Why is Cuckatoo32 missing?
|
|
|
Normal computers cannot factor extremely large prime numbers in a reasonable amount of time.
Factoring extremely large prime numbers is quite trivial. Factoring extremely large composite numbers on the other hand...
|
|
|
The project looks interesting of course, the ideas are very good, but where is the guarantee that this is not really another scam?
A scam is a low effort money grab. Writing a blockchain from scratch is a substantial effort (which is why there's only a few dozen such codebases). Launching fairly, without any premine or instamine, leaves devs incapable of a money grab. Projects with both of these qualities are few and far between...
|
|
|
- New Proof-of-Work scheme, Autolykos – a variant of Equihash with better ASIC-resistance
How does it have better ASIC resistance, when Equihash is claimed to have superlinear time-memory tradeoffs (TMTO) while Autolykos can be solved with no memory and constant slowdown? IMHO it's closer to Ethash than to Equihash. Autolykos is pretty close to Equihash, it is based on k-sum problem , but also adds a signature component for somewhat pool-resistance. Parameters are chosen in order to be much more memory-intensive (and memory-bandwidth intensive) than ZCash's and other popular Equihash coins PoWs. Autolykos is very different from Equihash in memory requirements. Equihash searches for an arbitrary size 2^k subset of indices, whose corresponding items must xor to 0 (as well as satisfy other conditions on the ordered binary tree of indices and items). Memory is needed to sort and combine partial solutions. Without memory, finding a solution would take longer than the age of the universe. Autolykos instead generates the possible subsets as genIndexes(m||nonce), as shown in Algorithm 1 of https://docs.ergoplatform.com/ErgoPow.pdfThe element at an index j is trivially computed as H(j||M||pk||m||w) No memory at all is required for that. It could be used to cache the hash computation of elements, but that is at best a constant factor speedup.
|
|
|
2. If you're already making ASICs for every other algo, why not c29? It would just make sense so you can squeeze every penny out of your production line.
Because a mean ASIC would need over 4GB of external DRAM, limiting its advantage over a GPU Because a lean ASIC, while still needing 128MB of on-chip SRAM, incurs a computational overhead of having to compute 64 siphashes even if only one is needed. And last but not least, because each Cuckaroo29 variant only lasts for 6 months before being replaced by a substantially different one, leaving no time to ROI.
|
|
|
All you need to do for a deterrent is to prove you are willing to do what it takes, mutually assured destruction is the ultimate form of this (I.E. a Doomsday machine) and it is 100% effective.
Just like the death penalty is 100% effective at preventing homocides? The more serious your readiness to switch PoW, the more stealthy the ASICs will be operated... until you're not sure whether they operate at all. Or whether they're FPGAs, that will be very unimpressed with your PoW switch.
|
|
|
- New Proof-of-Work scheme, Autolykos – a variant of Equihash with better ASIC-resistance
How does it have better ASIC resistance, when Equihash is claimed to have superlinear time-memory tradeoffs (TMTO) while Autolykos can be solved with no memory and constant slowdown? IMHO it's closer to Ethash than to Equihash.
|
|
|
Grin no longer uses cuckarood...
|
|
|
@tromp. Would Grin's monetary policy not end similar to the diamond market where different groups come into agreement and does artificial scarcity by controling the supply of diamonds released in the market?
Release of Grin into the market is controlled by mathematics dictating 1 Grin/sec, which is beyond the control of any cartel. A cartel of all chip manufacturers, by TSCM, Samsung, Intel, etc. could produce superior Grin ASICs and keep them all to themselves, running them in their own data centers, and thus mine a majority of Grins. It would still be 1 Grin per second. There would be little point in doing that for Grin (at a huge loss) when it could be done for Bitcoin instead (at a smaller loss). In any case, in that exceedingly unlikely event, Grin could then change PoW. I reckon Asic miners might form a similar type of understanding. Would it not be the best for the Grin project if it copied Monero's exploration on Asic resistance to avoid formation of similar power groups?
Monero is just one ASIC away from realizing that their quest for ASIC resistance is futile.
|
|
|
And if you want to see the results of endless rewards and why it is a failure, look at mooncoin or newyorkcoin, both PoW coins.
Mooncoin claims to have an eventual emission of INT(0.29531*INT(19697202017/(INT(nHeight/100000)*100000))) which becomes 0 at height 19697300000, so it's not not endless rewards. Anyway, your argument would be better served by looking at less obscure coins with uncapped emission, such as Monero. Please explain how Monero is a failure.
|
|
|
One thing they learn is PoW has to end rewards and switch to a Transaction fee based economic model. *Which causes all kinds of problems for miner profitability , due to the winner take all design in PoW.*
There's no written rule, Dogecoin has infinite supply. Unpopular opinion, but I believe Bitcoin could hard fork, and change supply rules IF there was consensus. Dogecoin and Monero have tail emissions, i.e. after an initial period of decreasing rewards, at some time they switch to constant rewards. Grin is the first example of a coin with a never changing reward, from launch and forever at 1 Grin per second.
|
|
|
The forum moved to http://forum.grin.mw/ as we had lost control of the old domain. Please update your bookmarks and if possible, notify websites of the update when you spot the old domain.
|
|
|
Beam is a premined dev taxed scam that can afford to pay off exchanges for listings, maybe thats why.
Where did you find information about that beam is a scam? Or is it just your opinion? He's calling anything with a premine or mining tax a scam. Btw, while Beam does have a dev tax of 12% over all emission, they did not have any premine.
|
|
|
> I know how to calculate the genesis private key
Sign the message "i no money" with said key as proof of knowledge, or take your scam elsewhere.
|
|
|
Hi.
79228162514264300000000000000 (2^96) private keys can generate the exact same Bitcoin address.
Why is this not a concern?
Because in all likelihood no-one will ever be able to find two different private keys mapping to the same address. And if they do (against all odds), then in all likelihood the address will not have a balance.
|
|
|
|