π
Original date posted:2011-12-16
ποΈ Summary of this message: Bitcoin needs to maintain its decentralized feature, but people want alternate representations of bitcoin addresses. Blockchain bloat is an issue, and an extra-blockchain aliasing system must prioritize usability and absolute security. Arbitrary aliases are not in use in mature financial systems, and checksum systems detect transposition errors.
π Original message:> Bitcoin itself is decentralised by design, in my opinion it seems obvious
> that it needs to continue to maintain this feature.
What's the real issue?
- People want to use alternate representations ('aliases') of bitcoin
addresses, for various reasons.
- The blockchain is the only way to create distributed consensus
within the bitcoin network.
- Very few people - even those who wish to have a permanent alias -
want to have it map to a permanent bitcoin address, since this
discloses their financial history (eg: income for a business) to the
public
- Some people want throw-away (single use) aliases, others want
permanent ones. This means many addresses.
- Blockchain bloat is already acknowledged as an issue.
- The blockchain is not really a good option.
Leaving out the blockchain, there are still ways to implement aliasing.
What is the core problem for an extra-blockchain aliasing system?
At the core is usability - people basically want aliases to make it
easier to type in or remember addresses. So a solution that
sacrifices usability too far is a broken one.
Another requirement is absolute security. A user of the aliasing
system is going to trust it to translate a particular alias to a
bitcoin address - ie: 'where my money goes with absolutely zero chance
(by default) of getting it back if it's sent somewhere wrong by
accident'. Such an accident might be mistyping an alias. It might
also be a hijacking of the alias resolution system (eg: a DNS based
system without DNSSEC, etc.). As a case in point, we already see very
well organized attacks by domain squatters in order to steal traffic
or effect phishing under the DNS system.
So... to help see which qualities are meaningful for such an alias
system, let's look at what types of solutions to these problems exist
within conventional (ie: mature) financial systems.
First, arbitrary aliases are not in use. This means that memory-based
mnemonics are not subject to predictable squatting-style attacks. For
our purposes, this means that if you are payments at business1.com, I
can't go and register payments at busines1.com and take a portion of your
inbound cash whenever a client tries to pay you and typos on the send
address. Likewise, if you're 'someuser at hostedwalletservice.com' I
can't go and register as 'someuse at hostedwalletservice.com' and pull
the same heist. IIBAN is the only aliasing proposal I have seen
mentioned within this thread that adopts this strategy, the others all
maintain this vulnerability through DNS. HTTP relies on DNS.
Second, checksum systems detect transposition errors. This is a very
powerful feature, which (I can't be bothered googling for stats, but
just think about it) cuts out the vast majority of such errors
instantly, at the time of input, before money changes hands or
anything touches the financial settlement networks. IIBAN adopts
exactly the same mature and proven MOD97-based two digit checksum
feature that is used within the IBAN standard, proposed by the
European Union with the benefit of decades of banking experience in
many member states and now growing rapidly in use around the world.
(For something as expensive and painful to implement as a
nationally-mandated banking standard affecting all member banks, a
growth rate of 'a few countries per year' is a pretty serious growth
curve!) With checksums, it's even possible to auto-suggest
corrections based upon common transposition errors and help the user
to check those parts of the alias for common errors more quickly.
Third, conventional financial systems typically require recipient name
(and sometimes address, or business tax numbers in some countries'
domestic schemes) as part of the transaction. This secondary data
facilitates error checking since an incorrectly supplied destination
address can be checked against these properties. Of course, Bitcoin
presently has no such secondary input with which to verify the
destination of a transfer, and since blockchain bloat is an
acknowledged issue and very few bitcoin users would like to see their
names appear against their transactions within the blockchain (visible
to all, for eternity!) it also seems that this feature is not going to
be added and for good reason. However, within an external (and not
necessarily bitcoin specific) higher-level 'transaction negotation'
protocol (alluded to in earlier posts as a logical extension of the
pre transaction alias resolution mechanism, and being a pre
transaction connection of some nature between a payer and payee, or
their proxying/representing institution, in the case of hosted
wallets/aliases), such external destination validation features could
be added. (Many types are possible... data-based as per name/address
validation, cryptographic validation schemes, etc.)
Finally, an increasing number of countries use an aliasing scheme
(IBAN) that is familiar to users. Doing so for digital currencies
such as Bitcoin increases usability (by eliminating novelty, and in
the case of IIBAN which is not specific to any given currency, the
need to register, recall and manage yet another account identifier),
which was one of the original goals. None of the other proposals
mentioned have this property.
I won't go in to other benefits previously mentioned of the IIBAN
proposal, but I still cannot see any reason to either:
- Include aliasing within bitcoind itself
- Re-invent the wheel
- Scare off non-technical users
- Dodge the fact that there are unique properties of bitcoin that
will always remain and should perhaps simply be acknowledged and
worked around OUTSIDE of the codebase, rather than within.
Unix/internet philosophy is that it's usually best to keep code as
simple as possible, to 'do one thing' and 'do it well'. For bitcoind
(despite sharing a codebase with the GUI), that something is achieving
a distributed internet-based financial system that is free from legacy
centralized currencies. It is *not* worrying about making it look
pretty or easy to use, which can be achieved by layering totally
external systems through simply translating various alternate
representations ('aliases') to the well defined bitcoin addressing
scheme.
Just to avoid any notion of table-banging (Hah! A lost cause?), this
will be the last IIBAN-related post I will make on this thread, but
there will be some further announcements in the near future.
Keep up the good work everyone.
Regards,
Walter Stanish
Payward Inc.
Walter Stanish [ARCHIVE] /
npub1w7β¦wj55c
2023-06-07 02:43:25
in reply to nevent1qβ¦le25
Author Public Key
npub1w7tezshngplj3fd8r9twxv6zujrwaxq7v98q6t4rdhd0y7u2tfnsmwj55cPublished at
2023-06-07 02:43:25Event JSON
{
"id": "6d6b9532d9fa431824a8331b224985ca5a9cd194c30c43f9887a7d7ab57e2b33",
"pubkey": "77979142f3407f28a5a71956e33342e486ee981e614e0d2ea36ddaf27b8a5a67",
"created_at": 1686105805,
"kind": 1,
"tags": [
[
"e",
"247922e9146ee6b54a634fc05ad7a489892c01debcd0510d008be95a47f6db80",
"",
"root"
],
[
"e",
"bf194681ee7635b7830cfe793b989dba911d67db02a076cbcb6c1c15aa47de1f",
"",
"reply"
],
[
"p",
"743d66aad3d8b54705b751a04d8cf4cabf6e02f65d98903fa7b96135956d2ead"
]
],
"content": "π
Original date posted:2011-12-16\nποΈ Summary of this message: Bitcoin needs to maintain its decentralized feature, but people want alternate representations of bitcoin addresses. Blockchain bloat is an issue, and an extra-blockchain aliasing system must prioritize usability and absolute security. Arbitrary aliases are not in use in mature financial systems, and checksum systems detect transposition errors.\nπ Original message:\u003e Bitcoin itself is decentralised by design, in my opinion it seems obvious\n\u003e that it needs to continue to maintain this feature.\n\nWhat's the real issue?\n\n - People want to use alternate representations ('aliases') of bitcoin\naddresses, for various reasons.\n - The blockchain is the only way to create distributed consensus\nwithin the bitcoin network.\n - Very few people - even those who wish to have a permanent alias -\nwant to have it map to a permanent bitcoin address, since this\ndiscloses their financial history (eg: income for a business) to the\npublic\n - Some people want throw-away (single use) aliases, others want\npermanent ones. This means many addresses.\n - Blockchain bloat is already acknowledged as an issue.\n - The blockchain is not really a good option.\n\nLeaving out the blockchain, there are still ways to implement aliasing.\n\nWhat is the core problem for an extra-blockchain aliasing system?\n\nAt the core is usability - people basically want aliases to make it\neasier to type in or remember addresses. So a solution that\nsacrifices usability too far is a broken one.\n\nAnother requirement is absolute security. A user of the aliasing\nsystem is going to trust it to translate a particular alias to a\nbitcoin address - ie: 'where my money goes with absolutely zero chance\n(by default) of getting it back if it's sent somewhere wrong by\naccident'. Such an accident might be mistyping an alias. It might\nalso be a hijacking of the alias resolution system (eg: a DNS based\nsystem without DNSSEC, etc.). As a case in point, we already see very\nwell organized attacks by domain squatters in order to steal traffic\nor effect phishing under the DNS system.\n\nSo... to help see which qualities are meaningful for such an alias\nsystem, let's look at what types of solutions to these problems exist\nwithin conventional (ie: mature) financial systems.\n\nFirst, arbitrary aliases are not in use. This means that memory-based\nmnemonics are not subject to predictable squatting-style attacks. For\nour purposes, this means that if you are payments at business1.com, I\ncan't go and register payments at busines1.com and take a portion of your\ninbound cash whenever a client tries to pay you and typos on the send\naddress. Likewise, if you're 'someuser at hostedwalletservice.com' I\ncan't go and register as 'someuse at hostedwalletservice.com' and pull\nthe same heist. IIBAN is the only aliasing proposal I have seen\nmentioned within this thread that adopts this strategy, the others all\nmaintain this vulnerability through DNS. HTTP relies on DNS.\n\nSecond, checksum systems detect transposition errors. This is a very\npowerful feature, which (I can't be bothered googling for stats, but\njust think about it) cuts out the vast majority of such errors\ninstantly, at the time of input, before money changes hands or\nanything touches the financial settlement networks. IIBAN adopts\nexactly the same mature and proven MOD97-based two digit checksum\nfeature that is used within the IBAN standard, proposed by the\nEuropean Union with the benefit of decades of banking experience in\nmany member states and now growing rapidly in use around the world.\n(For something as expensive and painful to implement as a\nnationally-mandated banking standard affecting all member banks, a\ngrowth rate of 'a few countries per year' is a pretty serious growth\ncurve!) With checksums, it's even possible to auto-suggest\ncorrections based upon common transposition errors and help the user\nto check those parts of the alias for common errors more quickly.\n\nThird, conventional financial systems typically require recipient name\n(and sometimes address, or business tax numbers in some countries'\ndomestic schemes) as part of the transaction. This secondary data\nfacilitates error checking since an incorrectly supplied destination\naddress can be checked against these properties. Of course, Bitcoin\npresently has no such secondary input with which to verify the\ndestination of a transfer, and since blockchain bloat is an\nacknowledged issue and very few bitcoin users would like to see their\nnames appear against their transactions within the blockchain (visible\nto all, for eternity!) it also seems that this feature is not going to\nbe added and for good reason. However, within an external (and not\nnecessarily bitcoin specific) higher-level 'transaction negotation'\nprotocol (alluded to in earlier posts as a logical extension of the\npre transaction alias resolution mechanism, and being a pre\ntransaction connection of some nature between a payer and payee, or\ntheir proxying/representing institution, in the case of hosted\nwallets/aliases), such external destination validation features could\nbe added. (Many types are possible... data-based as per name/address\nvalidation, cryptographic validation schemes, etc.)\n\nFinally, an increasing number of countries use an aliasing scheme\n(IBAN) that is familiar to users. Doing so for digital currencies\nsuch as Bitcoin increases usability (by eliminating novelty, and in\nthe case of IIBAN which is not specific to any given currency, the\nneed to register, recall and manage yet another account identifier),\nwhich was one of the original goals. None of the other proposals\nmentioned have this property.\n\nI won't go in to other benefits previously mentioned of the IIBAN\nproposal, but I still cannot see any reason to either:\n - Include aliasing within bitcoind itself\n - Re-invent the wheel\n - Scare off non-technical users\n - Dodge the fact that there are unique properties of bitcoin that\nwill always remain and should perhaps simply be acknowledged and\nworked around OUTSIDE of the codebase, rather than within.\nUnix/internet philosophy is that it's usually best to keep code as\nsimple as possible, to 'do one thing' and 'do it well'. For bitcoind\n(despite sharing a codebase with the GUI), that something is achieving\na distributed internet-based financial system that is free from legacy\ncentralized currencies. It is *not* worrying about making it look\npretty or easy to use, which can be achieved by layering totally\nexternal systems through simply translating various alternate\nrepresentations ('aliases') to the well defined bitcoin addressing\nscheme.\n\nJust to avoid any notion of table-banging (Hah! A lost cause?), this\nwill be the last IIBAN-related post I will make on this thread, but\nthere will be some further announcements in the near future.\n\nKeep up the good work everyone.\n\nRegards,\nWalter Stanish\nPayward Inc.",
"sig": "ee23162165e09edf4db81c9edb9d8b72990222eba6e8bc1830a630e8678d9cfc232c6028d74cb765eb5a04e5107b005c3eccf954eaaba382029f2edf3b14d370"
}