1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
|
Return-Path: <earonesty@gmail.com>
Received: from smtp1.osuosl.org (smtp1.osuosl.org [140.211.166.138])
by lists.linuxfoundation.org (Postfix) with ESMTP id 90B1DC002D
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 7 Jul 2022 17:37:54 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
by smtp1.osuosl.org (Postfix) with ESMTP id 5D96E83F6F
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 7 Jul 2022 17:37:54 +0000 (UTC)
DKIM-Filter: OpenDKIM Filter v2.11.0 smtp1.osuosl.org 5D96E83F6F
Authentication-Results: smtp1.osuosl.org;
dkim=pass (2048-bit key) header.d=q32-com.20210112.gappssmtp.com
header.i=@q32-com.20210112.gappssmtp.com header.a=rsa-sha256
header.s=20210112 header.b=uqOM3pG7
X-Virus-Scanned: amavisd-new at osuosl.org
X-Spam-Flag: NO
X-Spam-Score: -1.399
X-Spam-Level:
X-Spam-Status: No, score=-1.399 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001,
HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001,
RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001]
autolearn=no autolearn_force=no
Received: from smtp1.osuosl.org ([127.0.0.1])
by localhost (smtp1.osuosl.org [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id ATmFutnULjmr
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 7 Jul 2022 17:37:53 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.8.0
DKIM-Filter: OpenDKIM Filter v2.11.0 smtp1.osuosl.org 9D53E83F6D
Received: from mail-lj1-x22f.google.com (mail-lj1-x22f.google.com
[IPv6:2a00:1450:4864:20::22f])
by smtp1.osuosl.org (Postfix) with ESMTPS id 9D53E83F6D
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 7 Jul 2022 17:37:52 +0000 (UTC)
Received: by mail-lj1-x22f.google.com with SMTP id a39so23123371ljq.11
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 07 Jul 2022 10:37:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=q32-com.20210112.gappssmtp.com; s=20210112;
h=mime-version:references:in-reply-to:from:date:message-id:subject:to
:cc; bh=cwAnu8PBi3BTkfQRRufsUQhXgwGpnbZIjUuy2ON9yE8=;
b=uqOM3pG7lBmi4ntGgduUB/4ZM8n4py6DPp4S/uRRpVZKfcxOvzSlbM7cmqIWYTb+43
wZvDyn5QUrOdk6pvb3HoCnlRdBm1aJYimhJZA4DFazwu6WN3Jfu0B+3VYtbh5hHh2jqJ
xSgIkF2zismoqzSUU3NBBpD0eeu5jSecq3R1WICJl9oeiLRplOVR45tih5rpolk55svL
cYED9PUvSoFrL6Bot44+Ce7Gzf2oykexlJu9QHM9NTs1GuPndAHgFHouzx83T2fiOese
S6uAh7Cojn9ySd8yhy7hKyI2enlAFi6X/U6TCxYed+YGZ+PURMO46YRftgT9QM1seiaS
X/3A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20210112;
h=x-gm-message-state:mime-version:references:in-reply-to:from:date
:message-id:subject:to:cc;
bh=cwAnu8PBi3BTkfQRRufsUQhXgwGpnbZIjUuy2ON9yE8=;
b=jZT1ljdy7f17dvWYUyHG8BYCPJRyMn9SlMOxi3Y3c0OYLBEw0qOsJ2VpU82kSgeG+Q
0FTciaJ6poCZlr/lLPqBDrDwijxKBSK38QHWdok47TZhCnxemGBosBnIa0F1Swefp9Ko
a+8TjIMeWQYZDXHIaH2Oc0yN8CFjLB/HBVHXt6v8SJ5hUElICg4l6G59RNvFq147KK/e
l8WR6l+6KcxjXQnI2AQqpaNSYO3hVBKaEcxhskvzqLOucuqe4VEtW5SQi8XZbTQ8GS+3
IFycOdEEwEjAZ1pKlNzyRBH9Gy2S80rtp0PTaTwHVEy792bezOhH1bAmuzVOp5d41N6g
rnGg==
X-Gm-Message-State: AJIora9H3YTCnTkXlXC3JZyv/5RZQS7klFqou/mLMbEg/aqXfu7ln0IU
dfodv3CpVOarr97M0vxbDxkzHYgnD1fvCyVYzavNEDQ=
X-Google-Smtp-Source: AGRyM1seaLo5lgtQmT6CwtXCPAVDJpqtk+CDLRW7tq1Icv4hGDve9yXONiReRXaZY/vGV5Zc0r2cHHnfDJPwOtuQ66s=
X-Received: by 2002:a2e:b209:0:b0:25a:705d:c4ba with SMTP id
l9-20020a2eb209000000b0025a705dc4bamr25917902ljm.468.1657215470335; Thu, 07
Jul 2022 10:37:50 -0700 (PDT)
MIME-Version: 1.0
References: <Ysbp2QclWW7NzfrS@petertodd.org>
<F6CAB95E-2EDD-42E5-8C80-1E3818D51574@voskuil.org>
In-Reply-To: <F6CAB95E-2EDD-42E5-8C80-1E3818D51574@voskuil.org>
From: Erik Aronesty <erik@q32.com>
Date: Thu, 7 Jul 2022 13:37:39 -0400
Message-ID: <CAJowKg+OP92w+zHjy4T79tMDL5O0gboUEurhBAuWbp+npsv94A@mail.gmail.com>
To: Eric Voskuil <eric@voskuil.org>,
Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
Content-Type: multipart/alternative; boundary="0000000000006cfc7d05e33a8b06"
X-Mailman-Approved-At: Thu, 07 Jul 2022 18:45:42 +0000
Cc: John Carvalho <john@synonym.to>
Subject: Re: [bitcoin-dev] Bitcoin covenants are inevitable
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Jul 2022 17:37:54 -0000
--0000000000006cfc7d05e33a8b06
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
> > We should not imbue real technology with magical qualities.
> Precisely. It is economic forces (people), not technology, that provide
security.
Yes, and these forces don't prevent double-spend / 51% attacks if the
amounts involved are greater than the incentives.
In addition to "utility", lowering the block size could help prevent this
issue as well... increasing fee pressure and double-spend security while
reducing the burden on node operators.
Changes to inflation are, very likely, off the table.
On Thu, Jul 7, 2022 at 12:24 PM Eric Voskuil via bitcoin-dev <
bitcoin-dev@lists.linuxfoundation.org> wrote:
>
>
> > On Jul 7, 2022, at 07:13, Peter Todd via bitcoin-dev <
> bitcoin-dev@lists.linuxfoundation.org> wrote:
> >
> > =EF=BB=BFOn Thu, Jul 07, 2022 at 02:24:39PM +0100, John Carvalho via bi=
tcoin-dev
> wrote:
> >> Billy,
> >>
> >> Proof of work and the difficulty adjustment function solve literally
> >> everything you are talking about already.
> >
> > Unfortunately you are quite wrong: the difficulty adjustment function
> merely
> > adjusts for changes in the amount of observable, non-51%-attacking,
> hashing
> > power. In the event of a chain split, the difficulty adjustment functio=
n
> does
> > nothing; against a 51% attacker, the difficulty adjustment does nothing=
;
> > against a censor, the difficulty adjustment does nothing.
>
> Consider falling hash rate due to a perpetual 51% attack. Difficulty
> falls, possibly to min difficulty if all non-censors stop mining and with
> all censors collaborating (one miner). Yet as difficulty falls, so does t=
he
> cost of countering the censor. At min difficulty everyone can CPU mine
> again.
>
> Given the presumption that fees rise on unconfirmed transactions, there i=
s
> inherent economic incentive to countering at any level of difficulty.
> Consequently the censor is compelled to subsidize the loss resulting from
> forgoing higher fee transactions that are incentivizing its competition.
>
> With falling difficulty this incentive is compounded.
>
> Comparisons of security in different scenarios presume a consistent level
> of demand. If that demand is insufficient to offset the censor=E2=80=99s =
subsidy,
> there is no security in any scenario.
>
> Given that the block subsidy (inflation) is paid equally to censoring and
> non-censoring miners, it offers no security against censorship whatsoever=
.
> Trading fee-based block reward for inflation-based is simply trading
> censorship resistance for the presumption of double-spend security. But o=
f
> course, a censor can double spend profitably in any scenario where the
> double spend value (to the censor) exceeds that of blocks orphaned (as th=
e
> censor earns 100% of all block rewards).
>
> Banks and state monies offer reasonable double spend security. Not sure
> that=E2=80=99s a trade worth making.
>
> It=E2=80=99s not clear to me that Satoshi understood this relation. I=E2=
=80=99ve seen no
> indication of it. However the decision to phase out subsidy, once a
> sufficient number of units (to assure divisibility) had been issued, is
> what transitions Bitcoin from a censorable to a censorship resistant mone=
y.
> If one does not believe there is sufficient demand for such a money, ther=
e
> is no way to reconcile that belief with a model of censorship resistance.
>
> > We should not imbue real technology with magical qualities.
>
> Precisely. It is economic forces (people), not technology, that provide
> security.
>
> e
>
> >> Bitcoin does not need active economic governanance by devs or meddlers=
.
> >
> > Yes, active governance would definitely be an exploitable mechanism. On
> the
> > other hand, the status quo of the block reward eventually going away
> entirely
> > is obviously a risky state change too.
> >
> >>>> There is also zero agreement on how much security would constitute
> such
> >>> an optimum.
> >>>
> >>> This is really step 1. We need to generate consensus on this long
> before
> >>> the block subsidy becomes too small. Probably in the next 10-15 years=
.
> I
> >>> wrote a paper
> >
> > The fact of the matter is that the present amount of security is about
> 1.7% of
> > the total coin supply/year, and Bitcoin seems to be working fine. 1.7%
> is also
> > already an amount low enough that it's much smaller than economic
> volatility.
> >
> > Obviously 0% is too small.
> >
> > There's zero reason to stress about finding an "optimal" amount. An
> amount low
> > enough to be easily affordable, but non-zero, is fine. 1% would be fine=
;
> 0.5%
> > would probably be fine; 0.1% would probably be fine.
> >
> > Over a lifetime - 75 years - 0.5% yearly inflation works out to be a 31=
%
> tax on
> > savings; 0.1% works out to be 7.2%
> >
> > These are all amounts that are likely to be dwarfed by economic shifts.
> >
> > --
> > https://petertodd.org 'peter'[:-1]@petertodd.org
> > _______________________________________________
> > bitcoin-dev mailing list
> > bitcoin-dev@lists.linuxfoundation.org
> > https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
> _______________________________________________
> bitcoin-dev mailing list
> bitcoin-dev@lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
>
--0000000000006cfc7d05e33a8b06
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><div><span style=3D"color:rgb(80,0,80)">> > We shoul=
d not imbue real technology with magical qualities.</span><br></div><div><s=
pan class=3D"gmail-im" style=3D"color:rgb(80,0,80)"><br></span>> Precise=
ly. It is economic forces (people), not technology, that provide security.<=
font color=3D"#888888"><br></font></div><div><br></div><div>Yes, and these =
forces don't prevent double-spend / 51% attacks if the amounts involved=
are greater than the incentives.</div><div><br></div><div>In addition to &=
quot;utility", lowering the block size could help prevent this issue a=
s well... increasing fee pressure and double-spend security while reducing =
the burden on node operators.</div><div><br></div><div>Changes to inflation=
are, very likely, off the table.</div><div><br></div><div>=C2=A0</div></di=
v><br><div class=3D"gmail_quote"><div dir=3D"ltr" class=3D"gmail_attr">On T=
hu, Jul 7, 2022 at 12:24 PM Eric Voskuil via bitcoin-dev <<a href=3D"mai=
lto:bitcoin-dev@lists.linuxfoundation.org">bitcoin-dev@lists.linuxfoundatio=
n.org</a>> wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"ma=
rgin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:=
1ex"><br>
<br>
> On Jul 7, 2022, at 07:13, Peter Todd via bitcoin-dev <<a href=3D"ma=
ilto:bitcoin-dev@lists.linuxfoundation.org" target=3D"_blank">bitcoin-dev@l=
ists.linuxfoundation.org</a>> wrote:<br>
> <br>
> =EF=BB=BFOn Thu, Jul 07, 2022 at 02:24:39PM +0100, John Carvalho via b=
itcoin-dev wrote:<br>
>> Billy,<br>
>> <br>
>> Proof of work and the difficulty adjustment function solve literal=
ly<br>
>> everything you are talking about already.<br>
> <br>
> Unfortunately you are quite wrong: the difficulty adjustment function =
merely<br>
> adjusts for changes in the amount of observable, non-51%-attacking, ha=
shing<br>
> power. In the event of a chain split, the difficulty adjustment functi=
on does<br>
> nothing; against a 51% attacker, the difficulty adjustment does nothin=
g;<br>
> against a censor, the difficulty adjustment does nothing.<br>
<br>
Consider falling hash rate due to a perpetual 51% attack. Difficulty falls,=
possibly to min difficulty if all non-censors stop mining and with all cen=
sors collaborating (one miner). Yet as difficulty falls, so does the cost o=
f countering the censor. At min difficulty everyone can CPU mine again.<br>
<br>
Given the presumption that fees rise on unconfirmed transactions, there is =
inherent economic incentive to countering at any level of difficulty. Conse=
quently the censor is compelled to subsidize the loss resulting from forgoi=
ng higher fee transactions that are incentivizing its competition.<br>
<br>
With falling difficulty this incentive is compounded.<br>
<br>
Comparisons of security in different scenarios presume a consistent level o=
f demand. If that demand is insufficient to offset the censor=E2=80=99s sub=
sidy, there is no security in any scenario.<br>
<br>
Given that the block subsidy (inflation) is paid equally to censoring and n=
on-censoring miners, it offers no security against censorship whatsoever. T=
rading fee-based block reward for inflation-based is simply trading censors=
hip resistance for the presumption of double-spend security. But of course,=
a censor can double spend profitably in any scenario where the double spen=
d value (to the censor) exceeds that of blocks orphaned (as the censor earn=
s 100% of all block rewards).<br>
<br>
Banks and state monies offer reasonable double spend security. Not sure tha=
t=E2=80=99s a trade worth making.<br>
<br>
It=E2=80=99s not clear to me that Satoshi understood this relation. I=E2=80=
=99ve seen no indication of it. However the decision to phase out subsidy, =
once a sufficient number of units (to assure divisibility) had been issued,=
is what transitions Bitcoin from a censorable to a censorship resistant mo=
ney. If one does not believe there is sufficient demand for such a money, t=
here is no way to reconcile that belief with a model of censorship resistan=
ce.<br>
<br>
> We should not imbue real technology with magical qualities.<br>
<br>
Precisely. It is economic forces (people), not technology, that provide sec=
urity.<br>
<br>
e<br>
<br>
>> Bitcoin does not need active economic governanance by devs or medd=
lers.<br>
> <br>
> Yes, active governance would definitely be an exploitable mechanism. O=
n the<br>
> other hand, the status quo of the block reward eventually going away e=
ntirely<br>
> is obviously a risky state change too.<br>
> <br>
>>>> There is also zero agreement on how much security would co=
nstitute such<br>
>>> an optimum.<br>
>>> <br>
>>> This is really step 1. We need to generate consensus on this l=
ong before<br>
>>> the block subsidy becomes too small. Probably in the next 10-1=
5 years. I<br>
>>> wrote a paper<br>
> <br>
> The fact of the matter is that the present amount of security is about=
1.7% of<br>
> the total coin supply/year, and Bitcoin seems to be working fine. 1.7%=
is also<br>
> already an amount low enough that it's much smaller than economic =
volatility.<br>
> <br>
> Obviously 0% is too small.<br>
> <br>
> There's zero reason to stress about finding an "optimal"=
amount. An amount low<br>
> enough to be easily affordable, but non-zero, is fine. 1% would be fin=
e; 0.5%<br>
> would probably be fine; 0.1% would probably be fine.<br>
> <br>
> Over a lifetime - 75 years - 0.5% yearly inflation works out to be a 3=
1% tax on<br>
> savings; 0.1% works out to be 7.2%<br>
> <br>
> These are all amounts that are likely to be dwarfed by economic shifts=
.<br>
> <br>
> -- <br>
> <a href=3D"https://petertodd.org" rel=3D"noreferrer" target=3D"_blank"=
>https://petertodd.org</a> 'peter'[:-1]@<a href=3D"http://petertodd=
.org" rel=3D"noreferrer" target=3D"_blank">petertodd.org</a><br>
> _______________________________________________<br>
> bitcoin-dev mailing list<br>
> <a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org" target=3D"_bl=
ank">bitcoin-dev@lists.linuxfoundation.org</a><br>
> <a href=3D"https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-=
dev" rel=3D"noreferrer" target=3D"_blank">https://lists.linuxfoundation.org=
/mailman/listinfo/bitcoin-dev</a><br>
_______________________________________________<br>
bitcoin-dev mailing list<br>
<a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org" target=3D"_blank">=
bitcoin-dev@lists.linuxfoundation.org</a><br>
<a href=3D"https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev" =
rel=3D"noreferrer" target=3D"_blank">https://lists.linuxfoundation.org/mail=
man/listinfo/bitcoin-dev</a><br>
</blockquote></div>
--0000000000006cfc7d05e33a8b06--
|
