I have an idea and wonder whether it already came up in the past so was thinking of putting it out here and getting some feedback.
The idea is a variant on POW, securing an Alt-Chain by
spending bitcoins instead of CPU/electricity.
To mine a new Altcoin Block, the Alt miner assembles alt mempool transactions into a block and computes the Merkle Root of the transaction list, just like in Bitcoin.
Instead of spending cpu (incrementing a nonce and aiming to minimize the block header's hash) the Alt miner makes a
"Mining Transaction" on the Bitcoin network sending some amount of bitcoins to himself
leaving behind a predefined amount of Satoshis as a miner fee.
The Alt miner waits for the mining transaction to be confirmed (in Bitcoin). When it is confirmed in some block the alt miner signs (with the private key of the address from which the mining transaction originated) the Hash of the concatenation of the previous alt-block header, the current candidate Merkle root of alt transactions and the mining txid, and publishes that signature as the header for the candidate alt-block.
Other altcoin participants can verify that signature, because the public key corresponding was exposed in the mining transaction.
Define the Purchased (or Payed for) Work to be the Hash of the concatenation of the mining txid with the hashed header of the Bitcoin block where that transaction was mined.
A valid alt-block is required to satisfy that this value is smaller than a predefined difficulty parameter.
The correct alt-chain is the one with maximal accumulated payment, namely, the sum of the payment factors for each block (hash of mining txid concatenated with the header of the Bitcoin block where it was mined) weighted by the price payed (assuming that in general the alt protocol has a retargeting algorithm that changes, like the Bitcoin difficulty adjustment).
Comments:The basic point here is that if a new alt wants to launch and secure itself with POW then there are 3 main benefits to this method:
- Technically easier than dealing with mining hardware
- Environmentally friendly: No need to burn electricity when we can use an existing provably scarce resource (=Bitcoin)
- Supports Bitcoin's security by increasing miners fees
Security Model:Unless I'm missing something, it seems to me that reversing an alt-block requires either:
- Alt-Miner need to construct a competing chain. But that is the same as in Bitcoin, you need to pay to mine and that’s ok.
- Reversing a Bitcoin block. Here we assume that Bitcoin is much more expensive so this is not rational to do.
Miners DoS: An obvious difficulty with methods of this type is that Bitcoin miners may find it profitable to DoS such mining transactions so that only their mining transactions get confirmed. However, under what seems to me to be fairly reasonable assumptions one can show that there is a parameter range where this is not profitable for the miner (namely, it is more profitable to collect the mining fees). See my writeup at
https://view.publitas.com/foo/proof-of-payment/ for more details.
Anyways, I hope I explained this well. It feels pretty basic so I will not be surprised if it has been proposed in the past or just doesn't work at all for one or many reasons I neglected to consider, but I am hoping to start a discussion, at least so that I can learn from it.
Thanks everyone.
p.s. In case you missed it in the text above, here again is a link to a cleaner PDF writeup of the above
https://view.publitas.com/foo/proof-of-payment/
