MIME-Version: 1.0
References: <CACkWPs_F94t9Q8TfyYYGxQANUT78SWFGkTOh6qRwnt=6ct7aig@mail.gmail.com>
 <CAAQdECAspoRJRz7j1ubAe=Cen==AVF5bm-Q2=0TiKc7NtbU65A@mail.gmail.com>
 <CACkWPs_4pjTo50=S86KPEznBs0PU7rd30rBGHq2Q5=6n6hYMgQ@mail.gmail.com>
 <CAHTn92wH17Z+p5cFOLpzsVUuTf4-nZc7tOjQr+_xjSU5groa0Q@mail.gmail.com>
 <CACkWPs9VawCYt7maiNqzafkFnHTiGJQkXMT4VXQQcG-rE2TTNw@mail.gmail.com>
 <Y5jxmItJIpIUVY+x@petertodd.org>
 <CACkWPs_jSLDg3seON0uu=ri6iR9cytXo2MEPJ5PVeap+iDreeQ@mail.gmail.com>
 <Y5zfuVGpRGaknwaU@petertodd.org>
 <CACkWPs_6z7UyXzejTqjy=i+SkSz-76VdzZ20K1DzcVJxan_HZg@mail.gmail.com>
 <Y8HvCbBd5+pm8Uj2@petertodd.org>
In-Reply-To: <Y8HvCbBd5+pm8Uj2@petertodd.org>
From: Daniel Lipshitz <daniel@gap600.com>
Date: Sat, 14 Jan 2023 22:15:30 +0200
Message-ID: <CACkWPs_Nqm1663c1q8xHX=A0Gpa7m1kV_QX6t0s8uPOEh3WQLA@mail.gmail.com>
To: Peter Todd <pete@petertodd.org>
Content-Type: multipart/alternative; boundary="000000000000a969df05f23f03e5"
Cc: bitcoin-dev <bitcoin-dev@lists.linuxfoundation.org>,
 John Carvalho <john@synonym.to>
Subject: Re: [bitcoin-dev] A proposal for Full RBF to not exclude Zero Conf
 use case
Precedence: list

--000000000000a969df05f23f03e5
Content-Type: text/plain; charset="UTF-8"

On Sat, Jan 14, 2023 at 1:53 AM Peter Todd <pete@petertodd.org> wrote:

> On Sun, Dec 18, 2022 at 10:06:15AM +0200, Daniel Lipshitz wrote:
> > GAP600 is not a trxs processor or liquidity provider we service
> merchants,
> > payment processors & non-custodial liquidity providers - our service is
> > purely the 0-conf enabling our clients to accept 0-conf. Clients access
> our
> > service via API - sending us the Trx hash & output address. Our service
> is
> > not based on AML/KYC it is purely an analysis of the Bitcoin network.
>
> I checked and to sign up for your service, you ask for the name, phone
> number,
> email, and company name.
>
> That is an example of AML/KYC. By learning the tx hash and output address,
> you
> learn which addresses are associated with what real world entity is paying
> for
> your service. You learning that information for what you claim is ~10% of
> all
> transactions is a significant privacy concern. On that basiss alone, I
> would
> argue that full-rbf should be implemented specifically to destroy your
> business
> and stop the collection of that data.
>
> We have standard commercial information about the payment processors, non
custodial liquidity providers and merchants which become our clients - we
do not have any kyc/aml information or telephone number on who is sending
our clients the bitcoin for deposit.  For us these are just bitcoin Trx
which our clients choose to benefit from 0-conf deposit recognition. Our
service is provided via API with the only information our clients share
with us, regarding a specific bitcoin transaction, being public bitcoin
information like trx hash and output address.

> I am not at liberty to share names of other services which have developed
> > their own 0-conf service - they include a payment processor on a gambling
> > platform which services multiple gambling operators, a standalone gaming
> > payment processor, and a payment processor recently I have come across.
> We
> > also do not have a significant presence in Asia - so I don't have
> > visibility there.
>
> No, I asked you for information on what companies are actually using *your*
> service. You claim to be involved with a huge % of all transactions. If
> that is
> in fact true, obviously it shouldn't be hard to provide some examples of
> merchants using GAP600 to accept unconfirmed txs.
>

As already posted here
https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2022-December/021240.html
Max CEO from Coinspaid who has provided Cpoinspaid address clusters, see
link, is available to discuss further and may choose to share further
information on the merchants they support.

>
> > I don't see it being necessarily an either/or approach here. The risk
> > looking to be mitigated with FullRBF seems to be able to be mitigated
> with
> > FullRBF but with a swop limitation of at least the Inputs of Trx1 being
> in
> > Trx2 - no flagging required. Added to this all these trxs always have the
> > OptinRBF so if these platforms need to be able to recreate completely
> their
> > trxs they have that option as well. The option to Swop out or bump up
> trxs
> > seems to be well covered under those two options.
>
> You are not correct. One of the most important use-cases for full-rbf is
> multi-party transactions; adding that limitation to full-rbf negates that
> usecase. See my post on why full-rbf makes DoS attacks on multiparty
> protocols
> significantly more expensive:
>
>
> https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2023-January/021322.html


I also note that there is ongoing debate as to the need for full RBF see
here
https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2023-January/021331.html
.

This seems to be an extreme edge case - with Opt-in RBF, FSS Full RBF and
common sense - offering enough coverage to mitigate.

0-conf although may not be liked by some actors in Bitcoin, is engaged with
free choice and understanding of the risks. 0-conf is a long standing and
significant use case which should not be ignored. 0-conf demise should be
viewed as being a major and unnecessary cost to FullRBF as currently
implemented.

> --
> https://petertodd.org 'peter'[:-1]@petertodd.org
>

--000000000000a969df05f23f03e5
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div dir=3D"ltr"><div><div dir=3D"ltr" class=3D"gmail_sign=
ature"><div dir=3D"ltr"><div dir=3D"ltr"><div style=3D"font-size:12.8px"><b=
r></div></div></div></div></div><br></div><br><div class=3D"gmail_quote"><d=
iv dir=3D"ltr" class=3D"gmail_attr">On Sat, Jan 14, 2023 at 1:53 AM Peter T=
odd &lt;<a href=3D"mailto:pete@petertodd.org">pete@petertodd.org</a>&gt; wr=
ote:<br></div><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px=
 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">On Sun, Dec=
 18, 2022 at 10:06:15AM +0200, Daniel Lipshitz wrote:<br>
&gt; GAP600 is not a trxs processor or liquidity provider we service mercha=
nts,<br>
&gt; payment processors &amp; non-custodial liquidity providers - our servi=
ce is<br>
&gt; purely the 0-conf enabling our clients to accept 0-conf. Clients acces=
s our<br>
&gt; service via API - sending us the Trx hash &amp; output address. Our se=
rvice is<br>
&gt; not based on AML/KYC it is purely an analysis of the Bitcoin network.<=
br>
<br>
I checked and to sign up for your service, you ask for the name, phone numb=
er,<br>
email, and company name.<br>
<br>
That is an example of AML/KYC. By learning the tx hash and output address, =
you<br>
learn which addresses are associated with what real world entity is paying =
for<br>
your service. You learning that information for what you claim is ~10% of a=
ll<br>
transactions is a significant privacy concern. On that basiss alone, I woul=
d<br>
argue that full-rbf should be implemented specifically to destroy your busi=
ness<br>
and stop the collection of that data.<br>
<br></blockquote><div>We have standard commercial information about the pay=
ment processors, non custodial liquidity providers and merchants which beco=
me our clients - we do not have any kyc/aml information or telephone number=
 on who is sending our clients the bitcoin for deposit.=C2=A0 For us=C2=A0t=
hese are just bitcoin Trx which our clients choose to benefit from 0-conf d=
eposit recognition. Our service is provided via API with the only informati=
on our clients share with us, regarding a specific bitcoin transaction, bei=
ng public bitcoin information like trx hash and output address.</div><div><=
br></div><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8e=
x;border-left:1px solid rgb(204,204,204);padding-left:1ex">
&gt; I am not at liberty to share names of other services which have develo=
ped<br>
&gt; their own 0-conf service - they include a payment processor on a gambl=
ing<br>
&gt; platform which services multiple gambling operators, a standalone gami=
ng<br>
&gt; payment processor, and a payment processor recently I have come across=
. We<br>
&gt; also do not have a significant presence in Asia - so I don&#39;t have<=
br>
&gt; visibility there.<br>
<br>
No, I asked you for information on what companies are actually using *your*=
<br>
service. You claim to be involved with a huge % of all transactions. If tha=
t is<br>
in fact true, obviously it shouldn&#39;t be hard to provide some examples o=
f<br>
merchants using GAP600 to accept unconfirmed txs.<br></blockquote><div><br>=
</div><div>As already posted here=C2=A0<a href=3D"https://lists.linuxfounda=
tion.org/pipermail/bitcoin-dev/2022-December/021240.html">https://lists.lin=
uxfoundation.org/pipermail/bitcoin-dev/2022-December/021240.html</a> Max CE=
O from Coinspaid who has provided Cpoinspaid address clusters, see link, is=
 available to discuss further and may choose to share further information o=
n the merchants they support.=C2=A0=C2=A0</div><blockquote class=3D"gmail_q=
uote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,2=
04);padding-left:1ex">
<br>
&gt; I don&#39;t see it being necessarily an either/or approach here. The r=
isk<br>
&gt; looking to be mitigated with FullRBF seems to be able to be mitigated =
with<br>
&gt; FullRBF but with a swop limitation of at least the Inputs of Trx1 bein=
g in<br>
&gt; Trx2 - no flagging required. Added to this all these trxs always have =
the<br>
&gt; OptinRBF so if these platforms need to be able to recreate completely =
their<br>
&gt; trxs they have that option as well. The option to Swop out or bump up =
trxs<br>
&gt; seems to be well covered under those two options.<br>
<br>
You are not correct. One of the most important use-cases for full-rbf is<br=
>
multi-party transactions; adding that limitation to full-rbf negates that<b=
r>
usecase. See my post on why full-rbf makes DoS attacks on multiparty protoc=
ols<br>
significantly more expensive:<br>
<br>
<a href=3D"https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2023-Jan=
uary/021322.html" rel=3D"noreferrer" target=3D"_blank">https://lists.linuxf=
oundation.org/pipermail/bitcoin-dev/2023-January/021322.html</a></blockquot=
e><div><br></div><div>I also note that there is ongoing debate as to the ne=
ed for full RBF see here=C2=A0<a href=3D"https://lists.linuxfoundation.org/=
pipermail/bitcoin-dev/2023-January/021331.html">https://lists.linuxfoundati=
on.org/pipermail/bitcoin-dev/2023-January/021331.html</a> .=C2=A0</div><div=
><br></div><div>This seems to be an extreme edge case - with Opt-in RBF, FS=
S Full RBF and common sense - offering enough coverage to mitigate.=C2=A0</=
div><div><br></div><div>0-conf although may not be liked by some actors in =
Bitcoin, is engaged with free choice and understanding of the risks. 0-conf=
 is a long standing and significant use case which should not be ignored. 0=
-conf demise should be viewed as being a major and unnecessary cost to Full=
RBF as currently implemented.<br></div><blockquote class=3D"gmail_quote" st=
yle=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padd=
ing-left:1ex">
-- <br>
<a href=3D"https://petertodd.org" rel=3D"noreferrer" target=3D"_blank">http=
s://petertodd.org</a> &#39;peter&#39;[:-1]@<a href=3D"http://petertodd.org"=
 rel=3D"noreferrer" target=3D"_blank">petertodd.org</a><br>
</blockquote></div></div>

--000000000000a969df05f23f03e5--