RHavar
Legendary
 Offline
Activity: 1463
Merit: 1886
|
 |
October 26, 2017, 10:29:23 PM |
|
A lot of websites miss the nonce aspect. This in turn creates an unfair environment and a major opportunity to rig events. Unless the user changes their client seed EVERY round this case is not fair. They will also have to in turn engage users to verify bets one by one to ensure their fairness. This isn't what anyone (Lets be realistic) does and leaves the vast majority of people open to being scammed. If an operator notices you are not changing your client seed EVERY bet they are able to change the outcome of rolls.
I think it's a bit too harsh to call it "fake" provably fair, as without a nonce it is still provably fair -- just perhaps suboptimal from a users point of view. But if you trust the client (e.g. you've audited a static version, or using some 3rd party client you trust) it's actually possibly better. There have been a bunch of casinos though with "fake provably fair", the biggest offender I remember was the old 999dice which put a "betId" (instead of a nonce) in the preimage, which allowed them to 100% control the outcome. And then there's been dozens of sites with "fake" provably fair systems (pretty much 99% of all multiplayer gambling games that come out, they screw up the provably fair and it's not actually provably fair). I would be trying to categorize sites (from best to worst): * Trustless * Provably fair (follows best practices) * Provably fair (warning: suboptimal, not practical for human verification) * Not Provably Fair (game design makes provably fair impractical) * Not Provably Fair (for no good reason) * Fake Provably Fair (claims to be provably fair, but isn't) |
Check out gamblingsitefinder.com for a decent list/rankings of crypto casinos. Note: I have no affiliation or interest in it, and don't even agree with all the rankings ... but it's the only uncorrupted review site I'm aware of. |
|
|
Aengus (OP)
Full Member
Offline
Activity: 182
Merit: 100
Edward Miroslav
|
|
October 27, 2017, 01:25:11 AM |
|
A lot of websites miss the nonce aspect. This in turn creates an unfair environment and a major opportunity to rig events. Unless the user changes their client seed EVERY round this case is not fair. They will also have to in turn engage users to verify bets one by one to ensure their fairness. This isn't what anyone (Lets be realistic) does and leaves the vast majority of people open to being scammed. If an operator notices you are not changing your client seed EVERY bet they are able to change the outcome of rolls.
I think it's a bit too harsh to call it "fake" provably fair, as without a nonce it is still provably fair -- just perhaps suboptimal from a users point of view. But if you trust the client (e.g. you've audited a static version, or using some 3rd party client you trust) it's actually possibly better. There have been a bunch of casinos though with "fake provably fair", the biggest offender I remember was the old 999dice which put a "betId" (instead of a nonce) in the preimage, which allowed them to 100% control the outcome. And then there's been dozens of sites with "fake" provably fair systems (pretty much 99% of all multiplayer gambling games that come out, they screw up the provably fair and it's not actually provably fair). I would be trying to categorize sites (from best to worst): * Trustless * Provably fair (follows best practices) * Provably fair (warning: suboptimal, not practical for human verification) * Not Provably Fair (game design makes provably fair impractical) * Not Provably Fair (for no good reason) * Fake Provably Fair (claims to be provably fair, but isn't) Completely agree. Will be adding this quote to OP. |
|
|
|
|
JackpotRacer
Legendary
Offline
Activity: 1974
Merit: 1014
All Games incl Racer and Lottery game are Closed
|
|
October 27, 2017, 04:02:09 AM |
|
A lot of websites miss the nonce aspect. This in turn creates an unfair environment and a major opportunity to rig events. Unless the user changes their client seed EVERY round this case is not fair. They will also have to in turn engage users to verify bets one by one to ensure their fairness. This isn't what anyone (Lets be realistic) does and leaves the vast majority of people open to being scammed. If an operator notices you are not changing your client seed EVERY bet they are able to change the outcome of rolls.
I think it's a bit too harsh to call it "fake" provably fair, as without a nonce it is still provably fair -- just perhaps suboptimal from a users point of view. But if you trust the client (e.g. you've audited a static version, or using some 3rd party client you trust) it's actually possibly better. "suboptimal from a users point" if you mean with users the players of a casino IMO the players should not need to trust any casino OP and need to be sure that they cant be cheated. if this kind of Provably Fair exists and if this is the "nonce" version it should be implemented by all casino OPs a player who wins will in general not take his time to verify his bets after his gambling session but if a player loses he will yes try to verify his session just my 2 satoshi |
|
|
|
|
lrdeoliveira
|
|
October 27, 2017, 04:48:49 AM |
|
A lot of websites miss the nonce aspect. This in turn creates an unfair environment and a major opportunity to rig events. Unless the user changes their client seed EVERY round this case is not fair. They will also have to in turn engage users to verify bets one by one to ensure their fairness. This isn't what anyone (Lets be realistic) does and leaves the vast majority of people open to being scammed. If an operator notices you are not changing your client seed EVERY bet they are able to change the outcome of rolls.
I think it's a bit too harsh to call it "fake" provably fair, as without a nonce it is still provably fair -- just perhaps suboptimal from a users point of view. But if you trust the client (e.g. you've audited a static version, or using some 3rd party client you trust) it's actually possibly better. There have been a bunch of casinos though with "fake provably fair", the biggest offender I remember was the old 999dice which put a "betId" (instead of a nonce) in the preimage, which allowed them to 100% control the outcome. And then there's been dozens of sites with "fake" provably fair systems (pretty much 99% of all multiplayer gambling games that come out, they screw up the provably fair and it's not actually provably fair). I would be trying to categorize sites (from best to worst): * Trustless * Provably fair (follows best practices) * Provably fair (warning: suboptimal, not practical for human verification) * Not Provably Fair (game design makes provably fair impractical) * Not Provably Fair (for no good reason) * Fake Provably Fair (claims to be provably fair, but isn't) Awesome that your on board Rhaver, you're one of the smartest guys in the Bitcoin gambling community. I hope to see you develop this. |
|
|
|
|
|
Nelka4
|
|
October 27, 2017, 04:49:40 AM |
|
A lot of websites miss the nonce aspect. This in turn creates an unfair environment and a major opportunity to rig events. Unless the user changes their client seed EVERY round this case is not fair. They will also have to in turn engage users to verify bets one by one to ensure their fairness. This isn't what anyone (Lets be realistic) does and leaves the vast majority of people open to being scammed. If an operator notices you are not changing your client seed EVERY bet they are able to change the outcome of rolls.
I think it's a bit too harsh to call it "fake" provably fair, as without a nonce it is still provably fair -- just perhaps suboptimal from a users point of view. But if you trust the client (e.g. you've audited a static version, or using some 3rd party client you trust) it's actually possibly better. There have been a bunch of casinos though with "fake provably fair", the biggest offender I remember was the old 999dice which put a "betId" (instead of a nonce) in the preimage, which allowed them to 100% control the outcome. And then there's been dozens of sites with "fake" provably fair systems (pretty much 99% of all multiplayer gambling games that come out, they screw up the provably fair and it's not actually provably fair). I would be trying to categorize sites (from best to worst): * Trustless * Provably fair (follows best practices) * Provably fair (warning: suboptimal, not practical for human verification) * Not Provably Fair (game design makes provably fair impractical) * Not Provably Fair (for no good reason) * Fake Provably Fair (claims to be provably fair, but isn't) Awesome that your on board Rhaver, you're one of the smartest guys in the Bitcoin gambling community. I hope to see you develop this. Rhaver is the king of gambling, behind dooglus of course. Maybe stunna too if he's lucky :p |
|
|
|
|
Aengus (OP)
Full Member
Offline
Activity: 182
Merit: 100
Edward Miroslav
|
|
October 27, 2017, 04:59:35 AM |
|
Thank you for all the support from everyone.
|
|
|
|
|
|
audaciousbeing
|
|
October 27, 2017, 05:27:17 AM |
|
So in short what the service propose to offer is providing a review on gambling sites. We can only hope that you won't compromised along the line because there are several sites that claim to review but the same gambling sites they want to provide unfettered review about, have their banner on their site as a form of advertisement.
My advice, when you discover a site that does not comply based on your calculations, the first is to contact them because they might have built some valid assumptions into their own calculations so as to avoid issues of going back and forth on the basis of figures which does not add any value.
|
|
|
|
|
adaseb
Legendary
Offline
Activity: 3878
Merit: 1733
|
|
October 27, 2017, 08:38:21 AM |
|
You are saying that some sites don't have the nonce when calculating the provably fair outcome
[Server Seed Hash] + [Client Seed] + [Nonce]
However if its just the server seed hash and client seed, and if both of those are constant won't the roll be exactly the same everytime.
In this case I assume the server seed hash keeps changing, while client seed stays the same. In that case since the noonce always starts at 1, won't it be exactly the same situation.
Since the casino already knows what the nonce will be and they know their server seed. And they assume "client seed" won't get changed.
|
|
|
|
|
buwaytress
Legendary
Offline
Activity: 2982
Merit: 3691
Join the world-leading crypto sportsbook NOW!
|
|
October 29, 2017, 04:27:49 PM |
|
Despite my own personal feelings that people should do their own research, can't deny that a lot of newbies wouldn't know how to verify provably fair claims on their own, based on my own initial experience with crypto casinos. On that note, I think this is a good call and can be educational at the same time.
Just be careful not to harm your own reputation also. Rhavar's right that it would be harsh (not to mention unfair) if a blanket label of fake be used in calling sites out. Might want to edit the thread title to better reflect your objectives... which is not to call out fake sites but perhaps... to ensure a standard or benchmarking for Provably Fair casinos?
I'd advise to develop a standard operating procedure for approaching, informing and evaluating site owners responses and (possible) rectifications before announcing anything. I think owners should also be given the benefit of doubt - a proper reach out can help establish this.
|
|
|
|
|
lrdeoliveira
|
|
October 29, 2017, 11:25:24 PM |
|
You are saying that some sites don't have the nonce when calculating the provably fair outcome
[Server Seed Hash] + [Client Seed] + [Nonce]
However if its just the server seed hash and client seed, and if both of those are constant won't the roll be exactly the same everytime.
In this case I assume the server seed hash keeps changing, while client seed stays the same. In that case since the noonce always starts at 1, won't it be exactly the same situation.
Since the casino already knows what the nonce will be and they know their server seed. And they assume "client seed" won't get changed.
Moment you change the client seed (Yourself and not through sites choice) you have made the decision of what all the next outcomes will be. This is due to an added nonce. If you don't have the nonce you are forced to change your client seed every single time. |
|
|
|
|
Aengus (OP)
Full Member
Offline
Activity: 182
Merit: 100
Edward Miroslav
|
|
October 30, 2017, 05:31:15 AM |
|
Updates on current members can be found on the forum. Welcome Betking as a new member. They have been a trust machine in the Bitcointalk community for years & we can't stress enough about the safety of betting there. Rest assured, your results are random & your funds safe.
Great job with their recent ICO. I can't wait to see them add more provably fair casino games!
|
|
|
|
|
imamimam1234
Full Member
Offline
Activity: 316
Merit: 101
The Winner Stands Alone
|
|
October 30, 2017, 05:42:14 AM |
|
Finally got this explanation about provably fair, thank you. I will pay attention to this topic read it in depth mode  . |
|
|
|
|
JackpotRacer
Legendary
Offline
Activity: 1974
Merit: 1014
All Games incl Racer and Lottery game are Closed
|
|
October 30, 2017, 06:08:28 AM |
|
Updates on current members can be found on the forum. Welcome Betking as a new member. They have been a trust machine in the Bitcointalk community for years & we can't stress enough about the safety of betting there. Rest assured, your results are random & your funds safe.
Great job with their recent ICO. I can't wait to see them add more provably fair casino games!
I second you and very well expressed. |
|
|
|
Aengus (OP)
Full Member
Offline
Activity: 182
Merit: 100
Edward Miroslav
|
|
October 30, 2017, 06:15:54 AM |
|
Finally got this explanation about provably fair, thank you. I will pay attention to this topic read it in depth mode . Glad we're getting the message across nice & simply! |
|
|
|
|
|
gapjustin
|
|
October 30, 2017, 06:56:13 AM |
|
Welp, I think it's a good idea to do this. however I don't think someone who owns a gambling site should be thebone doing this as he/she might be biased.
|
|
|
|
JackpotRacer
Legendary
Offline
Activity: 1974
Merit: 1014
All Games incl Racer and Lottery game are Closed
|
|
October 30, 2017, 06:59:47 AM |
|
Welp, I think it's a good idea to do this. however I don't think someone who owns a gambling site should be thebone doing this as he/she might be biased.
biased to what? |
|
|
|
|
ImHash
|
|
October 30, 2017, 07:01:07 AM |
|
Good job, Now you want to stop them from cheating people? I used to gamble a lot but after some time I realized the only outcome was for me to lose no matter how I gambled and how many strategies I used. I wanna know what happens to casinos if they all use real provably fair system? Probably they will all close down their business and go home, Because if you let the results to be determined by random outcomes then one would use a simple strategy to win at the end.
|
|
|
|
|
maximuss
Member
Offline
Activity: 108
Merit: 10
|
|
October 30, 2017, 07:47:08 AM |
|
Welp, I think it's a good idea to do this. however I don't think someone who owns a gambling site should be thebone doing this as he/she might be biased.
biased to what? I agree... This is the same as Marlboro establishing foundation "Let's stop lung cancer"  That's just definition of Conflict of interests: https://en.wikipedia.org/wiki/Conflict_of_interest |
|
|
|
|
JackpotRacer
Legendary
Offline
Activity: 1974
Merit: 1014
All Games incl Racer and Lottery game are Closed
|
|
October 30, 2017, 08:25:29 AM |
|
Welp, I think it's a good idea to do this. however I don't think someone who owns a gambling site should be thebone doing this as he/she might be biased.
biased to what? I agree... This is the same as Marlboro establishing foundation "Let's stop lung cancer" That's just definition of Conflict of interests: https://en.wikipedia.org/wiki/Conflict_of_interestsorry but I cant agree with this comparison. lets say primedice is using the perfect Provably Fair solution and asking all casinos to add the same perfect Provably Fair solution what would be wrong with this or biased? how many perfect Provably Fair solutions are out there? to be frank I am not an expert of PF but I always wanted to see that the PF solution is done the way that a player can verify his bets after his session and it should not matter if the player's session was 1 bet or thousands of bets or more. to change client seed for each bet is not good for players and is not good for casino OPs |
|
|
|
adaseb
Legendary
Offline
Activity: 3878
Merit: 1733
|
|
October 30, 2017, 08:35:10 AM |
|
You are saying that some sites don't have the nonce when calculating the provably fair outcome
[Server Seed Hash] + [Client Seed] + [Nonce]
However if its just the server seed hash and client seed, and if both of those are constant won't the roll be exactly the same everytime.
In this case I assume the server seed hash keeps changing, while client seed stays the same. In that case since the noonce always starts at 1, won't it be exactly the same situation.
Since the casino already knows what the nonce will be and they know their server seed. And they assume "client seed" won't get changed.
Moment you change the client seed (Yourself and not through sites choice) you have made the decision of what all the next outcomes will be. This is due to an added nonce. If you don't have the nonce you are forced to change your client seed every single time. In that case you are not forced to change your client seed, most likely in that scenario the server seed would change everytime. Basically its how the site is coded, but it makes no difference whether a nonce is incremented or the server/client seed is changed. Someone did an analysis of this and tried to find a pattern, and the results were all "almost" equallity likely. |
|
|
|
|
|
