Bitcoin Forum
November 16, 2024, 03:53:07 AM *
News: Check out the artwork 1Dq created to commemorate this forum's 15th anniversary
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Pool sharking?  (Read 1946 times)
teknohog (OP)
Sr. Member
****
Offline Offline

Activity: 520
Merit: 253


555


View Profile WWW
December 20, 2010, 08:15:58 PM
Last edit: December 23, 2010, 11:33:05 AM by teknohog
 #1

I propose an idea for cheating in a mining pool. Please comment on the viability and suggest countermeasures if needed.

The current pool by slush uses standard getwork miners with an artificially low difficulty. Such succesful hashes are used to gauge the level of contribution from a given miner. Now suppose that whenever a miner finds a block that satisfies the actual Bitcoin difficulty, they return it to their own local bitcoind instead of the pool. The pool continues to get measures of contribution, but the actual contribution in terms of 50 BTC blocks goes to the miner. In addition, they get their "share" of the pool based on their "contribution".

Of course, both the ethical and practical problem is that the pool will not generate anything if everyone does this. But suppose that some are already doing it. In the long run, statistics may show who is cheating, but it is not obvious in the short term.

world famous math art | masternodes are bad, mmmkay?
Every sha(sha(sha(sha()))), every ho-o-o-old, still shines
Raulo
Full Member
***
Offline Offline

Activity: 238
Merit: 100


View Profile
December 20, 2010, 08:23:29 PM
 #2

It was discussed in the original pool thread (see, e.g., reply #20). The hash is useless for anybody other that the owner of the pool server. If you find a low hash, you can either send it to the pool (and collect your share) or discard (and collect none).

1HAoJag4C3XtAmQJAhE9FTAAJWFcrvpdLM
teknohog (OP)
Sr. Member
****
Offline Offline

Activity: 520
Merit: 253


555


View Profile WWW
December 20, 2010, 08:41:14 PM
 #3

The hash is useless for anybody other that the owner of the pool server.

OK, I stand corrected Smiley

world famous math art | masternodes are bad, mmmkay?
Every sha(sha(sha(sha()))), every ho-o-o-old, still shines
FreeMoney
Legendary
*
Offline Offline

Activity: 1246
Merit: 1016


Strength in numbers


View Profile WWW
December 20, 2010, 08:42:41 PM
 #4

It doesn't matter if the miner takes the hash and turns it in because it only validates the block that contains the pool operators payout, if you change that then the hash won't be valid. You could simply refuse to report, but that hurts you too since you are entitled to some of the profits.

edit: looks like you already get it Smiley

Play Bitcoin Poker at sealswithclubs.eu. We're active and open to everyone.
wumpus
Hero Member
*****
qt
Offline Offline

Activity: 812
Merit: 1022

No Maps for These Territories


View Profile
December 22, 2010, 05:39:57 PM
 #5

What about a collusion attack? In an attempt to get an unfair total share, multiple miners join the pool and pretend they are computing hashes, but only one of them (the master) is actually hashing. All the other miners report the same hashes as the 'master'.

Would that work?

Bitcoin Core developer [PGP] Warning: For most, coin loss is a larger risk than coin theft. A disk can die any time. Regularly back up your wallet through FileBackup Wallet to an external storage or the (encrypted!) cloud. Use a separate offline wallet for storing larger amounts.
FreeMoney
Legendary
*
Offline Offline

Activity: 1246
Merit: 1016


Strength in numbers


View Profile WWW
December 22, 2010, 10:19:39 PM
 #6

What about a collusion attack? In an attempt to get an unfair total share, multiple miners join the pool and pretend they are computing hashes, but only one of them (the master) is actually hashing. All the other miners report the same hashes as the 'master'.

Would that work?


I guess it would work until/unless the operator started checking that hashes weren't identical. He'd only have to keep to check against for as long as the exact same block was being hashed.

Play Bitcoin Poker at sealswithclubs.eu. We're active and open to everyone.
slush
Legendary
*
Offline Offline

Activity: 1386
Merit: 1097



View Profile WWW
December 22, 2010, 11:30:40 PM
 #7

What about a collusion attack? In an attempt to get an unfair total share, multiple miners join the pool and pretend they are computing hashes, but only one of them (the master) is actually hashing. All the other miners report the same hashes as the 'master'.

Would that work?


No, not on my pool. I'm checking if PoW corresponds with job sent to worker before.

slush
Legendary
*
Offline Offline

Activity: 1386
Merit: 1097



View Profile WWW
December 22, 2010, 11:37:44 PM
 #8

Also many people ask me why separate logins for each worker. This is just because those security checks. I'm locking job registry for each worker during checks of PoW to avoid double spending of the same PoW in parallel. So using the same login for more workers may also affects worker's performance because they have to wait for releasing worker lock.

bober182
Full Member
***
Offline Offline

Activity: 308
Merit: 100


View Profile
December 23, 2010, 05:54:16 AM
 #9

What if the pool operator steals every 10th hash for himself?

Delia
Newbie
*
Offline Offline

Activity: 28
Merit: 0



View Profile
December 23, 2010, 06:03:18 AM
 #10

If the operator uses a different address for personal unpooled mining than the pool's address, then there's no way to do so surreptitiously: the pool mints a block, and doesn't pay out.
wumpus
Hero Member
*****
qt
Offline Offline

Activity: 812
Merit: 1022

No Maps for These Territories


View Profile
December 23, 2010, 07:27:26 AM
 #11

Nice to see that you even though about those kinds of attacks Smiley

What if the pool operator steals every 10th hash for himself?
Yeah, that's always a potential issue with 'trust', though it'd only be a problem if he did so secretly.  As long as he's clear about it, IMO it's not a problem if the pool operator decides to keep a small share to pay for server bandwidth and such.

Bitcoin Core developer [PGP] Warning: For most, coin loss is a larger risk than coin theft. A disk can die any time. Regularly back up your wallet through FileBackup Wallet to an external storage or the (encrypted!) cloud. Use a separate offline wallet for storing larger amounts.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!