the story of bitcoin
play

The Story of Bitcoin Eston Schweickart Slides adapted from Ittay - PowerPoint PPT Presentation

Apr 18, 2023 •510 likes •1.02k views

The Story of Bitcoin Eston Schweickart Slides adapted from Ittay Eyals System Lunch Talk, April 2014 Motivation Sending Money is Hard Payment between Alice and Bob Want to prevent: Double spending Alice Bob Stealing

  1. The Story of Bitcoin Eston Schweickart Slides adapted from Ittay Eyal’s System Lunch Talk, April 2014

  2. Motivation

  3. Sending Money is Hard • Payment between Alice and Bob • Want to prevent: • Double spending Alice Bob • Stealing • Invalid transactions • Not a local solution!

  4. Why Not Use Banks? • Banks can… • Monitor transactions, detect fraud • Prevent double spending • But… • Puts trust in a single third party • Results in higher transaction fees

  5. Bitcoin to the Rescue! • All transactions public, verifiable • Majority decides right, not a single party • Distributed and peer-to- peer, no single point of failure

  6. • Last year, nearly $14 billion worth of Bitcoin in circulation! • Only a measly $5 billion now (~$400 / 1 BTC)

  7. Bitcoin System Structure (Nakamoto ‘08)

  8. Origin • Developed by Satoshi Nakamoto • This is a pseudonym. No one knows the true identity of the original developer(s). • Whitepaper released in 2008 • Development started soon afterwards

  9. Global Ledger M � A • All transactions since beginning recorded • Transactions store A � B origin, recipient, amount • Special transactions make Bitcoin out of thin B � C air …

  10. Addresses and Transactions Transaction structure (roughly): input 1 output 1, amount 1 input 2 output 2, amount 2 input 3 output 3, amount 3 input 4

  11. Addresses and Transactions 0 � A A � B B � C Alice’s Bob’s Charlie’s Ledger Alice’s Bob’s Alice’s Charlie’s Bob’s [Nakamoto’08]

  12. Addresses and Transactions A � B B � C Actually a script

  13. The Blockchain Ledger Blockchain block

  14. The Blockchain Ledger Blockchain block

  15. Block Header Structure Hash of Prev. Header Txns’ Merkle Timestamp Root Nonce Target SHA256(SHA256(Block Header)) < Target

  16. Block Mining • Block contains nonce => hash contains number of preceding 0s • Block mining => inverting a hash function • Scalable difficulty in number of 0s (avg. 1/10 minutes by design) • Easy to verify • Miner gets bitcoin reward in special transaction, plus payer- defined transaction fees • If blocks accepted to blockchain, transactions committed • …but maybe not forever?

  17. Blockchain Distribution • Once a block is found, it is distributed to neighbors • Others verify, then propagate • Network delays, dropped messages, firewalls, etc. create forks in blockchain

  18. Blockchain Forks • Conflicting blocks stored • Longest chain first wins • Other blocks discarded (!!!)

  19. Blockchain Forks • If majority of CPU power is honest, no invalid transactions • Vanishing likelihood of beating majority’s chain

  20. One Way Things Can Go Wrong (Eyal and Sirer ’13)

  21. Enormous Amount of Mining Computation Power

  22. Mining Difficulty • Roughly 40,000,000,000x more difficult to mine blocks than in 2009 • Mining a single block could take years!

  23. Mining Pools • Form groups to consolidate CPU power • Lower variance in payoff

  24. How to Beat the System • Nakamoto model assumes honest majority, no hidden information • Best payoff: being honest • But what if we hide information? • Idea: don’t publish blocks we find • Keep track of public chain and secret chain • Try to get the secret chain ahead of public, then reveal

  25. Selfish Mining • Case (a): Any state but two branches of length 1. We find a block. • Result: Keep it secret. No revenue yet.

  26. Selfish Mining • Case (b): Two branches of length 1. We find a block. • Result: Publish it! +2 for us!

  27. Selfish Mining • Case (c): Two branches of length 1. Public finds a block on top of ours. • Result: Not bad, +1 to either side.

  28. Selfish Mining • Case (d): Two branches of length 1. Public finds a block on top of theirs. • Result: +2 for them. At this point, we should abandon our chain.

  29. Selfish Mining • Case (e): No gain over public branch. Public finds a block. • Result: +1 for them. At this point, we should mine on the new block.

  30. Selfish Mining • Case (f): Our chain is 1 longer. Public finds a block. • Result: Publish ours, intentionally creating a fork. No profit yet.

  31. Selfish Mining • Case (g): Our chain is 2 longer. Public finds a block. • Result: Publish! +2 (or more) for us!

  32. Selfish Mining • Case (h): We lead by more than 2. Public finds a block. • Result: Publish one, intentionally creating a fork (if one didn’t exist already)

  33. Selfish Mining Analysis 0’ 1 2 3 4 0 𝛽 is our relative computational power, 𝛿 is the portion of the public that mines on our published blocks

  34. Selfish Mining Analysis

  35. Selfish Mining Analysis • With 𝛿 =1, there is incentive to mine selfishly even with very limited computational power • In the Nakamoto model, feasible with selfish scout nodes • Even with 𝛿 =0, incentive exists at 33% • With 𝛿 =1/2, incentive exists at 25% • If nodes randomly mine on one of fork heads, this is the case — but no patch released to my knowledge

  36. Consequences • Before: no real benefit to joining large pool • Now: if a selfish pool is more profitable than others, new miners will prefer it • Incentive only increases as users join • Once 51% is reached, pool has unlimited control over transactions! Bitcoin would die!

  37. Reactions

  38. And Then, The Unthinkable • June 2014: Mining pool GHash, operated by CEX.io, passes 55% of the total mining power • …for about 24 hours • “Is this really armageddon? Yes, it is.” -IE & EGS • Now things appear to be stable (no one pool over 25%)

  39. Notes on Network Topology and Message Propagation (Decker and Wattenhofer ’13)

  40. Network Topology • When nodes join the network, they first query several DNS nodes, which return bootstrap nodes • Neighbors advertise themselves; random path is followed through the network • If you accept incoming connections, you have more neighbors • Warning: DNS impersonation could give control of network topology!

  41. Network Topology • What happens in a network partition scenario? • Both halves continue on independently • Warning: this creates a large fork that will invalidate many transactions when partition is healed! • Solution: use block discovery rate to detect partitions

  42. Transactions • Propagated through the network from a single node or a few seeds • Warning: transaction fees mean less incentive to propagate to neighbors! (Babaioff et al ’11) • Could result in large wait times at the coffee shop • Solution: • Distribute transaction fees among miners in the information chain • Distribute to a few seeds rather than just one

  43. Block Propagation

  44. Block Propagation • Size of block important factor in propagation delay • Like gossip, long tail on distribution

  45. Block Distribution • Warning: long tails cause blockchain forks! (~1.69%)

  46. Solutions

  47. Solutions • Pro: blocks distributed with less delay • Con: invalid blocks are propagated • Could result in DoS attacks => more forks! • Hybrid model might work • Other solutions: increase network connectivity • Greatly helps propagation speed if honest

  48. Solutions • Reduces block chain forks by about 1/2 (0.78%)

  49. Discussion • Is a non-permanent commit model the right choice? • Is selfish mining detectable? Fixable? • What about the other issues and potential attacks? • Is cryptocurrency a feasible alternative to modern day currencies?

Recommend

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin work? The characteris5cs of Bitcoin WHAT IS BITCOIN Bitcoin is a form of digital currency, created and held electronically. No one controls it.

839 views • 17 slides
Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin

Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin

Cryptocurrency Technologies Mechanics of Bitcoin Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin Scripts Bitcoin Blocks The Bitcoin Network Limitations and Improvements Mechanics of

695 views • 33 slides
Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim

Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim

Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim , Jinwoo Shin*, Yongdae Kim* *KAIST, Sungkyunkwan University 1 Governance conflict The number of Bitcoin transaction per month Bad scala bility

731 views • 46 slides
1 QC STORY -32 QC STORY -32 QC STORY -32 QC Story-1 QC Story-1 QC Story-1 Awards and

1 QC STORY -32 QC STORY -32 QC STORY -32 QC Story-1 QC Story-1 QC Story-1 Awards and

QC STORY -32 QC STORY -32 QC STORY -32 Shop Floor view QC Story-1 QC Story-1 FACTORY OVERVIEW QC Story-1 On Behalf of Susira Industries Ltd., Chennai. We Welcome the Delegates for the QCI DL SHAH NATIONAL AWARDS ON ECONOMICS OF

976 views • 13 slides
Bitcoin as a Platform We have built Bitcoin. What can we build on top of it? Commitments

Bitcoin as a Platform We have built Bitcoin. What can we build on top of it? Commitments

Cryptocurrency Technologies Bitcoin as a Platform Bitcoin as a Platform We have built Bitcoin. What can we build on top of it? Commitments Token tracking Multiparty lotteries Public randomness Prediction markets A fine stew

714 views • 38 slides
Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed

Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed

Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed Computing Group www.disco.ethz.ch What is Bitcoin? What is Bitcoin? + What is Bitcoin? = + Whats it worth? USD / Bitcoin exchange price 300

752 views • 48 slides
Bitcoin Mining The Task of Bitcoin Miners Mining Hardware Energy Consumption &amp;

Bitcoin Mining The Task of Bitcoin Miners Mining Hardware Energy Consumption &amp;

Cryptocurrency Technologies Bitcoin Mining Bitcoin Mining The Task of Bitcoin Miners Mining Hardware Energy Consumption &amp; Ecology Mining Pools Mining Incentives and Strategies Recap: Bitcoin Miners Bitcoin depends on

821 views • 35 slides
Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers are not trusted: may be greedy or corrupt Each peer knows about all bitcoins and transactions Transaction (sender -&gt; receiver): sender

958 views • 23 slides
Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers

Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers

Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers Joseph Bonneau CITP, Princeton Thanks to Andrew Miller, Arvind Narayanan, Jeremy Clark, Joshua Kroll, Ed Felten Part I: Bitcoin in 6 easy steps

752 views • 32 slides
Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing

Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing

Cryptocurrency Technologies Bitcoin and Anonymity Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing Decentralized Mixing Zerocoin and Zerocash Tor and the Silk Road Bitcoin and Anonymity

524 views • 39 slides
Regulation of Bitcoin Jerry Brito Coin Center coincenter.org Is Bitcoin regulated? Is Bitcoin

Regulation of Bitcoin Jerry Brito Coin Center coincenter.org Is Bitcoin regulated? Is Bitcoin

Regulation of Bitcoin Jerry Brito Coin Center coincenter.org Is Bitcoin regulated? Is Bitcoin regulated? The so far unregulated digital currency has courted controversy because of its volatile value and its popularity among

1.17k views • 51 slides
nix-bitcoin robust Lightning nodes for hackers github.com/fort-nix/nix-bitcoin 2019-06-01

nix-bitcoin robust Lightning nodes for hackers github.com/fort-nix/nix-bitcoin 2019-06-01

nix-bitcoin robust Lightning nodes for hackers github.com/fort-nix/nix-bitcoin 2019-06-01 @n1ckler A smart home A Bitcoin node A lonely datacenter Robustness Do you trust binaries from some cache or do you build from source? Do

411 views • 29 slides
Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin?

Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin?

Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin? Bitcoin is a cryptocurrency: a digital currency whose rules are enforced by cryptography and not by a trusted party (e.g., bank) Core ideal: avoid

1.02k views • 36 slides
A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital currency Anyone can be part of the network Global distributed ledger called blockchain First Appearance Bitcoin: A Peer-to-Peer Electronic

4.02k views • 48 slides
Ethereum and Solidity Prof. Tom Austin San Jos State University Bitcoin (BTC) Protocol

Ethereum and Solidity Prof. Tom Austin San Jos State University Bitcoin (BTC) Protocol

Ethereum and Solidity Prof. Tom Austin San Jos State University Bitcoin (BTC) Protocol designed by Satoshi Nakamoto in 2008 https://bitcoin.org/bitcoin.pdf First Bitcoin client launched in 2009 Peer-to-peer no centralized

501 views • 31 slides
Bitcoin Privacy : Bitcoin On- and Ofg-Chain On- and Ofg-Chain with Janine Janine Teacher

Bitcoin Privacy : Bitcoin On- and Ofg-Chain On- and Ofg-Chain with Janine Janine Teacher

Privacy : Bitcoin Privacy : Bitcoin On- and Ofg-Chain On- and Ofg-Chain with Janine Janine Teacher Independent investigative journalist Research focus: Bitcoin / cryptocurrencies, information security, privacy, surveillance, and

1.3k views • 85 slides
Bitcoin Arbitrage am Bitcoin-Markt 1 7 .07 .201 3 2 Agenda 1 Arbitrage 2 Arbitrage am

Bitcoin Arbitrage am Bitcoin-Markt 1 7 .07 .201 3 2 Agenda 1 Arbitrage 2 Arbitrage am

1 Abschlussprsentation Bitcoin Arbitrage am Bitcoin-Markt 1 7 .07 .201 3 2 Agenda 1 Arbitrage 2 Arbitrage am Bitcoin-Markt 3 Verhaltensmuster Arbitrageure 4 Arbitragetools 5 Ergebnisse und Fazit Was ist Arbitrage? Arbitrage

456 views • 33 slides
Blockchain and secure computation Vassilis Zikas RPI Winter School on Cryptocurrency and

Blockchain and secure computation Vassilis Zikas RPI Winter School on Cryptocurrency and

Blockchain and secure computation Vassilis Zikas RPI Winter School on Cryptocurrency and Blockchain Technologies Shanghai Jiao Tong University 2017 Bitcoin Bitcoin What is bitcoin and how does it work? Bitcoin What is bitcoin and how

2.08k views • 178 slides
ACTUALLY WORKS Jan Mller Mycelium How Does Bitcoin Actually Work? This talk is not about

ACTUALLY WORKS Jan Mller Mycelium How Does Bitcoin Actually Work? This talk is not about

HOW THE BITCOIN PROTOCOL ACTUALLY WORKS Jan Mller Mycelium How Does Bitcoin Actually Work? This talk is not about the political or economical impact of Bitcoin. This talk is not about how to buy, sell, spend, or secure your bitcoins.

674 views • 36 slides
Half-fast A Bitcoin Miner for the FPGA Overview Objectives and Motivation Bitcoin

Half-fast A Bitcoin Miner for the FPGA Overview Objectives and Motivation Bitcoin

Half-fast A Bitcoin Miner for the FPGA Overview Objectives and Motivation Bitcoin System Overview Hardware Software Challenges and Difficulties Lessons learned Objectives and Motivation Build a Bitcoin

229 views • 21 slides
Cryptocurrencies bitcoin, blockchain &amp; beyond Roger Wattenhofer ETH Zurich Distributed

Cryptocurrencies bitcoin, blockchain &amp; beyond Roger Wattenhofer ETH Zurich Distributed

Cryptocurrencies bitcoin, blockchain &amp; beyond Roger Wattenhofer ETH Zurich Distributed Computing Group Cryptocurrencies What is Bitcoin? = + + Technology The Bank of Bitcoin The Bank of Bitcoin User Balance A 2 B 5 C 8

1.25k views • 104 slides
Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim , Jinwoo Shin*, Yongdae

Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim , Jinwoo Shin*, Yongdae

Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim , Jinwoo Shin*, Yongdae Kim* *KAIST, Sungkyunkwan University 1 Governance conflict The number of Bitcoin transaction per month Bad

797 views • 46 slides
Bitcoin Transactions Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical

Bitcoin Transactions Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical

Bitcoin Transactions Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical Engineering Indian Institute of Technology Bombay August 5, 2019 1 / 32 Bitcoin Transactions Bitcoin Payment Workflow 1. Request Bobs address 2.

1.17k views • 32 slides
Bitcoin Tom Anderson Admin Course evals My office hours next week are cancelled Bitcoin Goal

Bitcoin Tom Anderson Admin Course evals My office hours next week are cancelled Bitcoin Goal

Bitcoin Tom Anderson Admin Course evals My office hours next week are cancelled Bitcoin Goal Electronic money without trust $34B market value Created out of thin air, from a paper + some code Pros/cons of Cash + portable + cannot spend

749 views • 44 slides

More recommend