much older than SegWit) Solves everyone s problems Has zero drawbacks Suspicious lack of interest. Is it Misunderstandings?

78 Helpful Comparisons Replace sidechain with 1. altcoin / counterparty ecological concerns sidechain might become too popular it would compete with Bitcoin on fees 2. A website (like Mt Gox ) theft people might lose their money This is desirable! Antifragility! Improvement! Perfection neither attainable nor desirable. Difference between DC and other things. JihanWu-wallet.com Safe Imperfection Timeline

79 Progress vs Expertise Drivechain is pro-experiment, anti-expert.

80 Progress vs Expertise Drivechain is pro-experiment, anti-expert.

81 Conclusion Goals Defeat Altcoin Competition, permanently Resolve Scalability Conflict ( win-win ), permanently. Resolve questions of governance. Experiments can be tried safely on opt-in basis. Status Code v0.1 is finished!! Thanks CryptAxe Recently rebased to latest Bitcoin Core. Help Needed Code Review Unclear Review Incentives Issues are open on GitHub. Thanks Ben Goldhaber

2024 © artsdocbox.com Privacy Policy | Terms of Service | Feedback