Change Bitcoin SHA-256 to SCRYPT

[🏰 TradeFortress 🏰]

Besides, the more specialized hardware has to be to complete, the harder it will be for an attacker to use off the shelf hardware to attack the network. ASICs are good.

[1713503854]

1713503854

[1713503854]

1713503854

[1713503854]

1713503854

[1713503854]

1713503854

[1713503854]

1713503854

[molecular]

conclusion: sha-2(56) reasonably secure (thanks DeathAndTaxes for explaining the research). Reason for doubt (and also LTC popularity): GPU miner denial. Centralization by ASIC seems to be a myth so far.

case closed. jgarzik will win the bet against @dakami (if Kaminzki has the balls to take it, which doesn't seem to be the case. But maybe he has no bitcoins, who knows).

[cypherdoc]

A security researcher has predicted SHA 256 will be cracked this year.  When that happens the algorithm may change.

Cite?  There are not even any "academic attacks" against SHA-2 at this time.  An academic attacking being a method which is faster than brute force but still computationally infeasible to exploit in the real world.

https://mobile.twitter.com/jgarzik/status/336218499938668544

you misunderstood what jgarzik was saying that Kaminsky was saying in that tweet.

what Kaminsky was saying was that the Bitcoin POW system would be broken by a 51% attack due to the concentration of ASICs into a single attackers hand, not that SHA256 would be cracked.  there's a big difference. 

even so, Kaminsky is nuts in making that prediction.  no way in hell that happens by the end of the year; or perhaps EVER.

[arnuschky]

you misunderstood what jgarzik was saying that Kaminsky was saying in that tweet.

No, sorry. Wrong again. The bet concerned Kaminsky's statement at the security panel of the Bitcoin 2013 conference that the current proof-of-work function will not see the end of 2013:

“I assign a 0% probability that we will continue with the present proof of work function. The present proof of work function is not going to survive the year. Period. If there’s one hard prediction I’m going to make it’s going to be that.” – Dan Kaminsky

Sources:

• http://thegenesisblock.com/go-fork-yourself-life-after-a-bitcoin-hard-fork
• https://mobile.twitter.com/jgarzik/status/336218499938668544

[cypherdoc]

you misunderstood what jgarzik was saying that Kaminsky was saying in that tweet.

No, sorry. Wrong again. The bet concerned Kaminsky's statement at the security panel of the Bitcoin 2013 conference that the current proof-of-work function will not see the end of 2013:

“I assign a 0% probability that we will continue with the present proof of work function. The present proof of work function is not going to survive the year. Period. If there’s one hard prediction I’m going to make it’s going to be that.” – Dan Kaminsky

Sources:

• http://thegenesisblock.com/go-fork-yourself-life-after-a-bitcoin-hard-fork
• https://mobile.twitter.com/jgarzik/status/336218499938668544

i know what he said, i attended the session.  i've also read those links.

what he means is exactly what i said.  he predicts Bitcoin's POW won't survive b/c he thinks someone is going to accumulate enough ASIC hash power to perform a 51% attack.

he said nothing about SHA256.

[justusranvier]

Remember a couple of years ago, right after GPU mining really took off, when everybody panicked because of Deepbit? Remember how that turned out?

[cypherdoc]

Remember a couple of years ago, right after GPU mining really took off, when everybody panicked because of Deepbit? Remember how that turned out?

exactly right.

nothing.

[Melbustus]

you misunderstood what jgarzik was saying that Kaminsky was saying in that tweet.

No, sorry. Wrong again. The bet concerned Kaminsky's statement at the security panel of the Bitcoin 2013 conference that the current proof-of-work function will not see the end of 2013:

“I assign a 0% probability that we will continue with the present proof of work function. The present proof of work function is not going to survive the year. Period. If there’s one hard prediction I’m going to make it’s going to be that.” – Dan Kaminsky

Sources:

• http://thegenesisblock.com/go-fork-yourself-life-after-a-bitcoin-hard-fork
• https://mobile.twitter.com/jgarzik/status/336218499938668544

i know what he said, i attended the session.  i've also read those links.

what he means is exactly what i said.  he predicts Bitcoin's POW won't survive b/c he thinks someone is going to accumulate enough ASIC hash power to perform a 51% attack.

he said nothing about SHA256.

Yeah, I was also in the room when Kaminsky made that statement, and was paying attention to the entire session and context. Cypher is right.

arnuschky - Go watch the videos from the conference....the security panel should be up.

[arnuschky]

Yeah, I was also in the room when Kaminsky made that statement, and was paying attention to the entire session and context. Cypher is right.

arnuschky - Go watch the videos from the conference....the security panel should be up.

I did by now, thanks. Context is important.

[jgarzik]

I think Let's Talk Bitcoin covered the issue pretty well in Episodes 21 and 22. I've had the same beliefs for some time, and with the way the ASIC world is going, it is playing out. If the community doesn't step up and make the change, or at least have an open discussion on the issue, I see Bitcoin dead in less than a year.

Andreas is grossly wrong on this one.

Indeed.  See http://www.coindesk.com/bitcoin-developer-jeff-garzik-on-altcoins-asics-and-bitcoin-usability/ for some thoughts.