As much as I love the idea I doubt that many people will follow through. People have been told time and again to not leave coins on exchanges except for trading purposes, yet this warning is rarely heeded. I think the only ones that actually would follow through, are the ones that don't have their coins on exchanges to begin with. Either way, if even just a few more people end up with holding their own private keys, that'd already be a net positive. Isn't that gonna fuck the market up ?
Of course it would fuck the market up if everyone withdrew their BTC from the exchanges. It would probably have the effect of driving the fiat value up, since bids would be piling up and no asks. However, there are quite a few day traders involved in the markets. I doubt that everyone is going to heed this advise. Shhh, no spoilers!  |
|
|
|
What is the chance on a Windows 10 system, Microsoft get access to my Bitcoin priv. keys if I don't adopt any special security arrangements ?
Slimmer than getting infected by some crypto-stealing malware or falling for some phishing site. If you're worried about the safety of your coins, do yourself a favour and either get yourself a hardware wallet or set up a dedicated offline device for cold storage. You'll sleep better. |
|
|
|
(b) bruteforcing the public key from its nested cryptographic hashes
By (b) you meant "finding the public key from BTC address", right? Yes. Bruteforcing being the only known way to find the original input (in this case: the public key). And you said that it was totally impossible to perform even with quantum computer, right?
I wouldn't say "totally impossible", but right now we have absolutely no reason to believe that a quantum computer would be better at this task than a classical computer. Note that the theory of quantum computing far precedes it's practical implementation so it's fairly well understood. Accordingly it's rather unlikely that a surprise solution breaking those specific cryptographic hashes will come out of nowhere. |
|
|
|
@HeRetiK
Deriving (a) the private key from a public key is a completely different operation from (b) bruteforcing the public key from its nested cryptographic hashes. While (a) may become feasible with quantum computing eventually, (b) appears to be infeasible even for quantum computers.
So why private keys aren't linked to the public keys the same way public keys are linked to BTC addresses? What do you mean by "why"? Technically because we're talking about two completely different types of cryptography. One is asymetric cryptography: https://en.wikipedia.org/wiki/Public-key_cryptographyThe other are cryptographic hashes: https://en.wikipedia.org/wiki/Cryptographic_hash_functionNote that a weakness to quantum computing is neither inherent to asymetric cryptography nor to cryptographic hashes. Not all private / public key schemes are necessarily at risk and not all cryptographic hash functions are necessarily quantum resistant. There's a lot of cryptographic algorithms for either type of cryptography, based on different kinds of math problems; some for which quantum computing will provide little to no speed-up. In terms of what satoshi intended -- who knows? The quantum algorithms in question have been developed in the 90s so it might well be that satoshi anticipated a possible quantum threat in the future. This will make impossible quantum computer to crack private key with knowing public key.
*without knowing the public key, yes. At least according to our current understanding of mathematics. |
|
|
|
Where are you grabbing the apk files though? taking them from third-party websites could be the worst idea ever. If you're taking them from Google play, you'll get the latest version and that probably won't be much help for you. I presume OP has been using Electrum's page of previous releases: https://download.electrum.org/At least I hope so. OP, if you haven't checked the APKs from the link above yet, do so. If you've tried an APK from a third-party website... consider wiping your device and doing a factory reset before installing a new wallet. Mycelium should work in Samsung S2 according to this post and If you check few posts above, you can see that someone got it to work on Samsung galaxy using Android Cyanogen. That is post is already 4 years old though and as of today Mycelium only supports Android 4.4 and up: https://play.google.com/store/apps/details?id=com.mycelium.wallet(at least officially, maybe you can still get it to work with older Android versions). |
|
|
|
@HeRetiK
OK I learned that public key is not BTC address.
My BTC are stored on a BTC address which has never spent any BTC so I can sleep good at night even if quantum computing arrives. Oh quantum computing is already here. Matter of fact, you can have some fun with quantum computing today: https://quantumexperience.ng.bluemix.net/qx/experienceIt's just that it still has a long way to go before any of the currently known algorithms can be applied to cryptography in practice. To give some perspective, breaking ECDSA as used by Bitcoin is expected to require thousands of qubits [1][2]. Currently we're at the tens of qubits [3] (ignoring D-Wave quantum computers which follow a fairly different approach that isn't applicable to the sort of math problem that ECDSA poses [4]). [1] https://security.stackexchange.com/questions/87345/how-many-qubits-are-needed-to-factor-2048-bit-rsa-keys-on-a-quantum-computer[2] https://en.wikipedia.org/wiki/Elliptic-curve_cryptography#Quantum_computing_attacks[3] https://www.quora.com/How-many-qubits-does-the-current-state-of-the-art-quantum-computer-have[4] https://crypto.stackexchange.com/questions/40893/can-or-can-not-d-waves-quantum-computers-use-shors-and-grovers-algorithm-to-f[...]
However, can you derive public key from BTC address with Quantum Computing? I think the answer is no according to what HeRetiK said.
in theory yes, you have to have the public key in order to brute force that private key from the public key. Deriving (a) the private key from a public key is a completely different operation from (b) bruteforcing the public key from its nested cryptographic hashes. While (a) may become feasible with quantum computing eventually, (b) appears to be infeasible even for quantum computers. but with that being said, the current computing power is also capable of doing so. technically you can brute force anything, even with a pen and paper you have a chance above 0% of getting the private key. but it's a merely a question of how hard and how much does it cost. Capable of trying maybe, but not capable of succeeding. If you'd try to brute force the Bitcoin address space -- and brute forcing is all you could do, given that there's currently neither a way to derive a private key from a public key nor a way to derive a public key from a BTC address -- you'll be engulfed by the sun turning into a red giant before finding even your first active private key (Timeframe for the sun turning into a red giant: 5 - 6 billion years [5]. Yearly chance of finding an active private key using the large bitcoin collider: approx 0.000000000000000000000000055% [6]). And that's just for finding a random private key, not a specific one. Obviously that's based on the computational power we currently have available. However quantum computing is unlikely to have much of an impact on improving the odds of brute forcing a BTC address in practice, which is why the threat posed by quantum computing is one of mathematical prowess (ie. deriving the private key from a public key using what is essentially a computational shortcut) rather than one of brute force (ie. scanning Bitcoin's key space). [5] https://en.wikipedia.org/wiki/Red_giant#The_Sun_as_a_red_giant[6] https://bitcointalk.org/index.php?topic=5073899.msg48145266#msg48145266 |
|
|
|
Yep, the smaller a coin the cheaper an attack. To be more precise, the less a blockchain spends on security in terms of fiat (ie. purchasing power) via block subsidies and mining fees the less an adversary needs to spend to achieve the majority hashrate. This is further aggrevated by the relative ease with which a GPU miner can switch between cryptocurrencies, meaning that there's an abundance of GPU hashing power floating between cryptocurrencies that can be arbitrarily retargeted at smaller coins. Nonetheless keep in mind that even then 51% attacks make rarely economic sense except for political reasons or to manipulate the markets (ie. there's little to be directly gained from a 51% attack). |
|
|
|
@HeRetiK
Once you get private key, You get the BTC on the public address.
If quantum computing takes 6 months to derive my private key from my public key and I leave my BTC on this public key (BTC address) during this time duration of more than 6 months. My BTC get stolen.
So will we need to constantly make transaction in order to move BTC from a public key to another?
The BTC address is not the public key. It's the RIPEMD-160 hash of a SHA-256 hash of the public key, including some bits of error correction and encoded as Base58 [1]. The public key is not published until the first outgoing transaction is made from a BTC address [2], since only then the public key becomes necessary to validate the transaction. Modern P2SH and Bech32 addresses and transactions work slightly differently, but in either case the public key is not published until an outgoing transaction is made. SHA-256 appears to be not especially vulnerable to quantum computing [3] (ie. quantum computing does not offer any advantage over classical computing for the subset of mathematical operations required for SHA-256); I think the same holds true for RIPEMD-160 but I'm not sure. Accordingly a BTC address only becomes potentially vulnerable to quantum computing once the first outgoing transaction has been made, since in either case the public key is not known prior to that transaction. [1] https://en.bitcoin.it/wiki/Technical_background_of_version_1_Bitcoin_addresses[2] https://en.bitcoin.it/wiki/Transaction[3] https://crypto.stackexchange.com/questions/59375/are-hash-functions-strong-against-quantum-cryptography-and-or-independent-enough |
|
|
|
Minisketch: a library for BCH-based set reconciliation There'd be a certain irony if that approach would indeed help with on-chain scaling by means of allowing for bigger blocks with lesser downsides. It wouldn't be the first (or last) time that other cryptocurrencies have used code developed by the Bitcoin devs if so To clarify for anyone else who might be reading this, BCH in this case has nothing to do with Bitcoin Cash but rather stands for Bose-Chaudhuri-Hocquenghem. I just find it a fun coincidence: https://en.wikipedia.org/wiki/BCH_code(it's linked in the readme, I wasn't aware of these codes myself) |
|
|
|
That's pretty neat, I'm looking forward to see whether this will bring any practical implications for Bitcoin. Minisketch: a library for BCH-based set reconciliation There'd be a certain irony if that approach would indeed help with on-chain scaling by means of allowing for bigger blocks with lesser downsides. Increasing the block size still increases the UTXO set size and the time to sync and validate all blocks. Minisketch does not help with initial sync or with validation, it only reduces the amount of bandwidth you consume for normal transaction relay (i.e. relaying unconfirmed transactions after you have already synced).
Thanks for the information. I agree that initial sync will become big problem, but aren't verification time is very fast, so this won't be problem unless block size limit is increase too much (unless verification time isn't growing linearly)? That depends. Some transactions may lead to a quadratic increase of verification times [1]. This problem is fixed with SegWit transactions, however legacy transactions are still a thing so that might be important to keep in mind. [1] https://bitcoincore.org/en/2016/01/26/segwit-benefits/#linear-scaling-of-sighash-operations |
|
|
|
2) But if you use even one time your public key, this is as risky as you use it several time. Because you display it. I think that cracking with quantum computing is done during transaction. don't you think?
This will depend on how effective a quantum computer will be at deriving the private key from its respective public key. The first viable quantum attacks on Bitcoin's public / private key cryptography will probably still take days, weeks or even months to derive the private key from a public key. At this point address reusage will become a serious security risk; however one time usage of an address should still be fine for the most part. The attack you describe (ie. in-flight, during an outgoing transaction) would become a risk once quantum computing reaches an effectiveness that allows deriving the private key within a block interval (ie. within minutes or even seconds, rather than days). At this point each Bitcoin transaction as we know it would be at risk of being diverted in an unprecedented form of double-spend attack (ie. one that requires no hashing power and allows you to double-spend someone elses coins, rather than only your own). Needless to say this would render Bitcoin useless. However we're still very far from the first scenario, let alone the second. For all we know reaching even the first scenario could still take 10, 20 years, if we even see it come to fruition at all. Either way Bitcoin will likely have sufficient time to switch to a quantum resistant private / public key encryption and / or transaction scheme before any such attacks become close to viable. |
|
|
|
|
Reporting badges sound good to me but I'm not so sure about an inflationary use of badges.
Sure it's fun, but I think it would also be detrimental to the original purpose of introducing badges as means of incentivizing desired behaviour like reporting spam -- that is, the more badges you have, the less meaningful the individual badge becomes. Now you just have a wall of badges, with the spam reporting being one of many and thus not as desirable as it should be.
That's not to say that reporting is the only forum action that is worthy of receiving a badge; I'm sure there's other use cases as well where this form of gamification could be applied. It's just that I would not go overboard with it as that would likely reduce the effectiveness of such a system. That's just my 2 sats though.
|
|
|
|
None of the above stablecoins are decentralized. Every single one of them is backed by either a centralized exchange or some other form of third party requiring trust. |
|
|
|
1. If I have had no other income in 2018 that would result in me having to file a tax return for the year 2018. In this case I don't have to file anything, because this income is not subject to tax in the country of my residence, so this income is of no concern for the tax authority (Yes, these are their own words! Btw. no surprise here because the double tax treaty states this would be so, as I described this multiple times alredy. Just confirming for everyone who posted comments here that 'treaties don't work like this' or 'of course all countries would tax it' etc. This is confirmation from the actual tax authority...)
2. If I have other income for the tax year of 2018 that is taxable in my country. This means I already have to file a tax return for the year 2018 to begin with. In this case I DO have to declare this as income that is subject to no tax in my country (tax free income bracket). The reason for this is that eventhough I won't have to pay any tax after this income as it is only subject to tax in the UAE (there you go they've confirmed it once again), they DO still want to know about it as it is used in calculating a persons total income for the year. Which if is above a certain threshold then the individual tax allowance amount changes for the other income (this is a local speciality so might not really be relevant info for residents of other countries but I still wanted to provide their reasoning).
I'm impressed. I'm also skeptical whether you'll be able to stay under the radar once your "rent income" increases but keep us posted. Good luck OP. |
|
|
|
is bitcoin going to go down to $0.00USD? Yes. is bitcoin going to literally tank and go down to zero? Yes. if bitcoin goes down to $0, is that the end of it? or could it come back after that? Yes. No. if bitcoin goes down to $0 will there be other coins that rise up in it's place? No. how far down are you thinking this bear run will take bitcoin? $1,000? 500? Less? Zero. Crypto is dead and that's the end of it. We can all finally pack up, leave this forum and unglue our eyes from the price charts. Nothing else to see here folks, move along. With that said.... Im going to buy more! LOL I see you've read between the lines :p In all seriousness though, while I have no idea what the future holds in store for crypto, I doubt it that we'll see an end of it any time soon. As is I'm still convinced that for now time is still on Bitcoin's side (ie. I believe we'll have at least one or two more growth phases before we reach either widespread adoption or final capitulation). |
|
|
|
is bitcoin going to go down to $0.00USD? Yes. is bitcoin going to literally tank and go down to zero? Yes. if bitcoin goes down to $0, is that the end of it? or could it come back after that? Yes. No. if bitcoin goes down to $0 will there be other coins that rise up in it's place? No. how far down are you thinking this bear run will take bitcoin? $1,000? 500? Less? Zero. Crypto is dead and that's the end of it. We can all finally pack up, leave this forum and unglue our eyes from the price charts. Nothing else to see here folks, move along. |
|
|
|
Hello,
Is there a good reason any longer for the rule that the success of a Bitcoin proof of work has to be that there is an all-zero bits prefix?
Why not allow any 256-bit sequence?
For instance, suppose I want to create a blockchain just for mypersonaldomain.co. If I produce a SHA256 hash of that domain name and use that as the sequence of bits that the prefix must match, it would not conflict with the original Bitcoin blockchain and would be unique.
The Bitcoin block format would have to be revised to include my blockchain's 256-bit prefix so that nodes know what prefix they are solving for, but once that is done, the world could benefit from 2^256 unique blockchains.
Cheers.
Why should Bitcoin's PoW scheme be relevant for another blockchain? Or the other way round, why should Bitcoin's PoW scheme take an unrelated blockchain into account? I'm not sure what you are trying to do, but maybe sidechains and / or merged mining are of interest for you. Namecoin [1] comes to mind, especially given the example you provided. [1] https://namecoin.org/ |
|
|
|
It's true as long as the blockchain of the fork is still running. For instance, Bitcoin Gold (BTG) I think suffered from 51% attacks. This is what happens with altcoins, eventually it becomes profitable to attack them. I reckon the attacker stole a bunch of coins and mixed them with Monero, he was never caught. Yet Bitcoin Gold still keeps on ticking  But very true, while you don't need to hurry with getting your fork coins, there's also a chance that they won't be worth much once you get around to extracting them (case in point: the current bear market). Also be sure to NOT install any of the software involving altcoins within your computer, use a separate computer. Also DO NOT enter your private keys on websites which claim to give you access to the fork coins to claim them.
I remember Bitcoin Diamond for instance, was compromised and a total disaster. [...]
Something similar happened with Bitcoin Gold: https://bitcoingold.org/critical-warning-nov-26/OP, the above comment by cellard should be your main takeaway. Assume that any fork coin wallet is compromised and take care of security accordingly. Lest you get your coins stolen: https://bitcointalk.org/index.php?topic=5080741.0 |
|
|
|
Money laundering is covering up illegal profits. Income from trading crypto or crypto capital gains are not illegal. I'm neither a legal nor a tax expert, but I'm pretty sure that faking income from one source to cover up income from another source as to avoid taxes counts as money laundering in most legislations, including the US and the EU. Do what you will though, I'm just some random guy on the internet Should you be audited by your local authorities (which hopefully won't happen) it's not me you'd need to convince that neither tax evasion nor money laundering is at play. If you haven't already I'd still advise on getting a tax expert aboard though, if only to avoid any slip ups. |
|
|
|
[...] citizens “who travel abroad frequently without having the requisite funds on paper, or those who own over three apartments” have been sent warning letters.
To be fair that's purchasing habits that raise red flags with financial authorities in other countries as well, regardless of whether crypto is involved or not. The question is how is the status of cryptocurrency in Israel, legal or illegal? Isn't that illegal? Then why should pay tax?
Crypto is legal in Israel [1]. Also attempting to tax illegal contraband is not unheard of [2]. I mean, heck, Al Capone's main criminal charge was tax evasion [3] and his sources of income were rather questionable. [1] https://en.wikipedia.org/wiki/Legality_of_bitcoin_by_country_or_territory[2] https://en.wikipedia.org/wiki/Crack_tax[3] https://en.wikipedia.org/wiki/Al_Capone |
|
|
|
|
Show Posts
