📅 Original date posted:2015-10-12
📝 Original message:On Mon, Oct 12, 2015 at 12:02:51AM -0700, digitsu412 via bitcoin-dev wrote:
> First I think your unsaid assumption about the fragility of a soft
> fork showing incorrect confirmations is dependent on the percentage
> of hash power that didn't upgrade. If using your same numbers this
> was only 5% of the hash power, the attack is effectively not effective
> (u less the attacker knew an exact merchant that was unfortunately on
> the minority of the network.
Actually, just to take this scenario more explicitly...
Say you've got 5% of hashpower running on old software, along with,
say, 1500 nodes; and meanwhile you've got 95% of hashpower running new
software, along with 4000 nodes.
There's still about 750 nodes running 0.9 or 0.8 of 5400 total according
to bitnodes.21.co/nodes, so those numbers seems at least plausible to
me for the first week or two after a soft-fork is activated.
Eventually an old-rules block gets found by the 5% hashpower. The 4000
new nodes and 95% of hashpower ignore it, of course. With 8 random
connections, old nodes should have 92% chance of seeing an old node
as a peer, so I think around ~1300 of them should still be a connected
subgraph, and the old-rules block should get propogated amongst them
(until two new-rules blocks come along and orphan it).
An SPV client with 12 random connections here has 96% chance of having one
of the ~1300 old nodes as a peer, and if so, will see the old-rules block,
that will be orphaned, and may be at risk from double-spends as a result.
So I think even with just 5% hashpower and ~30% of nodes left running
the old version, a "damaging soft fork" still poses a fairly high risk to
someone receiving payments via an SPV client, and trusting transactions
with few confirmations.
Cheers,
aj
Anthony Towns [ARCHIVE] /
npub17r…x9l2h
2023-06-07 17:42:06
in reply to nevent1q…50e4
Author Public Key
npub17rld56k4365lfphyd8u8kwuejey5xcazdxptserx03wc4jc9g24stx9l2hPublished at
2023-06-07 17:42:06Event JSON
{
"id": "5104c7a4dbf108ecbbe5500abec7d758e7d1b701d790ed78d935a94d3483037d",
"pubkey": "f0feda6ad58ea9f486e469f87b3b9996494363a26982b864667c5d8acb0542ab",
"created_at": 1686159726,
"kind": 1,
"tags": [
[
"e",
"7ff2050ebdfe33f92ad46edcffb5d61f26a94f61437237faeeaedfedde460e1c",
"",
"root"
],
[
"e",
"84aa8cc0d0eefeabad710044f5b220c961dd5965d6377c89f37679f968ec21c3",
"",
"reply"
],
[
"p",
"f0feda6ad58ea9f486e469f87b3b9996494363a26982b864667c5d8acb0542ab"
]
],
"content": "📅 Original date posted:2015-10-12\n📝 Original message:On Mon, Oct 12, 2015 at 12:02:51AM -0700, digitsu412 via bitcoin-dev wrote:\n\u003e First I think your unsaid assumption about the fragility of a soft\n\u003e fork showing incorrect confirmations is dependent on the percentage\n\u003e of hash power that didn't upgrade. If using your same numbers this\n\u003e was only 5% of the hash power, the attack is effectively not effective\n\u003e (u less the attacker knew an exact merchant that was unfortunately on\n\u003e the minority of the network. \n\nActually, just to take this scenario more explicitly...\n\nSay you've got 5% of hashpower running on old software, along with,\nsay, 1500 nodes; and meanwhile you've got 95% of hashpower running new\nsoftware, along with 4000 nodes.\n\nThere's still about 750 nodes running 0.9 or 0.8 of 5400 total according\nto bitnodes.21.co/nodes, so those numbers seems at least plausible to\nme for the first week or two after a soft-fork is activated.\n\nEventually an old-rules block gets found by the 5% hashpower. The 4000\nnew nodes and 95% of hashpower ignore it, of course. With 8 random\nconnections, old nodes should have 92% chance of seeing an old node\nas a peer, so I think around ~1300 of them should still be a connected\nsubgraph, and the old-rules block should get propogated amongst them\n(until two new-rules blocks come along and orphan it).\n\nAn SPV client with 12 random connections here has 96% chance of having one\nof the ~1300 old nodes as a peer, and if so, will see the old-rules block,\nthat will be orphaned, and may be at risk from double-spends as a result.\n\nSo I think even with just 5% hashpower and ~30% of nodes left running\nthe old version, a \"damaging soft fork\" still poses a fairly high risk to\nsomeone receiving payments via an SPV client, and trusting transactions\nwith few confirmations.\n\nCheers,\naj",
"sig": "d3e314980f24ee8e631875cdb91799f2d133d5a38dae9fa7cba7dfeafca5926d09113d46fb6f9325be4ea497f7bd2176adbb86e2242bc4eacc3a6634f5372488"
}