|
|
|
|
|
|
|
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
|
|
|
|
Come-from-Beyond
Legendary
 Offline
Activity: 2142
Merit: 1009
Newbie
|
 |
April 21, 2013, 03:40:22 PM |
|
I think sooner than later we need quantum proof tech....lamport sigs anyone???
Follow the link in my signature and u'll get to a QC-resistant cryptocurrency. |
|
|
|
|
jubalix (OP)
Legendary
Offline
Activity: 2618
Merit: 1022
|
|
April 21, 2013, 04:08:19 PM |
|
I think sooner than later we need quantum proof tech....lamport sigs anyone???
Follow the link in my signature and u'll get to a QC-resistant cryptocurrency. im not sure about this "Anyone who is familiar with Bitcoin technical details knows that most of its settings are carved in stone. A block solution takes 10 minutes in average to find, a block reward is 50 BTC (25 BTC in the future), the difficulty is changed every 2016th block in 1/4x-4x range. All these rules won't be, likely, changed, because it's necessary to make the majority of bitcoiners to accept changes which seems to be impossible. If Satoshi made mistakes in Bitcoin parameters noone will correct them. Unlike Bitcoin, Qubic is designed a way that allows any qubicker to change any settings of their own providers. Reward for new transactions, qubic transformation delay, quorum percentage - all these parameters are easily changable. Noone needs to ask the others to set a particular parameter. Of course, changes made by a few qubickers won't affect functionality of the Qubic network much, but if a rhetorically talented person manages to convince a considerable part of provider owners to use particular values of the parameters, (s)he can change behavior of the whole network. This phenomenon brings back ancient traditions when orators were more powerful than generals or businessmen. It's not necessary to be a tech savvy person to be an influential one in the Qubic world. Read more: http://qubic.boards.net/index.cgi?board=theconcept&action=display&thread=5#ixzz2R7BHTjv2" I thought that if 51% of miner adopted a client change eg 50 millcoins that would then happen |
|
|
|
Come-from-Beyond
Legendary
Offline
Activity: 2142
Merit: 1009
Newbie
|
|
April 21, 2013, 04:33:18 PM |
|
I thought that if 51% of miner adopted a client change eg 50 millcoins that would then happen
U should count non-mining bitcoiners as well. This seems to be very hard. |
|
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 04:41:13 PM |
|
Shor's algorithm applies to RSA and DLP. I'm not currently aware of an attack using a quantum computer for ECDSA. I'll email peter and post his response here.
|
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 04:52:03 PM |
|
The citation is wrong on wikipedia, but yes you are apparently correct. A 1000 Qbit computer would be sufficient to break a 160 bit EC key. http://arxiv.org/pdf/quant-ph/0301141v2.pdf That's a terrifying thought. |
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
TierNolan
Legendary
Offline
Activity: 1232
Merit: 1083
|
|
April 21, 2013, 05:07:50 PM |
|
I thought that if 51% of miner adopted a client change eg 50 millcoins that would then happen
No, the 51% attack is to reverse transactions. If I send a coin to you and then later send it to someone else. Who owns the coin? Encryption can't tell you, you need to know which transaction happened first. That is what the hashing is for, it locks in transaction ordering. Nobody can spend your coins but you, unless they break the encryption. It doesn't matter how much hashing power someone has. However, with 51% of the hashing power, they can "rewind" the clock so the coin never belonged to you in the first place. |
1LxbG5cKXzTwZg9mjL3gaRE835uNQEteWF
|
|
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 05:17:00 PM |
|
Considering this is a thread about quantum computers and apparently they can break the encryption of the Bitcoin. Coin theft is now a legitimate topic. You guys hear about D-Wave?
|
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
gglon
Member
Offline
Activity: 64
Merit: 10
|
|
April 21, 2013, 05:28:16 PM |
|
Considering this is a thread about quantum computers and apparently they can break the encryption of the Bitcoin. Coin theft is now a legitimate topic. You guys hear about D-Wave?
D-wave runs only one specialized quantum optimization algorithm. So it is not universal quantum computer. It can't run Grover's algorithm which potentially may make hashing easier, but probably not much, as Grover's is not big speedup. And it definitely will never run Shor's that with enough qubits can break RSA and ECC with proper modifications. |
|
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 05:29:09 PM |
|
A prime field implementation is enough to convince me that it is possible in binary fields But this is awesome: 2m = +7[logm] + 7 + H Qbits |
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 05:30:42 PM |
|
D-Wave is being funded by the CIA. I really doubt they would have made an investment if there wasn't something in the product pipeline that could run Shor's Algorithm
You seem to have a great deal of experiment with Quantum computers. Are you a physicist?
|
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
gglon
Member
Offline
Activity: 64
Merit: 10
|
|
April 21, 2013, 06:09:24 PM |
|
Last year post-graduate physics student, thesis is in the field of quantum information. So i'm not an expert  |
|
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 06:17:16 PM |
|
I'm an additive and analytic number theorist who moved into fully homomorphic encryption. Funny how the Bitcoin community attracts us weirdos
|
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
|
madmadmax
|
|
April 21, 2013, 07:31:52 PM |
|
Wouldn't the evolution of bitcoin take it to use different algorithms such as bcrypt by then? I name bcrypt specifically because it can be adjusted as faster computers are available down the road.
|
▄▄▄▄▄ ▄▄▄▄▄
▄▄█▀▀▀▀▀▀██▄ ▄▄█▀▀▀▀▀▀▀█▄
▄██▀ ▀██▄ ▄██▀ ▀█▄
██▀ ▀██▄ ▀▀ ██
██ ▀██ ▄▄▄▄▄▄▄▄██
██ ▀██▄ ▀▀▀▀▀▀▀▀▀▀
██▄ ▄██ ▀██▄ ▄▄▄
▀██▄ ▄██▀ ▀██▄▄ ▄██▀
▀▀██████▀▀ ▀▀██████▀▀
| | █
║
█ | ✔ Unchained Smart Contracts
✔ Decentralized Oracle
✔ Infinitly Scalable
| ✔ Blockchain Technology
✔ Turing-Complete
✔ State-Channels
| █
║
█ |
▄████▄▄ ▄
██ ████████████▀
████▄ █████████████▀
▀████████▄▄ █████████████
▄▄█████████████████████████
██████████████████████████
▀██████████████████████
█████████████████████
▀█████████████████▀
▄█████████████▀
▄▄███████████████▀
▀▀▀▀▀▀▀▀▀▀▀
| |
▄██▄
▄ ▐████ ▄▄
█████ ██████████
█████████████████▀
▄████████████▀████▌
██████████ ▀████
▀▀ █████ ██████████
▀████▌▄████████████▀
▄▄▄███████████████▌
██████████▀ ▐████
▀▀▀ ████▌ ▀▀▀
▀███▀
| | f | | █
║
█ | |
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 07:33:30 PM |
|
That goes on the hardfork wishlist. They should also change the proof of work to make it immune to ASICs.
|
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
|
behindtext
|
|
April 21, 2013, 09:44:06 PM |
|
I'm an additive and analytic number theorist who moved into fully homomorphic encryption. Funny how the Bitcoin community attracts us weirdos
 ex-theoretical physics guy here on the topic of vulnerability of ecdsa keypairs - i think it's absolutely a real threat. gglon does make the fair point that d-wave technology is not a proper universal quantum computer and can only be applied to a subset of quantum computing problems due to the way they keep the quantum systems isolated. back in 2001 there were ppl talking about certain condensed matter systems acting as universal quantum computers, who knows how far that got. the best you can do with ecdsa is to keep the amount of btc at a given address low, which depends on the BTC/USD rate. if you make a particular address worthwhile to attack, it could very well be brute forced by a few thousand qubit QC. PQ crypto for the PKI would obviously help this. |
|
|
|
charleshoskinson
Legendary
Offline
Activity: 1134
Merit: 1008
CEO of IOHK
|
|
April 21, 2013, 09:48:12 PM |
|
|
The revolution begins with the mind and ends with the heart. Knowledge for all, accessible to all and shared by all
|
|
|
John (John K.)
Global Troll-buster and
Legendary
Offline
Activity: 1288
Merit: 1225
Away on an extended break
|
|
April 22, 2013, 03:09:16 AM |
|
No, not yet another topic on quantum computers and bitcoin... A sticky should be placed at the newbie section covering this topic with its popularity.
|
|
|
|
|
|
