š
Original date posted:2019-02-11
š Original message:Good morning Kenshiro,
> - Soft fork: old nodes see CT transactions as "sendtoany" transactions
There is a position that fullnodes must be able to get a view of the UTXO set, and extension blocks (which are invisible to pre-extension-block fullnodes) means that fullnodes no longer have an accurate view of the UTXO set.
SegWit still provides pre-SegWit fullnodes with a view of the UTXO set, although pre-SegWit fullnodes could be convinced that a particular UTXO is anyone-can-spend even though they are no longer anyone-can-spend.
Under this point-of-view, then, extension block is "not" soft fork.
It is "evil" soft fork since older nodes are forced to upgrade as their intended functionality becomes impossible.
In this point-of-view, it is no better than a hard fork, which at least is very noisy about how older fullnode versions will simply stop working.
> - Safe: if there is a software bug in CT it's impossible to create new coins because the coins move from normal block to normal block as public transactions
I think more relevant here is the issue of a future quantum computing breach of the algorithms used to implement confidentiality.
I believe this is also achievable with a non-extension-block approach by implementing a globally-verified publicly-visible counter of the total amount in all confidential transaction outputs.
Then it becomes impossible to move from confidential to public transactions with a value more than this counter, thus preventing inflation even if a future QC breach allows confidential transaction value commitments to be opened to any value.
(do note that a non-extension-block approach is a definite hardfork)
> - Capacity increase: the CT signature is stored in the extension block, so CT transactions increase the maximum number of transactions per block
This is not an unalloyed positive: block size increase, even via extension block, translates to greater network capacity usage globally on all fullnodes.
Regards,
ZmnSCPxj
ZmnSCPxj [ARCHIVE] /
npub1g5ā¦3ms3l
2023-06-07 18:16:26
in reply to nevent1qā¦m4qs
Author Public Key
npub1g5zswf6y48f7fy90jf3tlcuwdmjn8znhzaa4vkmtxaeskca8hpss23ms3lPublished at
2023-06-07 18:16:26Event JSON
{
"id": "57828363324360cca5cb9835d958d5e9571189493704162e4ee2abfd43afdc4e",
"pubkey": "4505072744a9d3e490af9262bfe38e6ee5338a77177b565b6b37730b63a7b861",
"created_at": 1686161786,
"kind": 1,
"tags": [
[
"e",
"e71b825e002457e7dc7acc2ce9a448ef03c1ba0d1ec00abfd66ed245a485bb0e",
"",
"root"
],
[
"e",
"0764866a52003f43331b964c1426bc5b483948d4e8441a6569fe3b555eee263a",
"",
"reply"
],
[
"p",
"0ce7e2b1ad324d13a3ee8a7b1c43f79ba8cda65d01dfbc5e5d30daeca7c3a598"
]
],
"content": "š
Original date posted:2019-02-11\nš Original message:Good morning Kenshiro,\n\n\u003e - Soft fork: old nodes see CT transactions as \"sendtoany\" transactions\n\nThere is a position that fullnodes must be able to get a view of the UTXO set, and extension blocks (which are invisible to pre-extension-block fullnodes) means that fullnodes no longer have an accurate view of the UTXO set.\nSegWit still provides pre-SegWit fullnodes with a view of the UTXO set, although pre-SegWit fullnodes could be convinced that a particular UTXO is anyone-can-spend even though they are no longer anyone-can-spend.\n\nUnder this point-of-view, then, extension block is \"not\" soft fork.\nIt is \"evil\" soft fork since older nodes are forced to upgrade as their intended functionality becomes impossible.\nIn this point-of-view, it is no better than a hard fork, which at least is very noisy about how older fullnode versions will simply stop working.\n\n\u003e - Safe: if there is a software bug in CT it's impossible to create new coins because the coins move from normal block to normal block as public transactions\n\nI think more relevant here is the issue of a future quantum computing breach of the algorithms used to implement confidentiality.\n\nI believe this is also achievable with a non-extension-block approach by implementing a globally-verified publicly-visible counter of the total amount in all confidential transaction outputs.\nThen it becomes impossible to move from confidential to public transactions with a value more than this counter, thus preventing inflation even if a future QC breach allows confidential transaction value commitments to be opened to any value.\n\n(do note that a non-extension-block approach is a definite hardfork)\n\n\u003e - Capacity increase: the CT signature is stored in the extension block, so CT transactions increase the maximum number of transactions per block\n\nThis is not an unalloyed positive: block size increase, even via extension block, translates to greater network capacity usage globally on all fullnodes.\n\nRegards,\nZmnSCPxj",
"sig": "4683184601dd5eff23a5d6866a67022a56294fddafed3aefa9d89c9ff2488d113804a65fe4e079a3333aea7a0f221060c6a13494de4f587281df498a0f73e9b5"
}