š
Original date posted:2015-06-30
š Original message:On Tue, Jun 30, 2015 at 03:12:52PM +0200, Adam Back wrote:
> It is correct to view first-seen miner and relay policy as
> honour-based, though it is the current default.
>
> I think it would be better to deploy full-RBF in an opt-in way and
> leave the current default miner & relay policies as is. So for
> example a new signature flag or transaction type that is marked as
> opting-in waiving the first-seen policy.
>
> In this way we can get a smoother transition for people away from the
> first-seen assumption, towards greenaddress (trust based) and
> lightning / payment channel solutions. Mid-term the channel and hub
> model can provide fast secure 0-confirm transactions, which are
> generically not known to be directly and robustly securable via miner
> consensus.
>
> As we've seen abruptly stopping the first-seen miner & relay policy is
> risky and unpopular and causes people to seek contracts with miners to
> retain first-seen. This is itself a bad trend for fungibility for
> obvious reasons.
Well, as you know I have good reason to believe those contracts are
being actively worked on right now. I've been talking about this issue
for something like two years now, and rather than seeing a shift away
from use of zeroconf, we're seeing new services adopting it, always
large, centralized, startups in the payment space. Meanwhile the story
for decentralized wallets is if anything even worse, and most such
wallets don't even have code to detect double-spends at all.
From the point of view of large companies like Coinbase, getting hashing
power contracts and sybil attacking the network is relatively easy. Why
would they invest in genuine improvements when they can take the easy
way out? Especially when the easy way is something their smaller
competitors simply have no access too? Working on those contracts now
only makes sense, especially as the reliability of the P2P network in
providing zeroconf guarantees continues to decline as transaction volume
increases, and uniformity of nodes decreases.
By acting sooner rather than later in adopting full-RBF I think we have
a shot at changing the direction of the industry; if we wait I think we
stand a real chance of that dangerous infrastructure being put into
place. Equally, when you ask who is benefiting from the status quo, it
isn't decentralized wallets, but a small number of centralized startups
who have an advantage that the former can't match.
> We shouldn't prejudge people's and segment's of business weak-reliance
> on first-seen. Some types of payments are generally high trust (known
> relationships) or physical stores or very low marginal cost (coffee
> marginal cost <10c, sale price > $2 or lower ebook, audio stream etc
> as embodied by fremium model). It is not ours to prejudge and kill
> their business. It our job to help improve network security however,
> so that they do not have to eat a fraud cost. And that is do able
> with trust via greenaddress, or without trust (other than
> time-preference) via the hub & channel model.
You know, if the status quo didn't have the downsides I mention above,
I'd probably agree with you on that point. But the risks outweigh it
IMO.
> Security maybe incrementally improvable via non-spendable relaying of
> proof of double-spent status, and services that try to measure % of
> miners by hashrate with assumption of first-seen that have have seen a
> given transaction first, though I am not sure such approaches are
> robust enough to invest time in vs greenaddress or hub & channel.
Note how relaying proof of double-spent status is only useful if you can
do something about it; the only method available without a scripting
language soft-fork is the scorched earth concept, which ironically
relies on full-RBF.
> Any thoughts on the simplest way to support an opt-in version of full-RBF?
I'd suggest using nSequence for that purpose by defining non-maxint
nSequence as allowing RBF. (as well as non-maxint - 1 for nLockTime
usage to discourage fee sniping) Mark Friedenbach's sequence number BIP
is going to make use of transaction replacement anyway after all, so
doing that would be forward-compatible with it.
--
'peter'[:-1]@petertodd.org
0000000000000000129dec64f63611dc737b87331bb165740fb5552a92833a12
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 650 bytes
Desc: Digital signature
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20150630/7f4d77b6/attachment.sig>;
Peter Todd [ARCHIVE] /
npub1m2ā¦a2np2
2023-06-07 15:41:15
in reply to nevent1qā¦h43d
Author Public Key
npub1m230cem2yh3mtdzkg32qhj73uytgkyg5ylxsu083n3tpjnajxx4qqa2np2Published at
2023-06-07 15:41:15Event JSON
{
"id": "2afc25893179e80e4bac2a803fb2f2907f14d9cd8322ee43776cbdd81a32990b",
"pubkey": "daa2fc676a25e3b5b45644540bcbd1e1168b111427cd0e3cf19c56194fb231aa",
"created_at": 1686152475,
"kind": 1,
"tags": [
[
"e",
"8a75acfffe44f9748a902379feb70f856b01a438a0303ea9088c6c0d7a3ff10d",
"",
"root"
],
[
"e",
"8b388c34b93ce1ba0b477ebe2a7df563af93d48a9e834db935917111cb11c159",
"",
"reply"
],
[
"p",
"d3574a24208f4e3d0821bb4a69a0c3ae842043d444fa5c4a8c49c369918a6fb2"
]
],
"content": "š
Original date posted:2015-06-30\nš Original message:On Tue, Jun 30, 2015 at 03:12:52PM +0200, Adam Back wrote:\n\u003e It is correct to view first-seen miner and relay policy as\n\u003e honour-based, though it is the current default.\n\u003e \n\u003e I think it would be better to deploy full-RBF in an opt-in way and\n\u003e leave the current default miner \u0026 relay policies as is. So for\n\u003e example a new signature flag or transaction type that is marked as\n\u003e opting-in waiving the first-seen policy.\n\u003e \n\u003e In this way we can get a smoother transition for people away from the\n\u003e first-seen assumption, towards greenaddress (trust based) and\n\u003e lightning / payment channel solutions. Mid-term the channel and hub\n\u003e model can provide fast secure 0-confirm transactions, which are\n\u003e generically not known to be directly and robustly securable via miner\n\u003e consensus.\n\u003e \n\u003e As we've seen abruptly stopping the first-seen miner \u0026 relay policy is\n\u003e risky and unpopular and causes people to seek contracts with miners to\n\u003e retain first-seen. This is itself a bad trend for fungibility for\n\u003e obvious reasons.\n\nWell, as you know I have good reason to believe those contracts are\nbeing actively worked on right now. I've been talking about this issue\nfor something like two years now, and rather than seeing a shift away\nfrom use of zeroconf, we're seeing new services adopting it, always\nlarge, centralized, startups in the payment space. Meanwhile the story\nfor decentralized wallets is if anything even worse, and most such\nwallets don't even have code to detect double-spends at all.\n\nFrom the point of view of large companies like Coinbase, getting hashing\npower contracts and sybil attacking the network is relatively easy. Why\nwould they invest in genuine improvements when they can take the easy\nway out? Especially when the easy way is something their smaller\ncompetitors simply have no access too? Working on those contracts now\nonly makes sense, especially as the reliability of the P2P network in\nproviding zeroconf guarantees continues to decline as transaction volume\nincreases, and uniformity of nodes decreases.\n\nBy acting sooner rather than later in adopting full-RBF I think we have\na shot at changing the direction of the industry; if we wait I think we\nstand a real chance of that dangerous infrastructure being put into\nplace. Equally, when you ask who is benefiting from the status quo, it\nisn't decentralized wallets, but a small number of centralized startups\nwho have an advantage that the former can't match.\n\n\u003e We shouldn't prejudge people's and segment's of business weak-reliance\n\u003e on first-seen. Some types of payments are generally high trust (known\n\u003e relationships) or physical stores or very low marginal cost (coffee\n\u003e marginal cost \u003c10c, sale price \u003e $2 or lower ebook, audio stream etc\n\u003e as embodied by fremium model). It is not ours to prejudge and kill\n\u003e their business. It our job to help improve network security however,\n\u003e so that they do not have to eat a fraud cost. And that is do able\n\u003e with trust via greenaddress, or without trust (other than\n\u003e time-preference) via the hub \u0026 channel model.\n\nYou know, if the status quo didn't have the downsides I mention above,\nI'd probably agree with you on that point. But the risks outweigh it\nIMO.\n\n\u003e Security maybe incrementally improvable via non-spendable relaying of\n\u003e proof of double-spent status, and services that try to measure % of\n\u003e miners by hashrate with assumption of first-seen that have have seen a\n\u003e given transaction first, though I am not sure such approaches are\n\u003e robust enough to invest time in vs greenaddress or hub \u0026 channel.\n\nNote how relaying proof of double-spent status is only useful if you can\ndo something about it; the only method available without a scripting\nlanguage soft-fork is the scorched earth concept, which ironically\nrelies on full-RBF.\n\n\u003e Any thoughts on the simplest way to support an opt-in version of full-RBF?\n\nI'd suggest using nSequence for that purpose by defining non-maxint\nnSequence as allowing RBF. (as well as non-maxint - 1 for nLockTime\nusage to discourage fee sniping) Mark Friedenbach's sequence number BIP\nis going to make use of transaction replacement anyway after all, so\ndoing that would be forward-compatible with it.\n\n-- \n'peter'[:-1]@petertodd.org\n0000000000000000129dec64f63611dc737b87331bb165740fb5552a92833a12\n-------------- next part --------------\nA non-text attachment was scrubbed...\nName: signature.asc\nType: application/pgp-signature\nSize: 650 bytes\nDesc: Digital signature\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20150630/7f4d77b6/attachment.sig\u003e",
"sig": "3bd6cdbc32428154e0e6c53e30cf87342efa02890dc2350cfd4d9643c1b12adc411be6945ece783d3b9610f3ab7161ebf805018c521f5fe631a8c6cdbf5c9d1e"
}