0 Members and 1 Guest are viewing this topic.
...The reality is that bytemaster controls enough stake to vote anyone in/out at will - getting elected as a delegate right now is pretty much impossible without his stake voting for you....
The biggest problem I see with Bitshares right now is Bytemaster doesn't seem to acknowledge his opponents as having valid critcism. While it might sound harsh, Anonymint for instance says, Bytemaster is a Steve Jobs type control freak figure so he's not going to make anything remotely decentralized. This criticism has some merit because I honestly believe Bytemaster is designing a system with the assumption that he + this website will always exist. In reality, the system needs to be designed in a manner where it functions at maximum efficiency assuming neither this website or him exist at all. The system also needs to be designed in a way that assumes mass voter apathy and ineffective or non-existent delegate campaigning to find suitable candidates for security that fit game theory motives....
Quote from: monsterer on September 24, 2015, 08:03:00 pmQuote from: r0ach on September 24, 2015, 07:51:16 pm This makes me think he believes he's always going to be there annointing the delegates himself. Afterwards, talking about trying to lower delegate count to 17 on top of that so you only need an amount of people you can fit in one car to collude is just getting outrageous.The reality is that bytemaster controls enough stake to vote anyone in/out at will - getting elected as a delegate right now is pretty much impossible without his stake voting for you.I actually like your collateral proposal; I think it would be better to remove the requirement to burn 50K BTS to register as a delegate, and instead have that posted as collateral. Having a least one game theoretical aspect to becoming a delegate is better than none.Well I would definetely prefer a bidding war over burned funds than over collateral. Once it's burnt it's forever, collateral is just temporary. Would make people who burnt more funds to commit more seriously. An extra motivation for not letting their funds go to waste.
Quote from: r0ach on September 24, 2015, 07:51:16 pm This makes me think he believes he's always going to be there annointing the delegates himself. Afterwards, talking about trying to lower delegate count to 17 on top of that so you only need an amount of people you can fit in one car to collude is just getting outrageous.The reality is that bytemaster controls enough stake to vote anyone in/out at will - getting elected as a delegate right now is pretty much impossible without his stake voting for you.I actually like your collateral proposal; I think it would be better to remove the requirement to burn 50K BTS to register as a delegate, and instead have that posted as collateral. Having a least one game theoretical aspect to becoming a delegate is better than none.
This makes me think he believes he's always going to be there annointing the delegates himself. Afterwards, talking about trying to lower delegate count to 17 on top of that so you only need an amount of people you can fit in one car to collude is just getting outrageous.
Once it's burnt it's forever, collateral is just temporary.
I actually like your collateral proposal
I thing the average Joe is happy if he gets security wise a 2FA option and he gives a shit if it's more or less centralized...So whatever is your last decision about the number of witnesses make sure we have the 2FA future ready ASAP on all clients!It will be crucial for mass adoption. Don't delay it to long! Is it possible to have it on launch ready?https://github.com/cryptonomex/graphene/wiki/Wallet%202-Factor%20Authentication%20Protocol
Did I miss something? I thought in BTS 2.0 the number of wittnesses anyway depends on the amount of witnesses shareholders want AND can vote on (one can not choose more wittneses than once has selected to vote for).
A few years ago, I granted an interview with a newspaper in Singapore. The young female reporter was on time, and the interview got under way immediately. "My work does not seem to go anywhere,” she said quietly. “Everyone says that my novels are excellent, but nothing happens." “Someday, I would like to be a best-selling author like you, Do you have any suggestions?” “Yes, I do,” I said brightly. “A friend of mine here in Singapore runs a school that trains people to sell for many of the top corporations here in Singapore, and I think attending one of his courses would greatly enhance your career.”She stiffened. “ “I have a master’s degree in English Literature. Why would I go to school to learn to be a salesperson?"“Do you see this?” I said pointing to her notes. On her pad she had written: “Robert Kiyosaki, best-selling author.”“It says best-selling author, not best-writing author,” I said quietly. “I am a terrible writer,” I said. “You are a great writer. I went to sales school. You have a master’s degree." The world is filled with smart, talented, educated, and gifted people. We meet them every day. They are all around us. I am constantly shocked at how little talented people earn. “They are one skill away from great wealth.”
Quote from: bytemaster on September 22, 2015, 07:04:33 pmProducing blocks is only one part of security. Providing seed nodes is another. Attacking the P2P protocol is a third. Of the three of these, attacking the block producers is probably the most difficult because no one knows their IP address. Attacking the seed nodes on the other hand could completely disable new connections. More importantly, attacking the P2P protocol could temporarily completely disrupt all communication among witnesses. How would an attack on the P2P protocol and an attack on seed nodes work?
Producing blocks is only one part of security. Providing seed nodes is another. Attacking the P2P protocol is a third. Of the three of these, attacking the block producers is probably the most difficult because no one knows their IP address. Attacking the seed nodes on the other hand could completely disable new connections. More importantly, attacking the P2P protocol could temporarily completely disrupt all communication among witnesses.
Is cold storage an option somewhere in the new system?
The system you describe is what Nxt effectively uses... those with stake get to produce blocks.Very unreliable and ultimately far less security than by voting.
For starters I am not a fan of voting in general.I just haven't found anything that has fewer downsides.
Due to voter apathy, the system would most likely always run solely by collateral bids. At that point you have to think, why leave voting in at all? I feel Bytemaster is too attached to voting so I had to make the suggestion the way I did as a compromise solution. I would personally probably remove manual voting.
Quote from: monsterer on September 23, 2015, 08:31:20 pmAs I understand your proposal, this only makes a difference in terms of the visibility of delegates to vote for, rather than eligibility thereof?Given that, I can't see how attack cost is exponential, or even linear - it seems to be just a plain old constantMy original proposal was that the system would be automated to vote for highest collateral bids by default setting. It would only revert to the current system if users exercised the ability to manually vote. If you wanted that increased cost of attack, you would have to remove the ability to manually vote. I made the proposal the way I did because I'm not sure of everyone's consensus on removing manual voting, even though manual voting is probably a negative to leave in. Due to voter apathy, the system would most likely always run solely by collateral bids. At that point you have to think, why leave voting in at all? I feel Bytemaster is too attached to voting so I had to make the suggestion the way I did as a compromise solution. I would personally probably remove manual voting.
As I understand your proposal, this only makes a difference in terms of the visibility of delegates to vote for, rather than eligibility thereof?Given that, I can't see how attack cost is exponential, or even linear - it seems to be just a plain old constant
You still have a deterministic number of delegates. A flat rate collateral system only puts an upper limit on number of sybil nodes, while a bid system vastly increases the potential cost. If there were 101 delegates, I would need to perform a sybil and impersonate 51 units then outbid everyone else with all of them. Cost to attack becomes somewhat exponential instead of linear. If scaled to 500 delegates, even more so. My capital is also locked while running as a delegate, unusable for voting, so that locked capital can't be used to vote for each other either.
Quote from: r0ach on September 23, 2015, 06:44:09 pmI think the collateral bid system I suggested is far superior than the current system for dealing with that:https://bitsharestalk.org/index.php/topic,18584.0.htmlWhat makes your proposal any different from standard POS from an attack perspective?
I think the collateral bid system I suggested is far superior than the current system for dealing with that:https://bitsharestalk.org/index.php/topic,18584.0.html
I think we need to strike the right balance between these two:(1) our ability to prevent an attack(2) our ability to recover once the attack happens
https://github.com/d11e9/poi
https://www.reddit.com/r/ethereum/comments/3kscue/antisybil_protocol_under_development/
Quote from: luckybit on September 22, 2015, 08:44:31 pmYou can have proof of unique person while also keeping the identities anonymous.All we need is proof that someone unique is behind the digital signature. We don't need to know exactly who that someone is.No, you can't. This is an unsolved problem.
You can have proof of unique person while also keeping the identities anonymous.All we need is proof that someone unique is behind the digital signature. We don't need to know exactly who that someone is.
Perception is everything. Bitshares will be seen as centralized with only 17 witnesses, no matter how you cook up the narrative. Same how Bitshares had less dilution than Bitcoin, but the fear of it drove down the price more than the dilution rate itself.
One NODE does not have the power to rewrite the chain, one BLOCK signed by 50%+ of the stake at a given point in time has the power. Coordinating everyone to sign such a block is the real challenge.
Yesterday I started a discussion on Witness pay and the appropriate number of witnesses, but I fear that discussion actually This leaves only ONE argument that holds any water: perception matters more than reality. Just because we recognize the futility of hiding under our desks in the event of a nuclear attack does not mean that millions of kids don't feel more comfortable. So my counter-argument that the perceived importance of attracting the more-is-better audience is likely overestimated. Most people simply don't care so long as the system appears to work and is reliable.
5. It is similar to the number of validators Ripple has: https://validators.ripple.com/#/validators
QuoteImagine if at any time a block can be produced that is a consensus in itself and this block can build off of any block after the last checkpoint. Imagine that this block has the power to completely change the blockchain parameters including the elected witnesses. Imagine if a block containing the signatures of accounts that collectively vote for more than 50% of the stakeholders could overwrite a block produced by witnesses. Why bother with having more than 1 block producing node if one node has the power to completely rewrite the chain?
Imagine if at any time a block can be produced that is a consensus in itself and this block can build off of any block after the last checkpoint. Imagine that this block has the power to completely change the blockchain parameters including the elected witnesses. Imagine if a block containing the signatures of accounts that collectively vote for more than 50% of the stakeholders could overwrite a block produced by witnesses.
Quote from: luckybit on September 22, 2015, 08:03:57 pmWouldn't the network have the most security if witnesses are absolutely anonymous? You can't bribe or corrupt who you can't find and don't know.Known witnesses can be influenced over time. If the source of power is camouflaged then you have greater security than if it is obvious and easy to find.Its a double edged sword. You need to be relatively certain that they are not all the same person.
Wouldn't the network have the most security if witnesses are absolutely anonymous? You can't bribe or corrupt who you can't find and don't know.Known witnesses can be influenced over time. If the source of power is camouflaged then you have greater security than if it is obvious and easy to find.
“ Consider Bitcoin, it cannot even reach consensus on block size, so how would the network recover if all publically available mining pools were shutdown or compromised? All of a sudden it isn't profitable to solo-mine and there is no recourse. ”----------------------------------------------------------------------What if all the meth lab are shut down by police ? Would the drug addicts run out of meth ? No , bad chemists would build more to fill in the gaps . Mining pool are low cost , high reward business . If there is need for a mining pool , other people will build it up soon .