I was thinking about all this a bit more. Some of this was suggested earlier:

1. Snapshots

After a specification change, a time span, a number of transactions or whatsoever the current state of the Mastercoin ecosystem should be stored in an agreed upon format. This should include all balances and may include open orders, if a snapshots is going to allow to restore a state. The correctness of a snapshot must be confirmed by several parties and finally sealed by some higher authority. The data provided by a sealed snapshot shall never be challenged and has the highest power of ruling. No user shall ever fear that a change affect the past. (note: this is always high priority and nothing new!)

2. Checkpoints

Snapshots should be explicitly used to verify an application.

3. Reference documentation

The specification is great, but I'm not yet sure how it could be used as some kind of reference for different versions of specific transaction types and similar. Commit numbers may be used, but I think in the best case there were some additional isolated and very short formal definitions which precisely define the different transactions at a given version and the changes made to previous ones. If I'd like to lookup something of the past, I'd probably need to invest some time for extracting all details from different places. Pseudo code or isolated reference implementation snippets may be used. Use-case and goal: "I want to lookup the policies applied prior snapshot 123.. ah, input is defined as.., only Exodus output allowed, otherwise invalid, 1-of-3 multisig, second and third multisig output is encoded data, ...".



Some more lower priority stuff:

4. Define how changes are pushed

Process.md describes the process of making changes to the Mastercoin specification. This document may be expanded to a more detailed "step-by-step" process guide similar to Bitcoin's release-process.md but related to sealing snapshots and pushing updates.

5. Test cases

With clear implementation guidelines it may be easier to run wide scale tests. I'm not sure, if this is done at the moment, but I'm thinking about things like "scan the chain for all transactions with unordered data-packages to get an overview about what the implications were, if an order would be enforced". (I'm not good at making up examples - ) Rephrased: if a change is pushed, evaluate all consequences. Run different settings, create test-snapshots etc.

6. Transaction archival

Instead of storing only a current state, historical transactions may be stored and sealed similar to snapshots, e.g.:

Looks good so far, the processing was indeed much much faster. And the progress bars are awesome!

What still remains is the problem with "," and "." interpretation of balances within the balance overview which shows super high amounts.

And I tested something else what normally shouldn't happen, but this may be handled nevertheless:

I'm using different wallets and I used the MSC wallet with Masterchest, then deleted all Masterchest folders, downloaded the new GitHub version, but changed the wallet.dat inbetween. After starting the new version for some reasons the addresses from the MSC wallet were still shown under addresses, but if I try to send coins, it only shows those from the new wallet. I'm actually a bit surprised, because I deleted also the wallet.sdf etc.

Broadcasting an asset create transaction (or any other one that is not yet "official") is something that can be handcrafted within minutes. The blueprint is there.

Introducing new features into the wild is still more time consuming - and I think we should figure out why in greater detail. This begins by finalizing the specification and ends with a broad implementation on all wallets and transaction explorers to maintain consensus. It's all about not rushing things which may lead to race conditions, altered states (= balances) and minimizing further changes to the transaction type in a short timeframe right after, to name a few reasons.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

MESSAGE TO ALL CIPHERMINE-PT SHAREHOLDERS:

CipherMine's exchange: CipherTrade.com opened it's doors to beta users
and is available under: https://beta.ciphertrade.com/

Trading of CIPHERMINE and CIPHERBOND shares is scheduled to start on
Friday 28th March 2014.

Within the next days I will release a request form to facilitate the
redemption of CIPHERMINE-PT shares to CIPHERMINE shares on
CipherTrade.com. The delay is caused because CipherTrade.com does not
support confirmed share transfers at the very moment.

You will be asked to provide the registration data of your BTC-TC
account that was associated with CIPHERMINE-PT shares. This step is
necessary to map your redemption request to an user in the shareholder
database.

Please make sure you are able to provide the following data to redeem
your shares:

 - The e-mail address that you used on BTC-TC
 - The Bitcoin or Litecoin address associated with your CM-PT shares
 - The number of CM-PT shares you are holding
 - The signature to a message with the content "CipherMine" signed by
your BTC or LTC address associated with CM-PT shares

For instructions about message signing take a look at:
https://bitcointalk.org/index.php?topic=283947.msg3233637#msg3233637

You will need to be registred on CipherTrade.com before you are able to
finalize the redemption process.

To register on CipherTrade.com please visit: https://beta.ciphertrade.com/

Please note: I'm unable to deal with any problems related
CipherTrade.com or the registration process.

If you face any problems, please submit your feedback in the CipherTrade
thread on litecointalk.org:
https://litecointalk.org/index.php?topic=7176.225

After you successfully registred on CipherTrade.com, you may finalize
the request and submit your e-mail address used for the registration on
CipherTrade.com.

Share redemption requests will be verified manually and you should
receive your CIPHERMINE shares on CipherTrade.com within approximetaly
24 hours.

A copy of this message was sent to the e-mail addresses provided by
BTC-TC and associated to CIPHERMINE-PT shares from the e-mail account
dexx at bitwatch dot co.

This message is signed with my GPG key:

http://bitcoin-otc.com/viewgpg.php?nick=dexX7 (fingerprint:
0xF43718054C3E7C5CFB33E8257675E31CF5719832)

Another notice will be posted here on bitcointalk.org as well as
forwarded via e-mail after the redemption process actually started.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)

iQIcBAEBAgAGBQJTKzJHAAoJEHZ14xz1cZgyuAcQAKSwdFzfrnpBdsSux+b4Nfbl
4sxnrQfojOh9+Ws4wCpegyh7DSJ+e23AnprDrKCa5FWHx5WjW0mAb9wHUZhSBYrI
Rp5KWCCczsA5J2eFg95R8GRPE+VbmsmySaE8ZhxW26iKUAUGraxIOlzTH7CTdVpR
BsB4nLEYK3M7f4l/nqbh1hOn/tFS8MSTEon+Dhybqe1npcQYYsdCXVzakOyDhku4
vUy1mndAQ+0WmR+XidxuGMwBpokttbBtr07Vc6vWckNx9zdbejQv0ABQfcR2dySb
kVf86OP1qE0MPLDDrDqMyH9ITYcsYe/a0qZ8pXrhDzVkhQBkYhz6TKisoxbYS+rH
O0blTshOxYipH+e66tM9V6jocEFEzivXKhWXVCpmuVqKip8lRAMgBcMx6tVAYu43
FPRce6jgPdME1DzAzkWexj0iYCagZPVrqqaggkQ21ra07SNsaKsYpiD86j2MAld4
bew+eEoTgCklmBLy+ryy2eObCjZbZqGhFrVdy1pgg6IN///UDehWL7Y97DSO/8A0
Gd1yYdgsMlYO+ix/gAcLtBGHcCJxEdN46ukeePJ+7ADWW3MmOOOw0qrC9MIFWh/v
/c8s3CLzrwSrw7QG2AmTtYTEzBz2969kmiAo/WFu63ygxfP3u6HS4vEkfIJ9JOfK
jtadfRhU6+M9BzY1mV2a
=POEZ
-----END PGP SIGNATURE-----

If you are using Bitcoin-Qt please go to "Help" - "Debug window" - "Console".

Enter: "validateaddress 1youraddress"

Replace "1youraddress" with the address you try to send from, don't use quotation marks.

A result like this should appear:


Copy the "pubkey" value into the "Sender address or public key" field on masterchain.info.

Clicking the "Verify" button should result in a green "OK" right of the button.

If this is the case, you are good to go.

If you are using another Bitcoin application, please tell and I'll try to walk you through.

Edit: in 0.9 it looks like this:

Only one allowed.

I see. 0x20434e545250525459 ("CNTRPRTY") is actually used to flag outputs as XCP data. There is no room for simple substitution, I think - "0000.." won't alway be "0000..", but the idea about compression is very interesting nevertheless.

What do you mean by "dictionaries for common bit patterns"? To my knowledge XCP transactions use some bits to flag a data package as XCP package and some to define the transaction type, but the rest is acutal transaction field data without OP codes or whatsoever.

Say the protocol would adapt a more strict output policy (e.g. only a valid pub key of the sender + data-packages are allowed), how would you deal with historical transactions that may be affected by such a change?

80 bytes would be better than 40 bytes, but is this amount sufficient to support all XCP transaction types?

I rather prefer to see them crushing their competition with what they do now: push innovation (things like immersion cooling) and superior architecture. Bitcoin mining will always be about being one step ahead and that's what is giving us an edge and a leading role in the future.

Well, that's what there is related to this:



Rest is about the protocol. Here is the PLL part:



At least the voltage is confirmed as it seems. And this even looks like an over-delievery!

Well, at least I can asure you that the user friedcat posted it and I actually found the post after reading about it on IRC. The spec matches by the way with the data provided in this thread, as far as I can see:

https://bitcointalk.org/index.php?topic=438359.msg4816701#msg4816701




Does Google Docs leak identities?

Hm. Maybe I'm doing it wrong? All multi signature outputs I tested - redeemed or not redeemed - return null.

I connected to electrum.no-ip.org:50001.

Just to be sure: getutxoaddress does not work with multi signature outputs, right?

This is how I'd formalize a class B transaction:

• has an pay-to-pubkeyhash-output to the Exodus address.
   
• has an "input reference" which is a public key within the input script sig whereby multiple inputs are allowed, if they all originate from the same public key. This allows parsing on an atomic level. The spec further allows to add different inputs and choses the one with the highest summed value. This comes for the cost of the need of fetching all input transactions in the worst case, but allows more freedom on the other hand.
   
• has valid Mastercoin transaction data encoded with the "input reference" within multi signature output(s). As far as I know the current implementations parse and identify data-packages in the following way: [don't care] [data package #1] (optional: data package #2).
  
  I'd generalize the choice of data-packages to something like "treat several outputs as a stream of potential data-packages and chain the longest sequences of MSC data-packages within transaction's output with ascending sequence numbers, starting from 01" (see an example here). No generalization is needed, if the data-package length is less than 61 byte which is currently the case for all accepted MSC transactions.
   
• has an "reference output" where the transaction requires such reference which is a pay-to-pubkeyhash-output not to the Exodus address, a data package or any form of the "input reference".
   
• all output values are >= dust threshold.
   

My wording is probably fishy.. but let me summarize how I think about this: as long as there is no ambigiousness (which shouldn't be the case) this explicitly allows to not include any form of sender's public key. This is of course not desired in most cases due to potential redemption, but I think the lack of the sender's public key shouldn't render the transaction as invalid to allow all forms of compression, faulty public keys and odd cases where the multi sig output may be redeemable by the user, but not by the "input reference" - without any further need of verification or checks. Keeping it a) as simple as possible while b) being as open and general as possible is what I would aim for to not create artificial limitations that may be hindering in the future.


Agreed. Forced compression does probably more harm than good.


Well, I'd say those are two different issues. One is the actual encoding and the other one is the redemption of multi signature outputs. I agree that OP_RETURN data-packages would be nicer, but I currently don't see how 40 bytes could be enough to store the data.


Good thing then that you raised this point. I think this kind of feedback is crucial and should be very welcomed.

This all is pretty technical, so I suggest to continue in the dev thread maybe?

For some reason the post disappeared. Maybe it was an intentional leak?

Here is a mirror:

AM BE200 datasheet:
https://www.dropbox.com/s/o87zbble4z5fkhq/AM%20BE200%20Datasheet%20-%20Google%20Drive.pdf

Bonding:
https://www.dropbox.com/s/57mnfscjfsti29a/bonding.pdf

pin_bot.jpg, pin_size.jpg, pin_top.jpg:
http://imgur.com/gjaOoF4,dB6sXBR,iHIqMSJ

Great you ask. This topic was recently discussed in the dev thread. I'll try to say something to each point:


Masterchain.info doesn't compress the key; the Masterchest wallet does currently compress the public key - with the intention of saving space and creating smaller transactions. Zathras (Masterchest creator) recently mentioned he may drop the compression, because this may confuse the user. What do you think about this?

Compressed or uncompressed - both share the same private key and are both redeemable by the owner. In neither of those cases any coins will be lost, but ...


Bitcoin-Qt/bitcoind is not able to recognize multi signature inputs as spendable and to my best knowledge there is no (graphical) client available that is capable of doing so. This means those inputs are neither added to the balance or even shown at all. I'm not sure about the input selection of masterchain.info which uses libbitcoin as backend, but the Masterchest wallet currently relies on the input selection by bitcoind via RPC and thus does not spend those outputs. Spending those is nevertheless possible, if raw transactions are handcrafted and I'm very, very sure that the wallets will soon be able to do so. - It's not really dark magic, but rather low priority at the moment, I guess. This is also possible via RPC and all it needs is some logic to find those unspent outputs.

If you like, send me a PM with your address(es) or transactions and I'll fire up my custom dust collector that I'm using for the faucet (example transaction).


As mentioned, compressed or uncompressed doesn't really matter - both should be redeemable. I think the way to go in the future is to have an intelligent input selection that redeems some of that dust whenever there is some space left to the next fee level (currently 0.0001 BTC per 1 KB, up rounded).


All cases are considered as valid by the three implementations and it appears that the spec is currently worded too strict. Changes were proposed (also related) to cover those scenarios more accurately, but the final wording is not yet finalized. No historical transaction or balance will be affected due to this. Baseline: transactions should include the input public key - either compressed or uncompressed - for redemption purposes, but are not enforced to.


Correct.


This will be addressed, that's for sure. At the same time I think this is something the user shouldn't care about, but rather a problem for the wallet to solve under the hood. What is your opinion about this? Would you prefer low-level control of inputs or maybe even a dedicated app to collect dust? Input on this is very welcome.


With Bitcoin 0.9 OP_RETURN transactions will be considered as standard transactions, but very recently the allowed payload size was reduced to 40 byte. If this is final, the size won't be enough for all Mastercoin transaction types and I tend to favor the data encoding within multi signature outputs. - They are widely accepted, redeemable, don't consume much more size and also very important in my opinion: very, very long payloads are possible.



In general the spec is defined first and implementation comes next, but I noticed over the last weeks that this is more an iterative process. In some very rare cases like this one the implementations are ahead of the spec, because, as you mentioned, if there is no one who actually notices this and raises his voice, such "conflicts" appear which require additional adjustments.

(TL;TR:) There is no bloat and transactions are created in a way that dust outputs are spendable, but due to the general inability of Bitcoin clients to deal properly with multi signature outputs, the current Mastercoin wallets don't redeem them yet. This will change and thanks to posts like yours this may happen rather sooner than later.

---


It doesn't matter, if someone has access to the Exodus address in the context of identifying transactions nor does the identification mechanism has any implications related to (de-) centralization.

Agreed, in terms of transaction costs the approach of magic bytes makes XCP transactions cheaper for the user. If it's much better? Well, I think that's rather a matter of personal opinion than something that can be generalized. All you can represent is your opinion and it seems I have a different one. This is probably the reason why you stick to XCP and I primarily prefer MSC. The trade off was already outlined: cheaper transactions vs. resilience and contributing to further improvements. And I'll bite: what happens, if a XCP bounty fund raiser loses the private key to the bounty wallet?

I'm not 100 % sure what you are addressing right now - that there is an output to the Exodus address or that JR holds the keys to the coins that were raised to fund Mastercoin?

I think this is a great misunderstanding. Initially there was a huge amount of Bitcoins raised and sent to the Exodus address to create something very innovative - the Master protocol. Those coins were and are used to pay for bounties and whatsoever and controlled by the Mastercoin Foundation - whose members are those with a high stake in this game (if I'm not mistaken). This means: coins in the Exodus wallet = funds for the project itself.

The output to the Exodus address is another thing: there are several ways to tag and identify a meta-transaction, for example transactions can be created with an additional output to a specific address (Master protocol) or one could encode some magic bytes (XCP) within the data payload. Or one may use OP_RETURN with some magic bytes etc. etc. ...

But there is actually another reason: DOS protection. DOS is not yet an issue and may not be in the short term, but for the same reason that there is a DEX fee (XCP and MSC both use one) or a Bitcoin transaction fee in general, this is a filter against spam.


Re MSC vs. XCP: both projects follow different approaches, for example:

Pre-funded by the community vs. ongoing funding by donations
Coins were bought by funding the project vs. proof-of-burn
Transaction marker is an output vs. marker is encoded within the data payload
An additional transaction processing fee is raised vs. no additional transaction processing fee
Many developers and different parsing engines vs. one implementation
Only sellers in the DEX orderbook vs. buyers and sellers
...

I wouldn't say one or the other is better or worse - each approach has benefits and downsides. In the end XCP is a MSC fork and because of this there are of course great similarities, but I hope over time more differences will emerge and I'm very curious where all this leads to.

Looks very nice! I may have found two issue:

I created a new currency and issued some coins. During the "sign transaction" proccess the name of the coin is shown as "Unnamed colored coins", but I'm sure, I defined a ticker and full name: https://i.imgur.com/wGyw9nG.png

At "Issue colored coins" only Bitcoins are shown: https://i.imgur.com/wTDehng.png, "Quick send" and the wallet overviews show both currencies. (https://i.imgur.com/dzYMjYd.png)