I think I understand that addresses are hashed to compress massive coprimes.

I think I understand that transactions are hashed for the same compression motivation but also to keep the encrypted content more random thus more secure.

I can't figure out why blocks are hashed and can find no explicit motivation in the Satoshi paper, wiki, or here.

Are blocks hashed only to slow verification thus reward release rates?  If not, why?

Thank you so much in advance!

I think this was a great experiment with lots of valuable data, and I've used it to learn a lot about high speed transaction verification.

I want to conduct my own experiment.

Could someone please show me what to change in the code to set a 1 second block solution time?

Thank you so very much in advance!

Thank you refer_2_me for contributing!


I apologize since I don't fully understand and probably wasn't clear.  I'm referring to the address used for fees & rewards.  Is that the address you are referring to?

Thank you so much in advance!

Thank you amincd for continuing to educate me!


Please excuse me, as I am slow sometimes, but I don't think I understand.  Are you confirming that no two consecutive blocks can be mined by the same address?  If not, would you mind expanding on that statement so that I can better understand why not?

Are you also saying that multiple miner addresses can be used for 1 block?  Is it different for rewards vs fees?

I very much appreciate your patience and knowledge and thank you so very much in advance!

I am also going to try to do an experiment to test the viability of this method.

I would very much appreciate any assistance anyone provides.

Thank you so much for participating amincd!


Please bear with my limited understanding.

As I understand, it can be determined who mined a block by the address used for the fee & reward payments, and this is how Proof of Stake is enforced.  If this is not correct, please educate me on how Proof of Stake is enforced.

I realize that a miner/pool can use multiple addresses and would love advice on how to thwart that as well, but at least the cost to attack with secret chains is increased by some amount, I assume.

Thank you so much in advance for your knowledge!

I would like to test the viability of Proof of Presence to thwart secret chain attacks in a high transaction verification speed environment.

Could someone please show me where in the Peercoin code Proof of Presence should be added and where to drop the verification time to 1 second?  I am a complete noob to cryptocurrency code, but have been programming for decades, so I really just need a quick kickstart...I think.

For reference: "Proof of Presence" in the simplest form rejects consecutive blocks verified by the same miner's address used for rewards & fees.

Thank you to whoever so much in advance!

Thank you so much for contributing amincd!


I apologize for giving the impression that I support abandoning Proof of Work.  I have seen the arguments for a hybrid PoW/PoS system, and I wholeheartedly agree.

Would you mind giving your opinion on the viability of "Proof of Presence" combined with PoW/PoS to thwart secret chain attacks for high transaction verification speeds?

If it is too weak in its rawest form, forbidding consecutive blocks verified by a single address, could you give a suggestion on a more complex version?

Thank you so much in advance for helping me to understand this problem!

Thank you so much gglon for continuing to educate me!


Would you mind elaborating on how it would undermine the economy please?  I am still quite uninformed on the intricacies of bitcoin.

Thank you so much in advance!

Thank you gglon for your reply!

Could it work to any degree if it was combined with Proof of Stake?

Could it be possible to thwart secret chains by forbidding consecutive block verifications by a single mining address or something more complex?

It seems that if bad actors were forced to find and incorporate others' verified blocks in a chain, it would be more costly for them to attempt this kind of double spend attack in a high verification speed environment.

I realize that pools can simply use multiple addresses, but with payout thresholds, the threshold effectively doubles because of the use of two addresses.

Could some more elaborate rule based upon this concept be employed to thwart this kind of attack?

Thank you for contributing samsam!


I think you can find evidence of the issues involved with a high-speed transaction crypto at the SmallChange experiment.

 https://bitcointalk.org/index.php?topic=182430.0

I do not come close to having the technical expertise to pinpoint what the problem actually was, but it does seem that some miners had the problem that Anon136 predicted.

Economically speaking, I think that the availability of instantaneous transactions are necessary for the total displacement of traditional currencies by cryptocurrencies.

I think I may have a solution to make difficulty more flexible and based upon the relative needs for speed & confidence.  I would very much appreciate your input!

https://bitcointalk.org/index.php?topic=373385.msg3995296#msg3995296

Would you mind posting a solution to this thread's problem at the highest speeds if you have one?  Thank you so much in advance!

Thank you so much for continuing to help me with this Anon136!


This is why I was thinking that a hybrid PoW/PoS would be superior to either/or, just to make it that much costlier for a miscreant.  

Actually, I would prefer as many valid Po's as possible.


Can't the same technique that verifies PoS be used for PoP?


Please do!  I personally can never get enough security.

Would you mind too terribly taking a look at my post in altcoins?  My expertise lies more in economics, so your gracious advice would be invaluable!  

https://bitcointalk.org/index.php?topic=373385.msg3995296#msg3995296

Again Anon136, thank you so much for educating me!


You think that Peercoin should be PoS instead of the hybrid PoW/PoS model (I presume) it's currently working on?  I had heard that the hybrid model was more secure.  Is that not true?  If not, could you please explain why?


Double thank you!  I had wondered if this was an issue with low transaction verification times.  Thank you so much for confirming this!


Triple thank you!  I can't express to you my gratitude for you clearing up these issues for me with in depth explanation!  I've been trying to get to the bottom of this for days.

So the only way to be a successful miner for a low transaction time crypto is to check all available chains?

Also, if a miner was to save up and then publish the longest, is there no way to thwart this?  Could a miner only be allowed to add no more than one block to the chain in a row?  "Proof of presence" or something?   


Thank you for the real world examples!  That's really the only way I can hope to understand.

Could this attack not be thwarted with PoS and "proof of presence"  as outlined above?

Can you think of any other security feature that could break this down or at least reduce the risk to some sort of tolerable level?

Thank you Anon136 for your tutelage! 

Please rip apart this idea, but please also explicitly detail the reasoning behind your critique with evidence if possible.  Please do not comment on the economic assumption that the quantity theory of money is more or less correct, but please comment on the ideal rate that it should be calculated with detailed explanations for your reasoning: rolling as available, rolling 24 hours, rolling hours, rolling instants, or decreasing intervals as popularity thus data increases.

I'm not looking to personally profit from this but will work on it until someone else beats me, an easy feat.

My qualifications

I'm about a week young at studying cryptocurrencies, have been programming for a few decades, and have studied economics for about a decade.

Flattery

It is my opinion that cryptocurrencies are on the road to totally displacing conventional national currencies.  I believe that all involved, even malicious miners, have worked to make cryptocurrencies more superior by the day.  I believe that cryptocurrencies will soon be closer to the ideal currency, totally secure cheap fast stable & ubiquitous, than conventional currencies, so I'd like to contribute my small knowledge to that effort.

General Idea

I think cryptos should be able to provide both instantaneous transactions and high confidence transactions for small rapid purchases like in a rush at a vending machine and large slower transactions like bank to bank clearing a billion USD equivalent respectively, and I think that the way to achieve stability is by setting price inflation to 0%.

Mining no longer issues new supply

I think the supply of the crypto should be exclusively determined by price inflation, detailed next.  To that end: there should be no rewards for mining, but a transaction should be rejected if the fee is not > 0.

Total stability through 0% price inflation

I think this can be effected by including Fisher Index data, quantity per unit price & good/service identifier, into the transaction, and applying a currency multiplier, the inverse of the Fisher Index, indicating at what rate all account values should be multiplied.  My concerns are the obvious: how can the master list of the goods/services identifiers be maintained, and how can the price reporting be made honest?  I think but am unsure that using the hybrid PoW/PoS model that Peercoin does could make dishonesty costly since one must become a large holder to manipulate the supply at low cost: there is no reward for mining, transaction fees are > 0 so probably goes to someone else if one's stake is small, only a large % of total transaction value can manipulate the Fisher Index thus the supply.  Also, any benefit a price manipulator gleans for oneself is also distributed to every other holder equally, so someone wishing to get more coins by falsifying a price deflation would get them at the exact same rate as everyone else, nullifying any advantage over other holders.  

Total price stability could be where cryptos begin to exceed traditional currencies in traditional quality, and I would be ecstatic if every crypto adopted it.  Assuming that the price reporting is correct on average, the currency could correct itself instantaneously.  This is impossible with banknotes and metal coins but could happen somewhat if monetary authorities gathered debit & credit transactions.  With cryptos, there are no banknotes, so the price inflation could be always calculated from the start.  I confess I'm unsure at what rate the index should be calculated, but the interval could be as low as the data provides.  Seconds? Deciseconds?  While some part of me believes that rolling 24 hours would capture all of the daily fluctuations, another part tells me that velocity & production would become more constant at higher frequencies allowing for a closer link between supply & prices, and please comment on how to make the price reporting system more secure.

Varying transaction verification speed & confidence through user-defined difficulty

Since mining no longer creates new supply, difficulty is now unlinked from creation rates.

In the real world, a bartender doesn't necessarily check for counterfeiting especially on a busy night on every bill, but a bank will employ a complex clearing process to determine that a one million USD wire transfer is legitimate before permitting a withdrawal.  To give the kind of transactional flexibility that traditional currencies have, should it be effected with a sender-defined difficulty?  Since difficulty is no longer linked to creation rates, should it be instead linked to transaction speed or confidence?  If the user wants a beer, they set the difficulty low for a quick confirmation.  If the user wants to buy an island, they set the difficulty to some extraordinary height.

"Proof of presence" to thwart secret chains on high speed verification

It has been explained to me that with high speed verification, malicious miners can hold back chains, and then publish them so to double spend etc.  I think that by using the same underlying methods as proof of share, that I'm calling "proof of presence" for expediency's sake, miners could be further prevented from monopolizing the blockchain thus this type of attack by forbidding consecutive blocks.

I'm sure this could be enhanced by someone with more expertise than me, but I think this could at least add a small amount of cost to this kind of attack.

Summation

I think a cryptocurrency can be created with total stability and transaction flexibility, with varying preference for speed or confidence by:

• Issuing/retracting supply not by mining but by a price index
• Allow senders to determine a transaction's difficulty to trade-off between speed and confidence
• Make transaction fees mandatory
• Prevent consecutive block additions by a single account to dampen the risks of high speed verification

Final appeal

I am still fuzzy on the technical aspects of cryptocurrencies, so please correct any technical idea.  Please explicitly state how the protocol should be effected to achieve the above.  

I also understand that the price index is wide open to manipulation and will remain a huge risk, so any suggestion on how to make the reporting more secure would be appreciated.

Actual code is more than welcome!

Thank you Anon136 for that education!

OK, assuming for the purposes of this question that more centralization is not a concern or that it can be sufficiently thwarted with Peercoin's hybrid proof-of-stake/proof-of-ownership model, are there any other problems for the senders/receivers?

Does the system inherently break down because of the many orphan blocks?  I have heard this is the case but not the explanation why.

The failure of currencies such as Smallchange and Mincoin have been cited as practical examples of the limitation of high speed verification, but I can find nothing that blames the verification speed itself, only bad support or ill-prepared and ill-executed protocol updates.

Can a cryptocurrency with a high verification speed succeed in terms of security and reliability?

Also, saw some of your posts on SmallChange.  Thank you for the information!  Could you go into detail on this?  https://bitcointalk.org/index.php?topic=182430.msg1912491#msg1912491  Why do confirmations give no security at all?

Also, how is the 20%er able to create his own chain?  Won't the rest of the network see that his verifications are false?  https://bitcointalk.org/index.php?topic=182430.msg1922820#msg1922820

Please explain why.

It's been explained to me elsewhere that a low verification time increases the amount of orphan blocks.
How?
Why?

Does this type of network inherently fail?
If so, why?

Are there costs associated to a cryptocoin with lots of orphan blocks?
What are they?
Why?

Are lots of orphan blocks a nuisance that clogs up miners' networks and systems, or do they actually prevent a cryptocoin from succeeding?
Why?