๐
Original date posted:2011-11-23
๐๏ธ Summary of this message: The probability of mining a block is 100% in the proposed system, and the probability of a block being the hardest requires actual hashing power. The network clock is in util.cpp:GetAdjustedTime(). Miners have an incentive to lie about the time, but nodes have an incentive to reject mistimed blocks. The proposed system also prevents an attack that is possible with current bitcoin: recalculating the entire chain.
๐ Original message:On 2011 November 23 Wednesday, Jorge Timรณn wrote:
> With the current system, the timestamp can also be cheated, but miners
> have no direct incentive to do it. With your system, they increase
> their probability of mining a block by putting a false timestamp.
> Also, where's the network clock you're talking about? Isn't it the
> timestamps in the blockchain?
(1) The "probability of mining a block" is old-think. The probability of
mining a block is 100% in my system. Instead, it becomes "the probability of
your block being the hardest" and that requires actual hashing power
regardless of the timestamp you write on the block. I could write that my
block was generated next year; but I can't fake the hashing power it needs to
generate one year's worth of hashes.
If chain difficulty were summed correctly (sum(log(difficulty)), I guess),
then time makes not the slightest difference anyway. You can issue blocks at
any time with any difficulty, and the "hardest" chain always wins. The block
period can be anything, and it is only the block reward that makes it
necessary to pick a particular period for block issuing (even that could be
worked around I guess with a variable reward, but why bother?).
(2) For the network clock; see util.cpp:GetAdjustedTime().
(3) Current clients do have an incentive: more time. The more time they get,
the more hashes they can try. The current client already checks the
timestamp:
main.cpp:CBlock::CheckBlock()
// Check timestamp
if (GetBlockTime() > GetAdjustedTime() + 2 * 60 * 60)
return error("CheckBlock() : block timestamp too far in the future");
My suggestion only requires that the two hour window be reduced; and a lower
limit to be added. Also: while the miners have an incentive to lie about the
time, the nodes they broadcast to have an incentive to reject mistimed blocks,
so you won't gain much by lying to your peers since your block won't be
accepted -- the incentive is therefore removed.
Note: my system also prevents an attack that is possible with current bitcoin:
recalculating the entire chain. Let's say Visa want to take over bitcoin.
They buy enough computing power to significantly beat the current bitcoin
network; then they start recalculating the entire block chain; since early
blocks were low difficulty, it's not that hard to do. Once they overtake the
real chain, they have effectively undone all previous transactions. (I'm not
suggesting this is likely; and it's actually mitigated by the hard-coded block
hashes). The point is that blocks are only generatable for the time when the
rest of the network is willing to add them to the chain.
Andy
--
Dr Andy Parkins
andyparkins at gmail.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20111123/c91e1106/attachment.sig>;
Andy Parkins [ARCHIVE] /
npub1nxโฆ7wjrv
2023-06-07 02:41:36
in reply to nevent1qโฆx4cm
Author Public Key
npub1nxlvf9mj3jzgue25n5d9y47s3h5hvg0ded9hwpejdxj9mtrs34vs97wjrvSeen on
wss://relay.nostr.bandPublished at
2023-06-07 02:41:36Event JSON
{
"id": "9f063dface52f2074bddbde265701f9fd5ebe0a879691d94260dda74a22203d0",
"pubkey": "99bec497728c848e65549d1a5257d08de97621edcb4b77073269a45dac708d59",
"created_at": 1686105696,
"kind": 1,
"tags": [
[
"e",
"2046d4dc725b4ce8920d2c47249dd7dad0c6e38daddd7a5e99f03e9b24dd8e66",
"",
"root"
],
[
"e",
"ad4b554f869da420c368282b25270fc94ea5379ca619a186e8712f8d8795ecc6",
"",
"reply"
],
[
"p",
"99bec497728c848e65549d1a5257d08de97621edcb4b77073269a45dac708d59"
]
],
"content": "๐
Original date posted:2011-11-23\n๐๏ธ Summary of this message: The probability of mining a block is 100% in the proposed system, and the probability of a block being the hardest requires actual hashing power. The network clock is in util.cpp:GetAdjustedTime(). Miners have an incentive to lie about the time, but nodes have an incentive to reject mistimed blocks. The proposed system also prevents an attack that is possible with current bitcoin: recalculating the entire chain.\n๐ Original message:On 2011 November 23 Wednesday, Jorge Timรณn wrote:\n\u003e With the current system, the timestamp can also be cheated, but miners\n\u003e have no direct incentive to do it. With your system, they increase\n\u003e their probability of mining a block by putting a false timestamp.\n\u003e Also, where's the network clock you're talking about? Isn't it the\n\u003e timestamps in the blockchain?\n\n(1) The \"probability of mining a block\" is old-think. The probability of \nmining a block is 100% in my system. Instead, it becomes \"the probability of \nyour block being the hardest\" and that requires actual hashing power \nregardless of the timestamp you write on the block. I could write that my \nblock was generated next year; but I can't fake the hashing power it needs to \ngenerate one year's worth of hashes.\n\nIf chain difficulty were summed correctly (sum(log(difficulty)), I guess), \nthen time makes not the slightest difference anyway. You can issue blocks at \nany time with any difficulty, and the \"hardest\" chain always wins. The block \nperiod can be anything, and it is only the block reward that makes it \nnecessary to pick a particular period for block issuing (even that could be \nworked around I guess with a variable reward, but why bother?).\n\n(2) For the network clock; see util.cpp:GetAdjustedTime().\n\n(3) Current clients do have an incentive: more time. The more time they get, \nthe more hashes they can try. The current client already checks the \ntimestamp:\n\n main.cpp:CBlock::CheckBlock()\n\n // Check timestamp\n if (GetBlockTime() \u003e GetAdjustedTime() + 2 * 60 * 60)\n return error(\"CheckBlock() : block timestamp too far in the future\");\n\nMy suggestion only requires that the two hour window be reduced; and a lower \nlimit to be added. Also: while the miners have an incentive to lie about the \ntime, the nodes they broadcast to have an incentive to reject mistimed blocks, \nso you won't gain much by lying to your peers since your block won't be \naccepted -- the incentive is therefore removed.\n\nNote: my system also prevents an attack that is possible with current bitcoin: \nrecalculating the entire chain. Let's say Visa want to take over bitcoin. \nThey buy enough computing power to significantly beat the current bitcoin \nnetwork; then they start recalculating the entire block chain; since early \nblocks were low difficulty, it's not that hard to do. Once they overtake the \nreal chain, they have effectively undone all previous transactions. (I'm not \nsuggesting this is likely; and it's actually mitigated by the hard-coded block \nhashes). The point is that blocks are only generatable for the time when the \nrest of the network is willing to add them to the chain.\n\n\n\nAndy\n\n-- \nDr Andy Parkins\nandyparkins at gmail.com\n-------------- next part --------------\nA non-text attachment was scrubbed...\nName: signature.asc\nType: application/pgp-signature\nSize: 198 bytes\nDesc: This is a digitally signed message part.\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20111123/c91e1106/attachment.sig\u003e",
"sig": "b04df37d9967d741eaa24658980d2209cc26514b8c5f2da262261a1ab4fd3678a25063af61502c69917afb5694544c025700fb1943b426d013223a59cbd0a2c6"
}