Great concept.
But, this concept is working only on short-term game-theory. I'm afraid the incentives to go quicker to the future than anyone else might be more profitable than publishing resuls and cash in little reward.
What prevents someone from doing '51% attack' on people publishing results by getting more computing power but not disclose results?
They could sell future keys to anyone willing to pay.
Or am I missing something?
[...]
Before we go into the full details its important to understand the game theory taking place here: because the first person who breaks a link is racing against countless other participants they must broadcast a redeeming transaction as early as possible or risk losing their reward. Thus, the timechain forces participants to redeem coins as early as possible.
Using these basic properties together with a special hash-locked contract it is possible to force participants to simultaneously release the details to decrypt the time-lock encrypted … AES encrypted … RSA private key and provide participants with the next IV in the chain.[...]
Breaking links in the chain is a race against everyone else working on the current link so if you break a link and don't publish it -- any of the people behind you could catch up and claim the reward. The incentive structure isn't the same as with Bitcoin where a majority is required. The incentive structure only requires one person who wants the reward and the timechain will be unlocked on time. There is also the difficulty puzzle for the next link which needs to be broken before that link can be attempted to be broken and depending on difficulty - the participants behind the current link will always arrive before the next link can be broken.
In any case, even if it is more profitable to publish results slightly in the future and not claim a reward: the timechain would still be broken on target because its a serial chain of hashes and participants would be incentivised to break the other links because of the unclaimed rewards (so "future keys" would not stay future for very long.)
Edit: A problem that your post does raise is abnormal scaling of the difficulty puzzle IVs. What this means is: a majority of computing power could be required to break the initial puzzle which is provided by an attacker who fails to utilize their resources to break puzzles. If this was the case: it would be extremely expensive to break the next link as you would have to fill in the missing resources yourself. One way to fix this problem is to save a copy of the difficulty puzzle for the links (only the puzzle - nothing else.) That way difficulty for the puzzle could be scaled down based on time expended on the current puzzle and it wouldn't undermine the integrity of the timechain even if all these puzzles were later compromised - it would just make it harder to distribute awards fairly as a single person would be able to provide the timechain service on a single CPU (once again - only bad for participants - still good for services that use the timechain.)
There is definitely a better way to do this but we're still working on adjustable difficulty and distribution for rewards.
