today s menu
play

TODAYS MENU Miners dilemma Instability without the transaction fees - PowerPoint PPT Presentation

Feb 06, 2024 •242 likes •682 views

T RUTH J USTICE A LGOS Cryptocurrencies: Transaction fees, Pools and PoS Teachers: Ariel Procaccia and Alex Psomas (this time) TODAYS MENU Miners dilemma Instability without the transaction fees Proof of Stake MINING POOLS The

  1. T RUTH J USTICE A LGOS Cryptocurrencies: Transaction fees, Pools and PoS Teachers: Ariel Procaccia and Alex Psomas (this time)

  2. TODAY’S MENU • Miner’s dilemma • Instability without the transaction fees • Proof of Stake

  3. MINING POOLS The miner’s dilemma [Eyal 15] June 2018

  4. MINING POOLS • How pools work: 1. Manager giver her ID, ManagerID, to all participants 2. Participants try to find valid block with minerID=ManagerID 3. Participants send “partial proofs” to manager 4. Manager maintains “shares” in order to compute the contribution of each participant 5. Manager distributes rewards (at say the end of the week) according to f(OℎQRSO) Designing a good reward function is tricky • [SBBR16] but don’t worry about it for now

  5. MINING POOLS • Attack: ◦ Send all “partial proofs”, but throw away actual blocks • Sanity check: this does not actually “steal” blocks, because they are made with minerID = ManagerID • This definitely hurts the pool • It also hurts the attacker’s (pool) rewards • Main result: if the attacker attacks and mines in the right proportions, then this is overall profitable

  6. MINING POOLS • Two pools, each has 50% of the total power A B

  7. MINING POOLS • Pool A attacks pool B with half of its mining power • Pool A makes ¼/¾ = 1/3 of the total valid blocks ◦ While pool B makes 2/3 of the total valid blocks • Pool A also gets 1/3 of pool B’s rewards ◦ ¼/(¼ + ½) • Therefore, pool A makes O P + O P ⋅ R P = S T of the total reward ◦ As a bonus, participants get more “bang-per-buck” by joining A

  8. MINING POOLS • [Eyal 15] shows that this attack is profitable no matter how many pools and no matter the size! ◦ “No attacking” is not an equilibrium • In his model, the game between two pools reduces to a Prisoner’s dilemma type of game, where “attack” is always a dominant strategy ◦ Perhaps good news: the game is not played once, so cooperation could be a stable state

  9. TRANSACTION FEES

  10. TRANSACTION FEES • Currently in Bitcoin, most of the mining rewards come from the block reward ◦ Transaction fees are so small that it is reasonable for them to be 0 in an analysis of incentives in Bitcoin • Plan: half the block reward every four years. Eventually all of the rewards will come from transaction fees • Belief: “It doesn’t matter if you make 12.5 bitcoins via block rewards or 12.5 bitcoins in expectation via transaction fees” • Punchline: it does

  11. SETUP • Every miner has mining power x(7) with ∑ ; < 7 = 1 • At all times miner 7 is aware of the whole tree B(7) • Total of C transaction fees arrive in the interval [0, C] for all C

  12. GAME • At Poisson clock with rate 1, miner 7 selected to mine block proportionally to <(7) ◦ 7 creates a node ?, points to any node in @(7) ◦ Includes fees D(?) subject to ∑ G H ∈JKLMLNLOOPK G D ? Q ≤ S • Each time step every miner may broadcast any nodes in @(7) • Game stops at time U

  13. PROTOCOLS • Longest Chain ◦ Whenever selected to build a block point to the furthest node in =(?) • Break ties in favor of what you heard first ◦ Include maximum possible transaction fees ◦ Broadcast everything • Petty Longest Chain ◦ Whenever selected to build a block point to the furthest node in =(?) • Break ties in favor of most available fees ◦ Include maximum possible transaction fees ◦ Broadcast everything

  14. PROTOCOLS Longest chain 15 5 5 7 Petty Longest chain … 10 10

  15. • What if you know others are using Petty Longest Chain? • Extending Longest Chain gives 5 15 5 5 7 …

  16. • What if you know others are using Petty Longest Chain? • Extending Longest Chain gives 5 • Instead, build a new block and leave out some transactions! • (This made no sense when we had just block rewards) 15 5 5 7 … 10 Extending this block gives 10, so everyone who uses Petty Longest Chain will extend this!

  17. Theorem (informal): Undercutting (actively forking) is an equilibrium. Furthermore, there is a backlog of transactions (of size Θ( A)) Theorem (informal): Even if 2/3 of the miners play “honestly”, it’s still profitable to undercut

  18. MORE PROBLEMS • Currently, no incentives to broadcast transactions only you know about [BDOZ 12] ◦ Incentives similar to MIT’s DARPA red ballon challenge solution ◦ [BDOZ12] give an incentive compatible and “Sybil-proof” reward scheme

  19. TAKE AWAY • Switching to all rewards coming from transactions creates new kind of incentive issues

  20. PROOF OF STAKE

  21. PROOF OF STAKE • Proof of Work: ◦ Random miner selected with probability proportional to their computational power ◦ “One CPU, one vote” • Proof of Stake: ◦ Random miner selected with probability proportional to wealth rather than computational power ◦ “One coin, one vote”

  22. TODAY 1. A model for PoS cryptocurrencies 2. A set of properties such that every protocol in the model satisfies at least one property 3. An attack for each property

  23. MODEL Pr Proof of Stake protocol l blue blueprint nt 1. Protocol specifies an existing block 2. Protocol uses some method to pick a coin 3. Owner of the coin gets to add a new valid block of transactions on top of the existing block 4. Repeat

  24. MODEL Pr Protocol A Proof-of-Stake protocol is defined by two functions 1. A validating function A which takes as input a block and outputs 0 or 1 2. A mining function F which takes as input a block B, a coin I and a timestamp J, and outputs a valid block that extends B (if one exists) • A should be efficiently computable by everyone • F should be efficiently computable by the owner of I

  25. MODEL ((*, ,, -) = 0 A B 1 0 = 1

  26. MODEL As Assumption ons 1. Chain Dependence: Validity of block B at time @ depends only on @ and the predecessors of B 2. Monotonicity: If B is valid at time t then it is valid at all future times @’ > @ • Without them an attacker can withhold messages to convince a victim invalid blocks are in fact valid (Eclipse attack).

  27. MODEL B

  28. MODEL Lo Long ngest-Ch Chain n Pr Protocol A Longest-Chain protocol has a scoring functions S which takes as input a block and outputs a monotone increasing score: If A is the predecessor of B then S(A) < S(B) Miners are supposed to mine on top of A maximizing S(A)

  29. 3 4 3

  30. PROPERTIES D-Lo Locall lly Pr Predictable ble For a coin 9, ;<=>?(9) can efficiently predict D blocks in advance if she is eligible to use 9 to mine a block Predict A B

  31. PROPERTIES Ob Observation Every Proof-of-Stake protocol is 1-locally predictable Proof. Just use the mining function B to efficiently predict whether you can mine the next block.

  32. PROPERTIES D-Gl Globally P Predic ictable For a coin 9,every protocol participant can efficiently predict D blocks in advance if @ABCD(9) is eligible to use 9 to mine a block Example: Let M be a threshold and O a hash function. Q(R) = 1 ⇔ O(9(R), V(R)) < M

  33. PROPERTIES D-Re Recent The negation of D-locally predictable. <=>?@(B) ca cannot efficiently predict D blocks in advance if she is eligible to use B to mine a block Therefore, eligibility to mine a block depends on “recent history”

  34. ATTACKS Pr Predictable Selfish Mining Withhold a newly mined block B and secretly try to mine on top of it. If you mine another block B’, then you have the longest chain, even if other miners mine a block on EFGH(J) A A B B’ B Attack Succeeds Attack Fails

  35. ATTACKS Pr Predictable Selfish Mining • With global predictability there is no risk! • Can predict precisely when you are able to mine @ blocks faster than the rest of the miners

  36. A Launch Attack B A Abort Attack B

  37. ATTACKS Predictable Selfish Mining ● Predict precisely how fast you will mine & blocks and then compare to the average rate ○ Even with 1-Local Predictability there is reduced risk Predict Predict Predict A

  38. ATTACKS Pr Predictable Do Double Spending Buy stuff Receive stuff A B Include Announce Conflicting Fork Transaction

  39. ATTACKS Undetectable Not Nothing-at at-St Stake • For D-Recent protocols, blocks A and B at the two ends of a length D fork are “independent” A coin could “win” in A and “lose” in B o • Attempting to mine on both sides of the fork doubles your chances of successfully mining D A C B

  40. TAKE AWAY There are incentive-driven security issues for Proof-of-Stake • protocols not present in Proof-of-Work There is a tradeoff between predictability and recency • These attacks might not be devastating, but they are • unavoidable for every protocol in our model Vitalik’s response: https://ethresear.ch/t/formal-barriers- • to-longest-chain-proof-of-stake-protocols/3509/2

  41. CRYPTOCURRENCIES • Selfish mining • Incentive issues with mining pools • Incentive issues with transaction fee rewards • Incentive issues with Proof of Stake

Recommend

Struggling with day? Dr Tim Crowe #5 #5adaywebinar Supported by 1 On the menu today

Struggling with day? Dr Tim Crowe #5 #5adaywebinar Supported by 1 On the menu today

6/13/17 Struggling with day? Dr Tim Crowe #5 #5adaywebinar Supported by 1 On the menu today Vegetables: how much were eating The health benefits oh so boring How to make the message more attractive (with science!) 2 You

442 views • 13 slides
ocean acidification On the menu today o Why shall we care about Ocean Acidification? o What

ocean acidification On the menu today o Why shall we care about Ocean Acidification? o What

Sam Dupont Senior Lecturer, Associate Professor Assistant Professor University of Hong Kong University of Gothenburg A taste of ocean acidification On the menu today o Why shall we care about Ocean Acidification? o What can we

1.02k views • 76 slides
Case Study - Jungles Riccard Linde Art Director Digital Illusions Canada Inc Today's Menu

Case Study - Jungles Riccard Linde Art Director Digital Illusions Canada Inc Today's Menu

Case Study - Jungles Riccard Linde Art Director Digital Illusions Canada Inc Today's Menu Me - Introduction Art Direction Battlefield Vietnam. Jungle millions of trees. Grass under vegetation. Bringing it all

683 views • 21 slides
Online Accounting Services LOG-IN PAGE Menu ALCHAVO.com MAIN PAGE Menu ALCHAVO.com MAIN PAGE

Online Accounting Services LOG-IN PAGE Menu ALCHAVO.com MAIN PAGE Menu ALCHAVO.com MAIN PAGE

Online Accounting Services LOG-IN PAGE Menu ALCHAVO.com MAIN PAGE Menu ALCHAVO.com MAIN PAGE Menu ALCHAVO.com MAIN PAGE Menu ALCHAVO.com MOBILE Menu Menu BANK SUMMARY Menu BANK OUTSTANDING ITEMS Menu BANK UNDEFINED

863 views • 57 slides
1 2 3 4 5 For certain users, when selecting items in the Enterprise Menu, the Menu will be

1 2 3 4 5 For certain users, when selecting items in the Enterprise Menu, the Menu will be

1 2 3 4 5 For certain users, when selecting items in the Enterprise Menu, the Menu will be shrunk horizontally and text will only be viewable by using the scroll bar at the bottom of the page. 6 In the previous release users security

527 views • 31 slides
Mobile Menu &amp; Ordering The easiest way to share your menu with anyone and collect orders

Mobile Menu &amp; Ordering The easiest way to share your menu with anyone and collect orders

Mobile Menu &amp; Ordering The easiest way to share your menu with anyone and collect orders from anywhere The Mobile Menu allows you to share your restaurant menu with all mobile devices through a link or by scanning a QR code. The more

420 views • 10 slides
eID federations APAN 29, February 10th 2010, Sydney David Simonsen Today's menu eID

eID federations APAN 29, February 10th 2010, Sydney David Simonsen Today's menu eID

eID federations APAN 29, February 10th 2010, Sydney David Simonsen Today's menu eID federations introduction &amp; overview About WAYF, the Danish eID federation (funding organisation, staff etc.) Federation

2.39k views • 180 slides
On the menu today jFLAP demo Regular expressions Pumping lemma Turing Machines

On the menu today jFLAP demo Regular expressions Pumping lemma Turing Machines

On the menu today jFLAP demo Regular expressions Pumping lemma Turing Machines Sections 12.4 and 12.5 in the text R. Rao, CSE 311 1 jFLAP Demo jFLAP: Useful tool for creating and testing abstract machines Finite

242 views • 12 slides
Menu provides an avenue for ODE to Documentation introduce the recently released USDA and

Menu provides an avenue for ODE to Documentation introduce the recently released USDA and

This afternoon we are discussing menu Slide 1 documentation and recipes. This topic was chosen as a follow - up to this mornings session on Food Purchasing for Child Care Centers. The topic also Menu provides an avenue for ODE to

782 views • 31 slides
REWARDS BACKBAR REWARDS MENU MARKETING REWARDS MENU Parameters Credit cannot be

REWARDS BACKBAR REWARDS MENU MARKETING REWARDS MENU Parameters Credit cannot be

REWARDS BACKBAR REWARDS MENU MARKETING REWARDS MENU Parameters Credit cannot be accumulated for more than 3 months at a time unless banked towards education. Backbar credits can be redeemed for Hair products only. Only the purchase

988 views • 51 slides
Menu Labeling Supplemental Draft Guidance for Industry November 7, 2017 Supplemental Menu

Menu Labeling Supplemental Draft Guidance for Industry November 7, 2017 Supplemental Menu

Menu Labeling Supplemental Draft Guidance for Industry November 7, 2017 Supplemental Menu Labeling Guidance Addresses concerns raised by stakeholders regarding the implementation of the menu labeling requirements in covered

440 views • 23 slides
CS378 - Mobile Computing More UI - Part 2 Special Menus Two special application menus

CS378 - Mobile Computing More UI - Part 2 Special Menus Two special application menus

CS378 - Mobile Computing More UI - Part 2 Special Menus Two special application menus options menu context menu Options menu replaced by action bar (API 11) menu action bar 2 OptionsMenu User presses Menu Button

516 views • 35 slides
Banquet 2/25/2016 MCVTS CMET 1 Review Friday Describe process for creating menu

Banquet 2/25/2016 MCVTS CMET 1 Review Friday Describe process for creating menu

Banquet 2/25/2016 MCVTS CMET 1 Review Friday Describe process for creating menu Describe Menu How you selected the menu Uniting theme of all foods o Appetizer o Main Course Protein Veggie and Carnivore Vegetable

369 views • 3 slides
Dynamic Spectrum Access ROBERT HORVITZ bob@openspectrum.info Menu Menu TVWS in Europe (or

Dynamic Spectrum Access ROBERT HORVITZ bob@openspectrum.info Menu Menu TVWS in Europe (or

ICTP School on Applications of Open Spectrum &amp; White Spaces Technologies 12 March 2014 Trieste, Italy Dynamic Spectrum Access ROBERT HORVITZ bob@openspectrum.info Menu Menu TVWS in Europe (or not) Dynamic Spectrum Access

436 views • 22 slides
Requirements of the Final Rule for Restaurant Menu Labeling Loretta Carey Food Labeling and

Requirements of the Final Rule for Restaurant Menu Labeling Loretta Carey Food Labeling and

Requirements of the Final Rule for Restaurant Menu Labeling Loretta Carey Food Labeling and Standards Staff Office of Nutrition and Food Labeling CFSAN, FDA 1 Displaying Calories on Menus and Menu Boards Calories for each standard menu

570 views • 23 slides
The Menu Check Service Jewel Maule Healthy Kids Association Samantha Heffernan NSW

The Menu Check Service Jewel Maule Healthy Kids Association Samantha Heffernan NSW

The Menu Check Service Jewel Maule Healthy Kids Association Samantha Heffernan NSW Ministry of Health Todays Session Getting to know the Menu Check Service 1. Completing the menu check application form 2. Submitting to the Service

535 views • 32 slides
Menu Concerns about the quality of the predictive distributions Augmentation: a bit more

Menu Concerns about the quality of the predictive distributions Augmentation: a bit more

S OME C ONCERNS A BOUT S PARSE A PPROXIMATIONS FOR G AUSSIAN P ROCESS R EGRESSION Joaquin Qui nonero Candela Max Planck Institute for Biological Cybernetics Gaussian Process Round Table Sheffield, June 9 and 10, 2005 Menu Concerns about

988 views • 32 slides
E - L E A R N I N G G A M E EVERY GAME WILL START WITH SIMPLE MENU YOU CAN

E - L E A R N I N G G A M E EVERY GAME WILL START WITH SIMPLE MENU YOU CAN

2 D P I X E L E - L E A R N I N G G A M E EVERY GAME WILL START WITH SIMPLE MENU YOU CAN EITHER CHOOSE : PLAY : SETTINGS : QUIT HERE WE CAN ADJUST OUR RESOLUTION OR MAKE IT FULL SCREEN THE BOTTOM

118 views • 10 slides
Monetary Non-Neutrality in a Multi-Sector Menu Cost Model Emi Nakamura and J on Steinsson

Monetary Non-Neutrality in a Multi-Sector Menu Cost Model Emi Nakamura and J on Steinsson

Monetary Non-Neutrality in a Multi-Sector Menu Cost Model Emi Nakamura and J on Steinsson Harvard University November 12, 2006 Abstract We calibrate a multi-sector menu cost model using new evidence on the cross-sectional distri- bution

743 views • 53 slides
WHATS ON THE MENU CONSULTANT RADIOLOGIST- SURAKSHA DIAGNOSTIC CENTRE , SAINI ENCLAVE DR MONOJIT

WHATS ON THE MENU CONSULTANT RADIOLOGIST- SURAKSHA DIAGNOSTIC CENTRE , SAINI ENCLAVE DR MONOJIT

UGG, CT AND MRI- WHATS ON THE MENU CONSULTANT RADIOLOGIST- SURAKSHA DIAGNOSTIC CENTRE , SAINI ENCLAVE DR MONOJIT MONDAL MBBS ,MD ,DNB THREE COURSE MENU COMPLIMENTARY NOT SUBSTITUTION USG/CT/MRI WHICH IS BETTER? ?? ITS ALL ABOUT THE CLINICAL

805 views • 41 slides
Today What is happening in the produce world right now? Cost per serving assessment

Today What is happening in the produce world right now? Cost per serving assessment

12/4/2018 Focus on Cost Per Serving 1 Today What is happening in the produce world right now? Cost per serving assessment Calendar for the year and menu planning 2 1 12/4/2018 Food Safety Second major outbreak of E.coli in 9

407 views • 11 slides
BYTES L E A R N | A D A P T | I N N O V A T E BRIDGE DAREBIN Blended Learning Delivery Main

BYTES L E A R N | A D A P T | I N N O V A T E BRIDGE DAREBIN Blended Learning Delivery Main

L E A R N L O C A L BYTES L E A R N | A D A P T | I N N O V A T E BRIDGE DAREBIN Blended Learning Delivery Main Menu Main Menu Today we will be previewing how Bridge Darebin is embracing Blended Learning Delivery through innovative

360 views • 11 slides
It Pays to Set the Menu: Mutual Fund Investment Options in 401(k) Plans Veronika Pool Indiana

It Pays to Set the Menu: Mutual Fund Investment Options in 401(k) Plans Veronika Pool Indiana

Introduction Data Menu Changes Fund Flows Performance Conclusions It Pays to Set the Menu: Mutual Fund Investment Options in 401(k) Plans Veronika Pool Indiana University Clemens Sialm University of Texas at Austin, Stanford University,

843 views • 68 slides
Fresh is Everything Produce and Seasonal Trends Today What is happening in the produce

Fresh is Everything Produce and Seasonal Trends Today What is happening in the produce

Fresh is Everything Produce and Seasonal Trends Today What is happening in the produce world right now? Calendar for the year and menu planning Affordable seasonal produce; Fun and creative Ideas Questions The Produce World

580 views • 28 slides

More recommend