|
|
|
|
Be very wary of relying on JavaScript for security on crypto sites. The site can change the JavaScript at any time unless you take unusual precautions, and browsers are not generally known for their airtight security.
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
|
Mike Hearn
Legendary
Offline
Activity: 1526
Merit: 1129
|
|
November 11, 2013, 11:41:40 AM |
|
No, it's not used.
|
|
|
|
|
Mike Hearn
Legendary
Offline
Activity: 1526
Merit: 1129
|
|
November 11, 2013, 12:30:05 PM |
|
The RSA BSAFE library is known to have used it. That in turn has been used in a pile of proprietary software stacks, the most important that I'm aware of is the SSL stacks on some Japanese phones. It is fair to assume all SSL sessions generated by such stacks could have been decrypted by the NSA.
Beyond that, I don't think it got used much.
|
|
|
|
manuel (OP)
Member
Offline
Activity: 70
Merit: 10
|
|
November 11, 2013, 12:57:21 PM |
|
Didn't the NSA also create SHA-256 and isn't that used by Bitcoin? What ramifications does that have?
|
|
|
|
Mike Hearn
Legendary
Offline
Activity: 1526
Merit: 1129
|
|
November 11, 2013, 03:53:09 PM |
|
They did. However, SHA-256 is based on well studied public algorithms invented by non-NSA affiliated academics, like Merkle–Damgård compression.
Also, it's rather simple, extremely well studied and does not contain any unexplainable numbers or constants like Dual_EC_DRBG or secp256r1 do.
The chances of there being a problem with SHA-256 is extremely low.
|
|
|
|
maaku
Legendary
Offline
Activity: 905
Merit: 1011
|
|
November 11, 2013, 07:03:41 PM |
|
I am surprised that if this figure of $14 million dollars is correct for the amount of hardware necessary to launch a 51% attack, why hasn't anyone done this already?
Because... why would you? You're not going to recoup that investment.
|
I'm an independent developer working on bitcoin-core, making my living off community donations. If you like my work, please consider donating yourself: 13snZ4ZyCzaL7358SmgvHGC9AxskqumNxP
|
|
|
gmaxwell
Moderator
Legendary
Offline
Activity: 4158
Merit: 8382
|
|
November 11, 2013, 08:42:32 PM |
|
The number has gone up quite a bit since then since the hashrate is rapidly growing.
At the moment, it's $80,000,000, though it will step down again when I can fairly make the claim $3/gh 28nm parts, instead of $8000 for 400GH/s bitfury parts. ($3/gh would be $12m at current hashrate, though once those parts are actually available the hashrate will go up some large amount).
To elaborate on Maaku's comment. Bitcoin is foremost an autonomous zero trust system, all full nodes validate everything. A majority of mining ruins the security assumptions, but it still doesn't give the majority completely free reign over the system. Dishonestly using your majority hashpower would likely just make the resulting coins worthless.
|
|
|
|
|