📅 Original date posted:2016-07-18
📝 Original message:
Thanks for your feedback, but I think there is a lot more to this.
On 18/07/16 02:25, Rusty Russell wrote:
> Ron OHara <ron.ohara54 at gmail.com> writes:
>> Hi .... forgive me if I have missed something obvious.
>>
>> In the LN whitepaper (like many others) the discussion revolves around
>> Alice and Bob interacting ... fine.
>>
>> IF Alice and Bob interact many times during an interval, there is clear
>> chance to optimize that to a single 'settlement' on the block chain.
>
> Yes, that's a simple payment channel, which have existed for some time.
> They're very limited.
Ack on that - very limited. I can not see any 'end user' use case (P2P)
where there is a good probability of optimization here.
For B2B, there ARE many repeated interactions that could be optimized,
so that use case might support switching to LN rather than using BTC
directly, but not where one of the parties is a normal consumer.
>
> Lightning adds the ability to trustlessly chain channels, so Alice can
> pay Carol via Bob.
>
>> If the interval is a month ... then since I am fairly predictable... ,
>> I purchase from the same shops many times in that month... that could be
>> optimized. BUT will the merchants be happy with (up to) a months worth
>> of revenue still pending inside LN? I dont think so. Visa via the
>> banks, allows merchants access to the pending funds, with the proviso
>> that they may be reversed in the future. Cashflow is vital to merchants.
> Channels are just bitcoins held by a 2 of 2 signature, with a way of
> cashing out (with some delay!) if the other side vanishes.
>
> A recipient doesn't have to actually hold that many bitcoins though,
> since they mainly receive payments.
>
> (Now, there's another question about whether stores will actually do
> this themselves, or outsource to Coinbase etc, just like bitcoin...)
As I understand it, the recipient is still 'pending' settlement to the
blockchain for any funds they receive. That means inwards cashflow (cash
receivable) is unavailable for period of time. This would a big negative
for actual businesses. They could obviate that by outsourcing as you
say, but that outsourcer effectively becomes a bank credit provider to
them if they are given access to the cashflow prior to settlement to the
blockchain.
Even with LN hubs, the sender side (client) does need to tie up funds.
If you want to get optimization, then LN needs to encompass lots of
transactions per client (and receiver) - otherwise it just resolves as
near one-to-one settlement to the blockchain.
What is unclear to me, is which use cases (involving end users), will
have the volume of Tx per user, to justify them reserving funds. Even
though as a user you are not relying on a 3rd party to hold your funds,
those funds are still reserved for your channel or channels, and
unavailable for other usage. That is like saying to my bank (sort of a
hub?) 'even though I have $100, prevent me withdrawing that, just in
case I want to use my Visa card for Tx this month' .... I just do not
believe that people would tolerate that. They have been conditioned by
the current system to expect to be given all sort of tolerance for bad
financial planning. Zero cost overdrafts, with nasty fees if you exceed
the agreed limit, rather than prudent cash planning.
>
>> OK - that is for the Alice and Bob case of interactions. Now for the
>> other little problem I see here - which makes things even worse.
>>
>> With Bitcoin it is NOT 'Alice transacting with Bob'.
>> It is Address(1) transacting with Address(2) .... and if both parties
>> are following the recommended practice of not re-using addresses, then
>> their next interaction is Address(3) transacting with Address(4) -
>> removing any possibility of optimization.
>>
>> As far as I can tell, long running channels, are by definition identical
>> to address re-use for the period they are open. That makes them very
>> vulnerable to traffic analysis and thus have lower security that native
>> Bitcoin transactions. That is probably acceptable for many use cases,
>> but it is a tradeoff to gain performance.
> Kind of. It's better, and worse. If Alice only has one channel, and
> it's to Bob, Bob can see all the amounts Alice spends. It's fairly easy
> to make sure Bob can't see the final destination (just the next hop),
> but he gets an idea of the amounts. Nobody else can see it unless Bob
> shows them though, so it's not quite the same as on-chain.
Traffic analysis is a lot more powerful than you seem to realize. Even
in a huge maze of convoluted transactions with many parties involved,
traffic analysis of a system that does not deliberately/randomly delay
interactions easily detects correlations - even when the content is
encrypted. That is precisely how Bletchley Park worked during WWII for
at least half of the information it gleaned. Breaking Enigma was not the
only tactic those guys used.
Like I said, this appears to be an inherent vulnerability. That is not
an issue, as long as it is a known and accepted tradeoff, but that
aspect will reduce the number of use cases where LN is seen as a good fit.
>
> Having three channels is a good idea; it makes the whole system more
> robust, it spreads the information around, *and* because Bob can never
> know then if Alice is actually routing a payment for someone else.
>
> Hope that helps!
> Rusty.
I appreciate the feedback, and want to give you some support in
believing the technical aspects of this can be solved. Why do I believe
that? Because, back in the 1980's I architected and wrote a lot of a
system (TEXAS) that tackled a surprisingly similar scenario, for
Telstra. It end up being the 4th largest transaction processing system
they had in operation, so I know the technical issues can be dealt with.
I am more concerned about the bootstrap problem LN faces for whatever
use cases are a good fit.
As I see it, LN with hubs (with routing) really only starts to gain
major traffic optimization wins, when it has a lot of channels and
participants..
But how do you get there? A chicken and egg business problem.
Ron
--
Talent hits a target no one else can hit, genius hits a target no one
else can see
Ron OHara [ARCHIVE] /
npub1pd…74328
2023-06-09 12:46:21
in reply to nevent1q…mdxp
Author Public Key
npub1pd7klfv8eaafeyhzp3chwgwxkql6pt9gzh53ptgyp9c2lntpaccsg74328Published at
2023-06-09 12:46:21Event JSON
{
"id": "06efe9a090845affc7671e4690347ab81441560aa3b4eab723135ac1f6bf895b",
"pubkey": "0b7d6fa587cf7a9c92e20c717721c6b03fa0aca815e910ad040970afcd61ee31",
"created_at": 1686314781,
"kind": 1,
"tags": [
[
"e",
"c835f8488d8b0c013fff8874676c96a11f2e0a81c20d7cbd43662b7a5f1a1400",
"",
"root"
],
[
"e",
"a6cfcaa1909ef5c37fd9798818f9751ec90d82f51a6ba737c1b75098a6fbc2b5",
"",
"reply"
],
[
"p",
"13bd8c1c5e3b3508a07c92598647160b11ab0deef4c452098e223e443c1ca425"
]
],
"content": "📅 Original date posted:2016-07-18\n📝 Original message:\nThanks for your feedback, but I think there is a lot more to this. \n\nOn 18/07/16 02:25, Rusty Russell wrote:\n\u003e Ron OHara \u003cron.ohara54 at gmail.com\u003e writes:\n\u003e\u003e Hi .... forgive me if I have missed something obvious.\n\u003e\u003e\n\u003e\u003e In the LN whitepaper (like many others) the discussion revolves around\n\u003e\u003e Alice and Bob interacting ... fine.\n\u003e\u003e\n\u003e\u003e IF Alice and Bob interact many times during an interval, there is clear\n\u003e\u003e chance to optimize that to a single 'settlement' on the block chain.\n\u003e\n\u003e Yes, that's a simple payment channel, which have existed for some time.\n\u003e They're very limited.\n\nAck on that - very limited. I can not see any 'end user' use case (P2P)\nwhere there is a good probability of optimization here.\n\nFor B2B, there ARE many repeated interactions that could be optimized,\nso that use case might support switching to LN rather than using BTC\ndirectly, but not where one of the parties is a normal consumer.\n\n\u003e\n\u003e Lightning adds the ability to trustlessly chain channels, so Alice can\n\u003e pay Carol via Bob.\n\u003e\n\u003e\u003e If the interval is a month ... then since I am fairly predictable... ,\n\u003e\u003e I purchase from the same shops many times in that month... that could be\n\u003e\u003e optimized. BUT will the merchants be happy with (up to) a months worth\n\u003e\u003e of revenue still pending inside LN? I dont think so. Visa via the\n\u003e\u003e banks, allows merchants access to the pending funds, with the proviso\n\u003e\u003e that they may be reversed in the future. Cashflow is vital to merchants.\n\u003e Channels are just bitcoins held by a 2 of 2 signature, with a way of\n\u003e cashing out (with some delay!) if the other side vanishes.\n\u003e\n\u003e A recipient doesn't have to actually hold that many bitcoins though,\n\u003e since they mainly receive payments.\n\u003e\n\u003e (Now, there's another question about whether stores will actually do\n\u003e this themselves, or outsource to Coinbase etc, just like bitcoin...)\n\nAs I understand it, the recipient is still 'pending' settlement to the\nblockchain for any funds they receive. That means inwards cashflow (cash\nreceivable) is unavailable for period of time. This would a big negative\nfor actual businesses. They could obviate that by outsourcing as you\nsay, but that outsourcer effectively becomes a bank credit provider to\nthem if they are given access to the cashflow prior to settlement to the\nblockchain.\n\nEven with LN hubs, the sender side (client) does need to tie up funds.\nIf you want to get optimization, then LN needs to encompass lots of\ntransactions per client (and receiver) - otherwise it just resolves as\nnear one-to-one settlement to the blockchain.\n\nWhat is unclear to me, is which use cases (involving end users), will\nhave the volume of Tx per user, to justify them reserving funds. Even\nthough as a user you are not relying on a 3rd party to hold your funds,\nthose funds are still reserved for your channel or channels, and\nunavailable for other usage. That is like saying to my bank (sort of a\nhub?) 'even though I have $100, prevent me withdrawing that, just in\ncase I want to use my Visa card for Tx this month' .... I just do not\nbelieve that people would tolerate that. They have been conditioned by\nthe current system to expect to be given all sort of tolerance for bad\nfinancial planning. Zero cost overdrafts, with nasty fees if you exceed\nthe agreed limit, rather than prudent cash planning.\n\n\u003e\n\u003e\u003e OK - that is for the Alice and Bob case of interactions. Now for the\n\u003e\u003e other little problem I see here - which makes things even worse.\n\u003e\u003e\n\u003e\u003e With Bitcoin it is NOT 'Alice transacting with Bob'.\n\u003e\u003e It is Address(1) transacting with Address(2) .... and if both parties\n\u003e\u003e are following the recommended practice of not re-using addresses, then\n\u003e\u003e their next interaction is Address(3) transacting with Address(4) -\n\u003e\u003e removing any possibility of optimization.\n\u003e\u003e\n\u003e\u003e As far as I can tell, long running channels, are by definition identical\n\u003e\u003e to address re-use for the period they are open. That makes them very\n\u003e\u003e vulnerable to traffic analysis and thus have lower security that native\n\u003e\u003e Bitcoin transactions. That is probably acceptable for many use cases,\n\u003e\u003e but it is a tradeoff to gain performance.\n\u003e Kind of. It's better, and worse. If Alice only has one channel, and\n\u003e it's to Bob, Bob can see all the amounts Alice spends. It's fairly easy\n\u003e to make sure Bob can't see the final destination (just the next hop),\n\u003e but he gets an idea of the amounts. Nobody else can see it unless Bob\n\u003e shows them though, so it's not quite the same as on-chain.\nTraffic analysis is a lot more powerful than you seem to realize. Even\nin a huge maze of convoluted transactions with many parties involved,\ntraffic analysis of a system that does not deliberately/randomly delay\ninteractions easily detects correlations - even when the content is\nencrypted. That is precisely how Bletchley Park worked during WWII for\nat least half of the information it gleaned. Breaking Enigma was not the\nonly tactic those guys used.\n\nLike I said, this appears to be an inherent vulnerability. That is not\nan issue, as long as it is a known and accepted tradeoff, but that\naspect will reduce the number of use cases where LN is seen as a good fit.\n\n\u003e\n\u003e Having three channels is a good idea; it makes the whole system more\n\u003e robust, it spreads the information around, *and* because Bob can never\n\u003e know then if Alice is actually routing a payment for someone else.\n\u003e\n\u003e Hope that helps!\n\u003e Rusty.\n\nI appreciate the feedback, and want to give you some support in\nbelieving the technical aspects of this can be solved. Why do I believe\nthat? Because, back in the 1980's I architected and wrote a lot of a\nsystem (TEXAS) that tackled a surprisingly similar scenario, for\nTelstra. It end up being the 4th largest transaction processing system\nthey had in operation, so I know the technical issues can be dealt with.\n\nI am more concerned about the bootstrap problem LN faces for whatever\nuse cases are a good fit.\n\nAs I see it, LN with hubs (with routing) really only starts to gain\nmajor traffic optimization wins, when it has a lot of channels and\nparticipants..\n\nBut how do you get there? A chicken and egg business problem.\n\nRon\n\n\n-- \nTalent hits a target no one else can hit, genius hits a target no one\nelse can see",
"sig": "11a56db8fb94f7ba1e915d13cadd357dd847c859e5d7e1c1c2d442074ce977eb2f25f5d01d52a6ec0b23dc9767d871037204f378d05990b2a9b91ad1a8e65338"
}