|
inBitweTrust
|
 |
January 17, 2015, 04:05:47 PM
Last edit: January 17, 2015, 04:28:06 PM by inBitweTrust |
|
Learn basic math.
Some common sense would also help: That block explorer probably showed the forging stake, not the coin ownership.
It was coin distribution based upon the ICO. Buying one or two forging pools and one mining facility should totally do the job. I don't see how I miss costs there... those likely run profitable or close to.
Note how for a state actor all this would be in fact easy, undetectable - and basically free.
States are porous and leak secrets all the time. Most people in IT knew of the Snowden revelations years before he became a whistleblower.
The paper you linked doesn't say that. In the blog links you posted he doesn't say that. You're chasing me in circles with your fake references. I'll end responding.
In fact most your links say: he leans towards POS (which checkpoints of several months of age), which you don't want to explain. You're not living up to your own standards.
I will concede he changes his mind often but if you have been following the nuances of his papers and interviews you will see that he is not content with Slasher Ghost for security alone and is likely to include hashimoto dagger IO bound PoW. I like TaPoS and think it should be added as an option to bitcoin. You seemed to me to be somewhat defensive and reactionary. Are you upset that Nxt and Bitshares are losing ground and dying? |
|
|
|
siameze
Legendary
 Offline
Activity: 1064
Merit: 1000
|
|
January 17, 2015, 05:05:55 PM |
|
If you are speaking about the past years this simply isn't factual. PoS coins have almost all proven to be ICO scams or pump and dump opportunities.
This is true. I wondered if most ICO scams choose PoS variants because they cannot easily get network backing using PoW? |
|
|
|
achimsmile
Legendary
Offline
Activity: 1225
Merit: 1000
|
|
January 17, 2015, 05:09:55 PM |
|
|
|
|
|
|
achimsmile
Legendary
Offline
Activity: 1225
Merit: 1000
|
|
January 17, 2015, 05:10:47 PM |
|
If you are speaking about the past years this simply isn't factual. PoS coins have almost all proven to be ICO scams or pump and dump opportunities.
This is true. I wondered if most ICO scams choose PoS variants because they cannot easily get network backing using PoW? cough cough paycoin cough |
|
|
|
|
|
ThomasVeil
|
|
January 17, 2015, 05:14:31 PM |
|
You seemed to me to be somewhat defensive and reactionary. Are you upset that Nxt and Bitshares are losing ground and dying?
Because I like a good discussion it grinds my gears if someone pretends to engage in one, and then doesn't do the most minimal diligence - not even spending 2 seconds thinking. Posting links and completely misrepresenting what they say. It's disrespectful. Or this stuff: It was coin distribution based upon the ICO. ... which would take about 5 seconds to verify. It's public info (in fact in the blockchain) and 3rd grade math. No user could have had close to 10% of the stake. Buying one or two forging pools and one mining facility should totally do the job. I don't see how I miss costs there... those likely run profitable or close to.
Note how for a state actor all this would be in fact easy, undetectable - and basically free.
States are porous and leak secrets all the time. Most people in IT knew of the Snowden revelations years before he became a whistleblower. ...or diverting into completely unrelated topics, ignoring the issue. The paper you linked doesn't say that. In the blog links you posted he doesn't say that. You're chasing me in circles with your fake references. I'll end responding.
In fact most your links say: he leans towards POS (which checkpoints of several months of age), which you don't want to explain. You're not living up to your own standards.
I will concede he changes his mind often Or concessions like that. |
|
|
|
|
Damelon
Legendary
Offline
Activity: 1092
Merit: 1010
|
|
January 17, 2015, 05:20:34 PM |
|
If you are speaking about the past years this simply isn't factual. PoS coins have almost all proven to be ICO scams or pump and dump opportunities.
This is true. I wondered if most ICO scams choose PoS variants because they cannot easily get network backing using PoW? My guess would be that PoS is a useful "buzz word" that few people have actually researched, but that seems to be really cool. Marketing 101.  It's one of the reasons I am glad research that is verifiable is finally being done. It's a lot harder to make claims when there are verifiable counter arguments around. |
|
|
|
|
inBitweTrust
|
|
January 17, 2015, 05:23:20 PM
Last edit: January 17, 2015, 06:37:49 PM by inBitweTrust |
|
... which would take about 5 seconds to verify. It's public info (in fact in the blockchain) and 3rd grade math. No user could have had close to 10% of the stake.
It is a premined ICO with only ~70 participants. The original blockchain explorer reflected granularity from 10 million to 100 million instead of 1 million to 1,000,000,000 as shown here: https://nxtblocks.info/#section/blockexplorer_distributionI was able to calculate that between 4-14 individuals control 51% stake in NxT at the time which indicates there could be a few people with over 10% stake. In fact it would be surprising that a couple of the developers didn't hold onto at least 10% of the premine. No user could have had close to 10% of the stake.
How could you possibly know that? This isn't a research paper refuting the previous work but just a statement just like below: https://nxtforum.org/consensus-research/multibranch-forging-approach/?PHPSESSID=qi7nicmsk2cmc6ri87mtrstcd6 And I agree, all Proof-o-Stake currencies share N@S concern. Even more, they share much more. So it will be cool to share research efforts as well. Or are you just playing a semantic games and claiming that a little effort is expended in performing a N@S attack therefore it technically shouldn't use the word "nothing". |
|
|
|
achimsmile
Legendary
Offline
Activity: 1225
Merit: 1000
|
|
January 17, 2015, 05:43:55 PM |
|
|
|
|
|
|
|
Daedelus
|
|
January 17, 2015, 05:46:22 PM |
|
I like how the Nothing@Stake attack keeps mutating as time passes  |
|
|
|
|
Este Nuno
Legendary
Offline
Activity: 826
Merit: 1000
amarha
|
|
January 17, 2015, 05:48:19 PM |
|
From what I know Vitalik wants to go PoS, but Gavin Wood et al refuse to do anything other than PoW.
|
|
|
|
|
|
inBitweTrust
|
|
January 17, 2015, 05:54:34 PM |
|
That is the article I linked to which indicates you can perform short range N@S attacks with 10% stake. When kushti published it he even admitted such: - we have formally defined nothing-at-stake attack(again, using Buterin's informal definition) and made initial simulations. We haven't included their results in paper as they are seems to be too raw, but I can reveal them here: N@S attack could happens only in short-range, e.g. for within 20 blocks for 10% stake, so with 30 confirmations we haven't observed the successful attack. Also please note the attack has pretty unpredictable nature for attacker, so he can hardly enforce it, even in theory(in practice it's even harder to get it done properly). The correlation with stake size is still the open question, but it's nearly impossible to attack a proof-of-stake currency with "1% stake even" as stated by Buterin
I believe what is happening now is Nxt Supporters are now suggesting N@S is impossible because they are interpreting "Nothing" literally and indicating only short range attacks are possible. If you want to play word games that is fine, lets call it a bear raid and short range attack combo. From what I know Vitalik wants to go PoS, but Gavin Wood et al refuse to do anything other than PoW.
Interesting and plausible. Gavin is a wise man if so. |
|
|
|
Damelon
Legendary
Offline
Activity: 1092
Merit: 1010
|
|
January 17, 2015, 06:24:15 PM |
|
The first explorer is still very much active: http://nxtexplorer.com/ |
|
|
|
|
|
|
valarmg
|
|
January 17, 2015, 06:53:02 PM |
|
From what I know Vitalik wants to go PoS, but Gavin Wood et al refuse to do anything other than PoW.
Interesting and plausible. Gavin is a wise man if so. So earlier, that Buterin had thoroughly studied the vulnerabilities and found PoS wanting made it clear to you that PoS had insufficient security. Now, when you find out that Buterin has decided that PoS is the best option (but is dissuaded by others from using it), Buterin is clearly wrong despite his thorough study. So there are probably no arguments or studies or science that could persuade you that PoS is secure, right? |
|
|
|
|
|
inBitweTrust
|
|
January 17, 2015, 07:00:22 PM |
|
So earlier, that Buterin had thoroughly studied the vulnerabilities and found PoS wanting made it clear to you that PoS had insufficient security.
Now, when you find out that Buterin has decided that PoS is the best option (but is dissuaded by others from using it), Buterin is clearly wrong despite his thorough study.
So there are probably no arguments or studies or science that could persuade you that PoS is secure, right? It's more of a faith thing, and we might as well be arguing evolution with right wing catholics, maybe?
First of all, we don't know if Buterin prefers TaPoS over PoW... I am simply open to evidence and am willing to admit it is plausible. The point still stands with Ethereum whether it comes from Gavin or Vitalik. Secondly, as I have stated numerous times in this thread, I like TaPoS, and think it offers some security differences, benefits, and weaknesses to PoW and would like to see it integrated as a layer on top of Bitcoin for added security and other benefits. Just because I can find critical flaws within PoS variants doesn't mean I see no security or benefits from such consensus mechanisms. I have been vary critical of bitcoins weaknesses, PoW weaknesses, and Bitcoin companies throughout my post history. I am not interested in trading one set of problems for another but rather discussing methods of strengthening crypto-currencies security and understanding inherent weaknesses. |
|
|
|
Damelon
Legendary
Offline
Activity: 1092
Merit: 1010
|
|
January 17, 2015, 07:38:05 PM |
|
That site wasn't "taken down", but abandoned by the person running the charts. Small difference, and you could not know that. We're working on getting them back up. It's good info to have available. |
|
|
|
|
Daedelus
|
|
January 17, 2015, 11:44:32 PM |
|
That is the article I linked to which indicates you can perform short range N@S attacks with 10% stake. When kushti published it he even admitted such: - we have formally defined nothing-at-stake attack(again, using Buterin's informal definition) and made initial simulations. We haven't included their results in paper as they are seems to be too raw, but I can reveal them here: N@S attack could happens only in short-range, e.g. for within 20 blocks for 10% stake, so with 30 confirmations we haven't observed the successful attack. Also please note the attack has pretty unpredictable nature for attacker, so he can hardly enforce it, even in theory(in practice it's even harder to get it done properly). The correlation with stake size is still the open question, but it's nearly impossible to attack a proof-of-stake currency with "1% stake even" as stated by Buterin
I believe what is happening now is Nxt Supporters are now suggesting N@S is impossible because they are interpreting "Nothing" literally and indicating only short range attacks are possible. If you want to play word games that is fine, lets call it a bear raid and short range attack combo. That article isn't the latest information, this post from 14th Jan is.. To summarize the discussion, known claimed attacks on proof-of-stake distributed consensus algorithm(and concrete implementations) at the moment:
*snipped*
3. Nothing-at-stake attack - not possible at the moment! Will be possible when a lot of forgers will use multiple-branch forging to increase profits. Then attacker can contribute to all the chains(some of them e.g. containing a transaction) then start to contribute to one chain only behind the best(containing no transaction) making it winner. Previous statements on N@S attack made with assumption it costs nothing to contribute to an each fork possible and that makes N@S attack a disaster. In fact, it's not possible at all to contribute to each fork possible, as number of forks growing exponentially with time. So the only strategy for a multibranch forger is to contribute to N best forks. In such scenario attack is possible only within short-range e.g. with 25 confirmations needed 10% attacker can't make an attack. And attack is pretty random in nature, it's impossible to predict whether 2 forks will be within N best forks(from exponentially growing set) for k confirmations. So from our point of view the importance of the attack is pretty overblown.
*snipped*
When he published the multistrategy paper in Dec, the post indicated that he thought the N@S was overblown and explicitly stated that he hadn't included these results in that paper. Kushti's research shows that the Nothing @ Stake attacked described by Vitalik (as he was the only one to describe it in any detail) is BS. If you have a different attack, you'll need a different name |
|
|
|
|
achimsmile
Legendary
Offline
Activity: 1225
Merit: 1000
|
|
January 18, 2015, 09:11:08 AM |
|
let's wait until someome tries to attack Nxt testnet. I'm sure the community would be glad to give out some teststake.
If anyone wants to have a try, please go to nxtforum.org and ask for testnxt.
We can talk again after some guys tried and report their findings, ok?
|
|
|
|
|
|
inBitweTrust
|
|
January 18, 2015, 11:52:23 AM |
|
let's wait until someome tries to attack Nxt testnet. I'm sure the community would be glad to give out some teststake.
If anyone wants to have a try, please go to nxtforum.org and ask for testnxt.
We can talk again after some guys tried and report their findings, ok?
And I'll do nxt next (testnet or a clone) but it'll take some time because it's a very different thing I need to get used to.
|
|
|
|
|
|
|
