PDA

View Full Version : The Flaw In Bitchain (& Mt. Gox)



allodial
02-16-15, 07:36 PM
There appears to be a flaw (or flaws) in the Bitcoin system, and it has the potential to cause the system to give way effectively to a 'centralized bank'--that is, miners could consolidate and effectively control or manipulate the Bitcoin ledger. In his article Flaw In Bitcoin Algorithm, Mike Jones, referring to a paper written by, explains:
2268


Flaw In Bitcoin Algorithm
Written by Mike James
Wednesday, 06 November 2013

Most security analysts don't regard the Bitcoin algorithm as particularly sophisticated, but until a new paper was published there was no explicit flaw. However, the problem that has been uncovered is more to do with game theory than cryptography.

The basic Bitcoin algorithm may not be sophisticated, but it is very clever and well constructed. The problem it solves is to allow the non-central administration of a currency. It does this by using a "proof of work" algorithm to ensure that just one server authenticates a block of transactions.

What happens is that when a transaction block is published Bitcoin miners, who run the authentication servers, pick up the block and try to solve the cryptographic problem it contains. The first one to do so gets a reward of some newly-minted Bitcoins, and perhaps even a transaction fee.

Because of the competitive nature of the task, the server that gets to authenticate the block is more-or-less chosen at random.This makes it very difficult to implement a dishonest transaction because it isn't possible to orchestrate the making of a transaction with the authenticating of a transaction so that the same agent involved in both. The idea is that as long as the majority of miners are honest then the Bitcoin block chain, i.e. the history of all Bitcoin transactions, remains true, irrevocable and trustworthy.

This, however, all depends on the majority of miners not only being honest, but not having a reason to be dishonest.
In other words, a miner makes more by competing rather than co-operating with other miners.

Now in a new paper, Ittay Eyal and Emin Gun Sirer of Cornell have noticed that there is a strategy whereby a group of miners can receive more Bitcoins if they work together.

Currently miners do organize themselves into pools but these are more like betting syndicates. The miners simply agree to work together and share the Bitcoins that they earn. This smooths out the statistical fluctuations in a miner's earnings.
However, if any pool notices that there is an advantage to be had from deviating from the standard behavior then the system falls apart - and this is what the researchers have found. The profitable deviation isn't obvious, but it is easy to implement. When a miner finds the solution to a block the idea is that this is announced at once. This is noticed by the other miners who then move on to the next block and regard the previously current block as solved. Now consider what happens if a mining pool decides not to announce that it has solved a block. That pool is the only group of miners that knows to move on to the next block. The other, honest, miners waste their time trying to solve a block that has already been solved.

Of course, at some point the honest miners solve the block, but the dishonest miners simply publish their longer extension to the block chain, which will be accepted with a reasonable probability. The honest miners get nothing and the dishonest miners get all of the newly-minted Bitcoins from their previously secret chain. This algorithm can be repeated and any miner offered a chance to join such a pool has nothing to lose and everything to gain. Dishonesty gets you more Bitcoins with no penalty.

The fact that the block chain is now built up in this new way has no real disadvantage. There is nothing particularly threatening to Bitcoin from the dishonest miners' behavior. The problem is that once the behavior is established the control of Bitcoin authentication will end up in the hands of a small number of mining pools. This is no longer a distributed currency, but a centrally administered one. Any such mining pool could choose to take a step further and manipulate the block chain for its own additional profit.

The paper explains that for the Bitcoin system to be safe it isn't good enough that just a majority of miners are honest.
This flaw is also present in all currencies derived from the Bitcoin algorithm, including Litecoin and Namecoin.

Another flaw ("transaction malleability (http://sfbitcoindevs.com/2015/01/15/transaction-malleability-threats-and-solutions/)") in the Bitcoin system that appears to exist is that it seems possible to alter the ID of the person initiating a purchase transaction to the extent that A can buy something but the bitcoin system could modify the transaction so that it appears that B or C made the transaction. However A could complain and have things corrected but nonetheless, the blockchain or ledger would have to be corrected. This appears to be one of flaws that Mt. Gox complained about.

https://www.youtube.com/watch?v=Qlydjg1tiso

Related:
Majority is not Enough: Bitcoin Mining is Vulnerable (http://arxiv.org/abs/1311.0243) (paper by Ittay Eyal, Emin Gun Sirer - Jan. 2013)
Flaw In Bitcoin Algorithm (http://www.i-programmer.info/news/181-algorithms/6571-flaw-in-bitcoin-algorithm.html) (Nov. 2013)
Transaction Malleability: Threats and Solutions (Jan. 2015) (http://sfbitcoindevs.com/2015/01/15/transaction-malleability-threats-and-solutions/)
Without Drugs, What's the Point of Bitcoin? (http://www.theatlantic.com/technology/archive/2015/01/without-drugs-whats-the-point-of-bitcoin/384622/)

allodial
02-16-15, 07:54 PM
https://www.youtube.com/watch?v=jyDE-aFqJTs

shikamaru
02-21-15, 09:38 AM
It is interesting that you have the same problems with just about any money system however its developed whether its hard money, fiat money, or bitcoin.

Control of the money power is potent indeed.

Arguably, it is the most important aspect of any society.

allodial
02-21-15, 09:40 AM
I suspect they most always need control of the press too.

shikamaru
02-21-15, 09:56 AM
I suspect they most always need control of the press too.

Indoctrination is part and parcel of control.