*Colluding* with 51% of all hash power is a very different dynamic than BIP300.
In the LN or BitVM situation where you need the justice transaction to not be censored, the attacker has to *actively* collude - like actually plan the attack, personally contact all of the relevant miners (or the pools that are ok with destroying their pool) and bribe them to participate in the attack or convince them to commit to the crime before they even get a payout. Then they all have to actively censor the justice transaction and reorg all blocks not in their censorship group when the attack happens.
In the case of BIP300, anyone with enough hash power to create a block of withdraw and cast some votes could out in a malicious withdrawal. If 60% of the miners aren’t verifying that particular sidechain (or probably not validating any of them because we’re talking gigabytes or even terabytes every 10 minutes in a successful BIP300 scaling model), then the majority of miners would just *passively* vote for the malicious transaction. They’d have no clue whether it was honest or not. No active participation. No explicit altering of the pool/client to censor a justice transaction and reorg other blocks. No collusion. No bribes necessary. When any validators of the sidechain contested it, it may very well become a social mess figuring out what is honest and what isn’t and miners have to be contacted and to force them to setup or sync sidechain nodes to cast the proper vote, or they just blindly trust to what someone else claims and manually change their vote.
Yes, 51% of the hash power control is a problem in either scenario. But in LN or ButVM, or any other justice model like we already use, the miner **is not the counterparty.** they can’t just unilaterally pay themselves out of MY channel. The BTC goes explicitly to me, or my channel partner. And *I* decide who that partner is. My trust is another layer of defense, on top of the multiple levels of difficulty and direct, malicious collusion necessary.
In the BIP300 scenario I can’t choose which miners I want to trust. And I can’t force miners to run full nodes for my sidechain. Anybody, anywhere with hash power is suddenly “my counterparty” to the sidechain operation. They can steal if they have with *passive* hash power not doing the job necessary to *contest* their claim.
These just are not at all the same dynamic nor have anywhere near the long term risks. Longer we have BIP300 success, the more likely nothing is being validated. The more BitVM and LN we have, cost of validation continues to decline. It’s all still only on the main chain.
TheGuySwann / Guy Swann
npub1h8…6rpev
2023-12-25 13:18:50
in reply to nevent1q…gj49
Author Public Key
npub1h8nk2346qezka5cpm8jjh3yl5j88pf4ly2ptu7s6uu55wcfqy0wq36rpevPublished at
2023-12-25 13:18:50Event JSON
{
"id": "646f399cd8207505ef4e36200841b0f073a5bc5145c2a4f53a0485fb020a0007",
"pubkey": "b9e76546ba06456ed301d9e52bc49fa48e70a6bf2282be7a1ae72947612023dc",
"created_at": 1703510330,
"kind": 1,
"tags": [
[
"e",
"c832d441379664d5cc5519b0301e7854703ffc9928b3aac60cd26e6d11e4ed6e"
],
[
"e",
"d4f1025f8a3a286eba56bde4ae7f05e6e82fbbf24d2cdade5943decadc9c52e7"
],
[
"p",
"e2ccf7cf20403f3f2a4a55b328f0de3be38558a7d5f33632fdaaefc726c1c8eb"
],
[
"p",
"04c915daefee38317fa734444acee390a8269fe5810b2241e5e6dd343dfbecc9"
],
[
"p",
"ec99edc5567e02815fb15020285e2fa8390931cedf59c83d6bb2c5f6ee1530b9"
],
[
"p",
"2183e94758481d0f124fbd93c56ccaa45e7e545ceeb8d52848f98253f497b975"
],
[
"p",
"668ceee55475f595ec0e8ef44c64bf9da8d9dd6008ac54dcd24b2501930b960e"
]
],
"content": "*Colluding* with 51% of all hash power is a very different dynamic than BIP300.\n\nIn the LN or BitVM situation where you need the justice transaction to not be censored, the attacker has to *actively* collude - like actually plan the attack, personally contact all of the relevant miners (or the pools that are ok with destroying their pool) and bribe them to participate in the attack or convince them to commit to the crime before they even get a payout. Then they all have to actively censor the justice transaction and reorg all blocks not in their censorship group when the attack happens.\n\nIn the case of BIP300, anyone with enough hash power to create a block of withdraw and cast some votes could out in a malicious withdrawal. If 60% of the miners aren’t verifying that particular sidechain (or probably not validating any of them because we’re talking gigabytes or even terabytes every 10 minutes in a successful BIP300 scaling model), then the majority of miners would just *passively* vote for the malicious transaction. They’d have no clue whether it was honest or not. No active participation. No explicit altering of the pool/client to censor a justice transaction and reorg other blocks. No collusion. No bribes necessary. When any validators of the sidechain contested it, it may very well become a social mess figuring out what is honest and what isn’t and miners have to be contacted and to force them to setup or sync sidechain nodes to cast the proper vote, or they just blindly trust to what someone else claims and manually change their vote.\n\nYes, 51% of the hash power control is a problem in either scenario. But in LN or ButVM, or any other justice model like we already use, the miner **is not the counterparty.** they can’t just unilaterally pay themselves out of MY channel. The BTC goes explicitly to me, or my channel partner. And *I* decide who that partner is. My trust is another layer of defense, on top of the multiple levels of difficulty and direct, malicious collusion necessary.\n\nIn the BIP300 scenario I can’t choose which miners I want to trust. And I can’t force miners to run full nodes for my sidechain. Anybody, anywhere with hash power is suddenly “my counterparty” to the sidechain operation. They can steal if they have with *passive* hash power not doing the job necessary to *contest* their claim. \n\nThese just are not at all the same dynamic nor have anywhere near the long term risks. Longer we have BIP300 success, the more likely nothing is being validated. The more BitVM and LN we have, cost of validation continues to decline. It’s all still only on the main chain.",
"sig": "7e9dd837a3f2937a5db0bc0003229bdafab386f7b8571e3f7aa23b459e14111ec6e7f9e55c7cf335ec16d1052cf982ca6d35862c68d18241fcb0b94c339a65af"
}