<div dir="ltr"><div class="gmail_default" style="font-size:small"><br></div><div class="gmail_extra"><br><div class="gmail_quote">On Sat, Aug 20, 2016 at 12:01 AM, Ray Dillinger <span dir="ltr"><<a href="mailto:bear@sonic.net" target="_blank">bear@sonic.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class=""><br>
<br>
On 08/19/2016 05:55 PM, Phillip Hallam-Baker wrote:<br>
<br>
> Explain the attack more fully. Assume that each server is signing each<br>
> output value and has a trust relationship with the parties it exchanges<br>
> values with.<br>
><br>
> The key servers are not anonymous entries or random bloggers.<br>
<br>
</span>So you have Trent instead of Sibyl. Technically either is just as bad,<br>
and nobody wants to take the time and trouble to deal with Trent. The<br>
whole point of the Proof-of-work thing is that Sibyl can't do damage<br>
for free. If you're using a Trusted system with gatekeepers who can<br>
screw it over or keep people out, then you don't have Sibyl in the first<br>
place. But that doesn't mean you have a problem that's any smaller.<br>
<br>
Bear<br></blockquote></div><br></div><div class="gmail_extra"><div style="font-size:12.8px"><div class="gmail_default" style="font-size:small;display:inline">It isn't Trent though. Its a hundred Trents. And as the BitcOin folk admit, the security of their scheme actually rests on exactly the same principle.</div></div><div style="font-size:12.8px"><div class="gmail_default" style="display:inline"><br></div></div><div style="font-size:12.8px"><div class="gmail_default" style="display:inline">There are in fact suppliers that rent the scale of computing resources required to break bitcoin, they support the animation industry.</div> <div class="gmail_default" style="font-size:small;display:inline">Rooms full of machines loaded with GPUs isn't an economic way to mine coin but it still works.</div></div><div style="font-size:12.8px"><div class="gmail_default" style="font-size:small;display:inline"><br></div></div><div style="font-size:12.8px"><div class="gmail_default" style="font-size:small;display:inline"><br></div></div><div style="font-size:12.8px"><div class="gmail_default" style="font-size:small;display:inline">And lets just get real for a minute. People are always claiming how secure BitCoin is and how it doesn't need any trusted parties. How many bitCoins have been created to date? How many biTcoinS have been stolen in frauds at exchanges? If you ignore the Bitcoins that Hal probably dumped into the bit bucket in the early years and have never been available to spend, the typical Bitcoin in circulation has been stolen twice or so.</div></div><div style="font-size:12.8px"><div class="gmail_default" style="font-size:small;display:inline"><br></div></div><div style="font-size:12.8px"><div class="gmail_default" style="font-size:small">This is what many of us find so frustrating about analyzing Bitcoin. The actual real world experience of running the system and the actual code is ignored. Meanwhile hypothetical problems that don't actually turn out to be problems in the real world banking systems are presented as insuperable obstacles.</div><div class="gmail_default" style="font-size:small"><br></div><div class="gmail_default" style="font-size:small">The total number of BitCoin transactions in the history of the system are substantially less than the amount one of the ACH systems handles in an hour.</div><br></div></div></div>