I get that but the chart is STILL incorrect.  There is no known weakness of SHA-2.  Period.  There is a known weakness against an algorithm (not used by anyone anywhere for any purpose) which is similar to SHA-2 except it uses 42 rounds instead of 64.  Had SHA-2 used 42 rounds it would indeed be weakened but it does not.  Even given infinite energy and time the weakness can no be used to produce a preimage of a SHA-2.  

The only method of preimage of an SHA-2 hash is pure brute force requiring 2^256 operations.
The only merhod of collision of a SHA-2 hash is pure brute force requiring 2^128 operations.

As these are the maximum possible based on the hash length it by definition not "weakened".  The amount of operations required to attack an SHA-2 hash are exactly the same as they day the algorithm was created and exactly the same as any other 256 bit hash that has no known weaknesses.


No you shouldn't as there is no weakness of SHA-2 at this time and SHA-3 has insufficient real world crypto-analysis.  This is why NIST currently prohibits (as in it is criminal charge) for using SHA-3 in classified systems.  The only authorized cryptographic hash for use in classified systems is SHA-2.  Eventually SHA-3 will be allowed and possibly sometime in the future if/when SHA-2 develops a known weakness SHA-2 will be deprecated but that day isn't today and it might not be for decades (if ever).

The chart is absolutely incorrect and such a simple mistake indicates a lack of entry level knowledge by the author.  Please provide a cite from a reputable cryptography advising anyone for any production system for any purpose to dump SHA-2 in favor of the significantly less vetted SHA-3 TODAY.

Lastly I would point out that while the "winner" of SHA-3 has been decided this doesn't mean the final SHA-3 algorithm will be bit for bit identical to the candiate algorithm which won.  NIST has not published the SHA-3 specification and based on internal reviews it is possible NIST will make tweaks to the algorithm before releasing the finalized spec.  Anyone claiming to implement SHA-3 is more accurately implementing the " Keccak" algorithm or "SHA-3 draft".  Implementing so called "SHA-3" today runs the risk that your implementation will NOT be the standard and thus in the future when there is SHA-3 hardware acceleration it will NOT apply to your similar yet incompatible implementation.


TL/DR: the chart is wrong for all usages in all scenarios.

This is technically incorrect.

The 256 bit version of SHA-2 uses 64 rounds of operations.

The "weakness" cited above only applies to a non-exist "version" of SHA-2 which uses 42 rounds.  It takes 2^251 operations to achieve a pre-image collision as opposed to 2^256 by brute force.

Two things are important to note
1) This only applies IF SHA-2 uses 42 rounds (which it doesn't it uses 64 rounds for 256 bit version and 80 rounds for 512 bit version)
2) Even so it requires 2^251 operations (vs 2^256) which makes it 32x as efficient as brute force attack.
3) Merely counting to 2^266 requires many billions times more energy than is available in the lifespan of our star.  This attack vector at best reduces the energy requirements to many tens of millions times more energy than is available in the lifespan of our star.

I agree with you the site mislabels SHA-2 however it isn't even a "minor weakness" at this point it is more like "an academical curiosity which doesn't apply to the real SHA-2 and even if it did would require more energy than what is available to the human race to complete an attack" category. 

The site has a lot of factual errors.  SHA-2 has not been weakened.  Reduced round version of SHA-2 have been weakened, which at this point means absolutely nothing unless Bitcoin used a modified reduced round version of SHA-2.

At the current time only SHA-2 not SHA-3 is approved by NIST for use on classified (SECRET & TOP SECRET) systems.  At this point there is no known attack vector against SHA-2 which is why the algorithm chosen for SHA-3 is radically different.  Today SHA-3 is merely an insurance policy.

It does rebroadcast just not at a rate which would be seen as a denial of service attack.

The good news is that the creator may be getting a job as a janitor soon which means he can pay for significantly more broken development in the future.  I hope for the sake of NUG his salary is a form of God's numbers.

Forever?  No but in the short term it is fairly easy.

Miners tend to be pretty stupid when it comes to ROI% on capital costs so the difficulty tends to track the average electrical effeciency and exchange rate.  Assuming exchange rate remains the same we are talking on average a 150:1 improvement in electrical efficiency.  That means the watts per block and thus electrical cost per block falling by 1/150.  The network could easily suppport difficulty rising to 2-3 billion.  So yeah it can rise 60% a month for some time before reaching a new equilibrium due to higher efficiency.  

The risk is likely low but it isn't zero.  Receiving the drugs would likely be sufficient evidence to get a search warrant for home and computers.  How many drug users have 0 (as in passes a CSI inspection) evidence of drug use in their home.  Home many bitcoin users are so perfect in their security that no evidence of bitcoin transactions can be found.  If you graphed these two populations how often would they intersect.

Most people are "safe" because Police are more interested in major dealers not end users and such stings would be expensive and manpower intensive for little gain.  However potential users shouldn't confuse Police "not" doing something with an "inability" to do something.

Yeah that idiotic statement reduced the chance of it being legit from 0.0001% to 0.0000% even.  No sense in even wasting time.

No doubt some bankers make a lot but that is hardly the claim that EVERYONE with an MBA makes $250K.  Case in point you are currently making nothing. Imagine that.  I would point out that unemployment in the IT sector is about 3%.  Why?  Oh yeah because developers, network engineers, database architects, etc are indispensible.  Any company which fired their IT staff would no longer exist in a few months.

According to Salary average salary for application programmers in CA is $94,000 with 25% making more than $108K.  BTW less than 1% of application developers have a PhD, so yes that means it is a statistical impossibility for most of the high paid (say top 10%) programmers to have doctorates.  Some of those filthy programmers making six figures have lowly bachelors degrees and in some cases ... <GASP> no degree at all.   The horrors.

http://swz.salary.com/salarywizard/Applications-Programmer-Salary-Details-San-Jose-CA.aspx?&hdcbxbonuse=off&isshowpiechart=false&isshowjobchart=false&isshowsalarydetailcharts=true&isshownextsteps=true&isshowcompanyfct=true&isshowaboutyou=true

As for as every MBA making $250K the second they get their degree.  That has never been true and certainly isn't now.
http://www.businessweek.com/articles/2013-05-23/mba-salary-expectations-sober-reckoning-or-wishful-thinking

Salary expections for MBA drops 10% to $113K.


So simple version you are not right (but you should be used to it by now).

Experienced programmers make a lot more than $70K.  There are very few software developers with PhD.  That is just your nonsense that Phd = better.  I have worked for a lot of senior project developers and none had PhDs.  One might have had a masters but honestly nobody cared.  What matters is experience solving real world problems none of which is learned in college.


Once again I actually worked on statistical models for risk analysis and nobody on our team had a PhD.  None.  Models that were used in the pricing of tens of billions of dollars in distress assets.  A half dozen computer science professionals (db engineers, developers, project managers) and a few statisticans no PhD.  

Then again this is like a chef explaining to a guy who ate a hamburger once how culinary arts works.   As for every MBA making $250K starting well that is just silly.  Then again how much are you making on unemployment?  My guess is less than $250K.

No you no longer own 1 Bitcoin, you own a share in a company and while it may have the same value as 1 Bitcoin, it isn't a Bitcoin.  If you spent 400 Bitcoins and bought a car would you also say you still own 400 Bitcoins?  You may have a car and that car may be worth 400 Bitcoins (today) but it isn't 400 Bitcoins.  The money supply hasn't inflated, money was simply transfered.

A transfer of wealth is never inflationary. 

Yeah no that isn't the case.  You no longer have 1 BTC. You have 1 share of a company which have different valuation, liquidity, and counterparty risk as an ACTUAL BTC. 

In fractional reserve banking when you deposit $x and the bank loans out $0.9x both "monies" are functionally identical.  They all shares the same counterparty risk, the same liquidity, the same valuation.  No store is going to say "hey is this dollar bill the product of a loan deposit or is it unencumbered".   Name me one BTC merchant which accepts shares of mining companies as a equivalence for BTC.  I will wait.

At least in the US the courts have found that the police can use deception, lies, trickery, etc to catch criminals.  Undercover police officers pose as prostitutes so posing as a drug dealer wouldn't be materially different.

Because obviously fungibility of a currency is a stupid idea.  I mean it makes so much sense to have SexCoin for buying sex, and GameCoin for buying games, and Casino coin for buying Casino chips, and GoldCoin for buying Gold, and WeedCoin for buying Weed (I guess so you can ruin your neighbors lawn), and GasCoin for buying Gas.  A large single well supported currency for buying sex, porn, games, casino chips, gold, weed, gas, and countless other products and services?  Are you off your meds again?  That would almost be the start of an economy or something.  



 

All number systems are base 10 if you think about it.  The word "base 10" is horribly ambiguous for meaning base-ten. 

Fixed I meant primecoin not powercoin.  So many stupid names nearly impossible to keep it straight.

What do you think 90%+ of the launched coins are.  EXACTLY that.  Hell most of the time they don't even modify everything that needs to be modified.  They use the same alertkey as LTC, they don't change magic numbers so nodes running multiple blockchains end up confused spamming LTC blocks into xCoin network for example.  Hell in some coins they don't even change user facing strings so some error messages or confirmations will say "Litecoin".

To date there has been very little innovation in the alt-coin space:
LTC, PPC, Freicoin (I think it is a stupid idea but it is at least innovative), Powercoin Primecoin.  That is about it.  Everything else has been copy, replace, tweak, launch.

Now I am still not sold that these coins will be successful.  For example I don't think merchants really care which POW is used as long as the network is secure.  However all these coins required a little more work than copy, paste, tweak, and launch.

Bitcoin is regulated.  The protocol is regulated by math, algorithms, and cryptography.  I trust that kind of regulation far more than gubbermints made up of fallible humans.

The rate of new generation (and thus inflation) is tightly controlled by the protocol with the rate of new coins in each block being halved every 210,000 blocks.

I don't think you understand how market prices work.  $1B wouldn't buy 11M BTC.  It wouldn't even buy 2M BTC.  The current price is merely the last trade it offers no guarantee that ANY coins are available at that price much less 11M of them.

Are you joking?  It is hard to tell.