📅 Original date posted:2015-12-20
📝 Original message:Block witholding attacks are only possible if you have a majority of
hashpower. If you only have 20% hashpower, you can't do this attack.
Currently, this attack is only a theoretical attack, as the ones with
all the hashpower today are not engaging in this behavior. Even if
someone who had a lot of hashpower decided to pull off this attack,
they wouldn't be able to disrupt much. Once that time comes, then I
think this problem should be solved, until then it should be a low
priority. There are more important things to work on in the meantime.
On 12/19/15, Peter Todd via bitcoin-dev
<bitcoin-dev at lists.linuxfoundation.org> wrote:
> At the recent Scaling Bitcoin conference in Hong Kong we had a chatham
> house rules workshop session attending by representitives of a super
> majority of the Bitcoin hashing power.
>
> One of the issues raised by the pools present was block withholding
> attacks, which they said are a real issue for them. In particular, pools
> are receiving legitimate threats by bad actors threatening to use block
> withholding attacks against them. Pools offering their services to the
> general public without anti-privacy Know-Your-Customer have little
> defense against such attacks, which in turn is a threat to the
> decentralization of hashing power: without pools only fairly large
> hashing power installations are profitable as variance is a very real
> business expense. P2Pool is often brought up as a replacement for pools,
> but it itself is still relatively vulnerable to block withholding, and
> in any case has many other vulnerabilities and technical issues that has
> prevented widespread adoption of P2Pool.
>
> Fixing block withholding is relatively simple, but (so far) requires a
> SPV-visible hardfork. (Luke-Jr's two-stage target mechanism) We should
> do this hard-fork in conjunction with any blocksize increase, which will
> have the desirable side effect of clearly show consent by the entire
> ecosystem, SPV clients included.
>
>
> Note that Ittay Eyal and Emin Gun Sirer have argued(1) that block
> witholding attacks are a good thing, as in their model they can be used
> by small pools against larger pools, disincentivising large pools.
> However this argument is academic and not applicable to the real world,
> as a much simpler defense against block withholding attacks is to use
> anti-privacy KYC and the legal system combined with the variety of
> withholding detection mechanisms only practical for large pools.
> Equally, large hashing power installations - a dangerous thing for
> decentralization - have no block withholding attack vulnerabilities.
>
> 1) http://hackingdistributed.com/2014/12/03/the-miners-dilemma/
>
> --
> 'peter'[:-1]@petertodd.org
> 00000000000000000188b6321da7feae60d74c7b0becbdab3b1a0bd57f10947d
>
Chris Priest [ARCHIVE] /
npub18d…xccej
2023-06-07 17:46:55
in reply to nevent1q…r2td
Author Public Key
npub18df3zgqr9zt5ah42zpd34rmq6fp7v57vvwmtk20krhrfdczp38ks5xccejPublished at
2023-06-07 17:46:55Event JSON
{
"id": "e2bdf434d2c313d2d55143abdb90d24fd094884dd2bbd091652392242d7979c6",
"pubkey": "3b5311200328974edeaa105b1a8f60d243e653cc63b6bb29f61dc696e04189ed",
"created_at": 1686160015,
"kind": 1,
"tags": [
[
"e",
"29b7621364af8f1f611558ed33ab90fd2b7daff5f620fc02b9ca3019fe1123e5",
"",
"root"
],
[
"e",
"cdced2d8acd436bfc2fcd878b7543cab892ee2a55c2ec2b54aa5d7a8e432771b",
"",
"reply"
],
[
"p",
"ab1c85bd5ad443631a95b228bd1630bf7acdb27f6de01a960ccfbb077831d7ec"
]
],
"content": "📅 Original date posted:2015-12-20\n📝 Original message:Block witholding attacks are only possible if you have a majority of\nhashpower. If you only have 20% hashpower, you can't do this attack.\nCurrently, this attack is only a theoretical attack, as the ones with\nall the hashpower today are not engaging in this behavior. Even if\nsomeone who had a lot of hashpower decided to pull off this attack,\nthey wouldn't be able to disrupt much. Once that time comes, then I\nthink this problem should be solved, until then it should be a low\npriority. There are more important things to work on in the meantime.\n\nOn 12/19/15, Peter Todd via bitcoin-dev\n\u003cbitcoin-dev at lists.linuxfoundation.org\u003e wrote:\n\u003e At the recent Scaling Bitcoin conference in Hong Kong we had a chatham\n\u003e house rules workshop session attending by representitives of a super\n\u003e majority of the Bitcoin hashing power.\n\u003e\n\u003e One of the issues raised by the pools present was block withholding\n\u003e attacks, which they said are a real issue for them. In particular, pools\n\u003e are receiving legitimate threats by bad actors threatening to use block\n\u003e withholding attacks against them. Pools offering their services to the\n\u003e general public without anti-privacy Know-Your-Customer have little\n\u003e defense against such attacks, which in turn is a threat to the\n\u003e decentralization of hashing power: without pools only fairly large\n\u003e hashing power installations are profitable as variance is a very real\n\u003e business expense. P2Pool is often brought up as a replacement for pools,\n\u003e but it itself is still relatively vulnerable to block withholding, and\n\u003e in any case has many other vulnerabilities and technical issues that has\n\u003e prevented widespread adoption of P2Pool.\n\u003e\n\u003e Fixing block withholding is relatively simple, but (so far) requires a\n\u003e SPV-visible hardfork. (Luke-Jr's two-stage target mechanism) We should\n\u003e do this hard-fork in conjunction with any blocksize increase, which will\n\u003e have the desirable side effect of clearly show consent by the entire\n\u003e ecosystem, SPV clients included.\n\u003e\n\u003e\n\u003e Note that Ittay Eyal and Emin Gun Sirer have argued(1) that block\n\u003e witholding attacks are a good thing, as in their model they can be used\n\u003e by small pools against larger pools, disincentivising large pools.\n\u003e However this argument is academic and not applicable to the real world,\n\u003e as a much simpler defense against block withholding attacks is to use\n\u003e anti-privacy KYC and the legal system combined with the variety of\n\u003e withholding detection mechanisms only practical for large pools.\n\u003e Equally, large hashing power installations - a dangerous thing for\n\u003e decentralization - have no block withholding attack vulnerabilities.\n\u003e\n\u003e 1) http://hackingdistributed.com/2014/12/03/the-miners-dilemma/\n\u003e\n\u003e --\n\u003e 'peter'[:-1]@petertodd.org\n\u003e 00000000000000000188b6321da7feae60d74c7b0becbdab3b1a0bd57f10947d\n\u003e",
"sig": "78e47877de3df261510a583d332d7f27b21423be9aaab4c9d05f0760617f8e3889e04367bcd70dc7e31f3f79266756ec2c173ff50dc2c71c4966285ea617e3f3"
}