current topics in bitcoin
play

Current Topics in Bitcoin 2018-01-18 Jonas Nick - PowerPoint PPT Presentation

Sep 08, 2022 •128 likes •469 views

Current Topics in Bitcoin 2018-01-18 Jonas Nick jonasd.nick@gmail.com https://nickler.ninja @n1ckler Peer-to-Peer Cash Ideal: Internet money without central control and anonymous I've been working on a new electronic cash system that's

  1. Current Topics in Bitcoin 2018-01-18 Jonas Nick jonasd.nick@gmail.com https://nickler.ninja @n1ckler

  2. Peer-to-Peer Cash ● Ideal: Internet money without central control and anonymous I've been working on a new electronic cash system that's fully peer-to-peer, with no trusted third party. [...] Satoshi Nakamoto --------------------------------------------------------------------- The Cryptography Mailing List

  3. Why? Resist state control ● In practice: failed previous attempts ● It’s digital, global, open to anyone, no registration, no KYC ● No trusted third party ○ programmable money ○ censorship resistance ○ permissionless innovation ○ maximum robustness ○ uncorruptable ● The software is free, anyone can understand, modify and improve it

  5. A toy currency ● Start with arbitrary bits that you call coins from now on ● Use cryptographic signatures to make forging messages impossible “I, Alice, hereby transfer coins xyz to Bob” Alice Bob Carol double spend: “I, Alice, hereby transfer coins xyz to Carol” ● A central bank could tell which transaction came first.

  6. A toy currency ● Decentralize control: Shared ledger ○ Every participant keeps a record of the transaction history ○ This works as long you know all the participants and trust a majority. ● But in open peer-to-peer systems ○ It is impossible to know all the participants. ○ It is impossible to meaningfully count votes. ● Want: dynamic membership of the participant set

  7. Bitcoin ● Proof of Work : small proof that some computation was done 1. A transaction history is a list of valid transactions 2. A Bitcoin node uses the history with the most proof of work 3. Providing PoW (mining) to a history is rewarded with coins in that history

  8. Mining ● History is represented as a chain of blocks. ○ Blocks contain transactions. ● Miners create blocks by collecting transactions. ● And attempt to solve the PoW function. ● Blocks are mined on expectancy every 10 minutes. ● The miner gets a mining reward. Tx1 Tx1 Tx1 PoW PoW PoW Tx2 Tx2 Tx2 ... Tx3 Tx3 Tx3 Tx4 Tx4 Tx4 Miner +1 Miner +1 Miner +1

  9. Bitcoin ● Proof of Work : small proof that some compution was done 1. A transaction history is a list of valid transactions 2. A Bitcoin node uses the history with the most proof of work 3. Providing PoW (mining) to a history is rewarded with coins in that history Tx1 Tx1 Tx1 PoW PoW PoW Tx2 Tx2 Tx2 ... Tx3 Tx3 Tx3 Miner +1 Miner X +1 Miner +1 Tx5 PoW Tx6 Tx7 Miner Y +1

  10. Bitcoin ● Proof of Work : small proof that some compution was done 1. A transaction history is a list of valid transactions 2. A Bitcoin node uses the history with the most proof of work 3. Providing PoW (mining) to a history is rewarded with coins in that history Effect: ● Consensus on a history. ● Incentivizes mining on a history. ● Incentivizes mining on the history with the most proof of work.

  11. Basic Concepts

  12. Transactions Inputs & Outputs Input Input output output output Transaction 2 Transaction 1 Transaction output: tuple of recipient and value input: tuple of txid, vout and signature

  13. Unspent Transaction Outputs (UTXOs) ● Alice owns 2 coins = Alice can spend transaction outputs whose values sum to 2 Transaction 1: 0.5 Transaction 2: 1.5

  14. Spending Outputs 0.5 1.0 1.0 1.5

  15. Script Evaluation: Pay-to-pubkey (P2PK) <pubKey> OP_CHECKSIG <sig> = <sig> <pubKey> OP_CHECKSIG + = true

  16. Multisig 2 of 3 Multisig Output Use cases: Wallet security, Escrow, Micropayment Channels scriptPubKey: <m> <pubKey_1> … <pubKey_n> <n> OP_CHECKMULTISIG scriptSig: <sig_1> … <sig_m>

  17. Current Topics

  18. Fake Satoshi

  19. statoshi.info Average (segwit) transaction: 6.3 EUR (at 10,000 EUR/BTC)

  21. Payment Channels Setup: Alice creates transaction with 10 bitcoin to a 2-of-2 multisig with Bob Alice 9.9 Alice pays by signing tx and sending it directly to Bob Bob 0.1 Alice 9.8 Bob 0.2 Closing the Channel: Alice 9.7 Bob signs tx and broadcast Bob 0.3 to miners

  22. Lightning Protocl ● Lightning = payment channels + routing https://explorer.acinq.co

  23. Lightning ● Lightning = payment channels + routing ● Payment flow: ○ 1st payment: open a direct channel with the merchant: 1 Bitcoin transaction ○ N-th payment: use the lightning network to route the payment: No transaction ○ When capacity exceeded: close the channel ● c-lightning operations ○ Create channel: fundchannel <peer_id > <amount> ○ Receiver: invoice ○ Sender: pay <invoice> ○ Close channel close <peer_id> ● Low fees, micro payments, instant confirmations ● Status: Spec finalized, running on testnet, UX iterations, lots of PoCs are created

  24. store.blockstream.com github.com/ElementsProject/lightning-charge

  25. Segregated witness (Segwit) ● malleability fix and block size increase activated last year statoshi.info

  26. Native segwit transactions ● “Native”: Change transaction format to reduce size ● Goes along with address format change ○ old: 1FJJdX5g1DX7FRxJBhJNTDrRjTeihhsJLs ○ bech32: bc1qnntcclssmtuvfw2te7q49lzvw67cfvpzxger4j ○ Why? Easier to type and pronounce, better error detection ● Status: is being rolled out

  27. Schnorr Signatures ● Different signature scheme, right now it’s ECDSA ● Simpler algorithm and stronger security proof, but was patented ● Allows batch verification, scriptless scripts (key aggregation) and signature aggregation

  28. Schnorr Signatures: Key Aggregation ● n-of-n OP_CHECKMULTISIG ○ scriptPubKey: <n> <pubKey_1> … <pubkey_n> <n> OP_CHECKMULTISIG ○ scriptSig: <sig_1> … <sig_m> ● OP_SCHNORR ○ Idea (simplified) ■ Pubkey = pubkey_1 + pubkey_2 + … pubkey_n ■ Sig = sig_1 + sig_2 … + sig_n ○ scriptPubKey: <pubKey> OP_SCHNORR ○ scriptSig: <sig> ● Result: saves space, looks like any other payment ● Generalization: scriptless scripts ○ allows more smart contracts in crypto-currencies that don’t have any native smart contract support (lightning, atomic swaps)

  29. Schnorr Signatures: Signature Aggregation ● Rolled out with Schnorr signatures ● Allows adding up unrelated signatures ● Result is creating one signature per transaction instead of one per input ● Reduces transaction size, Incentivizes coinjoin 0.5 1.0 1.0 1.5

  30. Merkelized abstract syntax tree (MAST) ● Given a script with branches (OP_IF …. OP_ELSE … OP_ENDIF) ○ For example cooperative vs. uncooperative case in Lightning ● Only state the branches that are executed

  31. MAST + Key aggregation ● Lightning script before ○ scriptPubKey: OP_IF 2 <pubkey_1> <pubkey_2> 2 OP_CHECKMULTISIG OP_ELSE … OP_ENDIF ○ scriptSig: 1 <sig_1> <sig_2> ● Lightning script now ○ scriptPubKey: <merkleroot> OP_MERKLEBRANCHVERIFY ○ scriptSig: <sig> < <pubkey> OP_SCHNORR> <merkleproof> ● Result: smaller and looks like any other payment

  32. Confidential Transactions ● Hides amounts in transactions ○ Verifier: input_amounts = output_amounts ○ Verifier: Enc(input_amounts) = Enc(output_amounts) ● Used in elementsproject.org sidechain, Monero, Mimblewimble ● Allows for Confidential Assets ● Feasibility of Bitcoin softfork? ● Bulletproofs: reduce size massively

  33. Conclusion ● Bitcoin is a peer to peer currency ● Run your own full node ● Proof of Work isn’t going away any time soon ● Lots novel of research, engineering and experimentation is happening ● Do something! ● Slides: https://nickler.ninja/slides/2018-Frankfurt.pdf 2018-01-18 Jonas Nick jonasd.nick@gmail.com https://nickler.ninja @n1ckler

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin work? The characteris5cs of Bitcoin WHAT IS BITCOIN Bitcoin is a form of digital currency, created and held electronically. No one controls it.

839 views • 17 slides
Bitcoin &amp; RAFT Distributed Systems Nikita Borisov Topics for Today Finish Bitcoin

Bitcoin &amp; RAFT Distributed Systems Nikita Borisov Topics for Today Finish Bitcoin

Bitcoin &amp; RAFT Distributed Systems Nikita Borisov Topics for Today Finish Bitcoin Broadcast mechanism Overview of MP2 Raft consensus Bitcoin broadcast Need to broadcast: Transactions to all nodes, so they can be

453 views • 33 slides
Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin

Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin

Cryptocurrency Technologies Mechanics of Bitcoin Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin Scripts Bitcoin Blocks The Bitcoin Network Limitations and Improvements Mechanics of

695 views • 33 slides
Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim

Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim

Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim , Jinwoo Shin*, Yongdae Kim* *KAIST, Sungkyunkwan University 1 Governance conflict The number of Bitcoin transaction per month Bad scala bility

731 views • 46 slides
Bitcoin and Nakamoto Consensus Distributed Systems, Spring 2020 Nikita Borisov Topics for Today

Bitcoin and Nakamoto Consensus Distributed Systems, Spring 2020 Nikita Borisov Topics for Today

Bitcoin and Nakamoto Consensus Distributed Systems, Spring 2020 Nikita Borisov Topics for Today Replicated State Machines and Log Consensus Bitcoin Consensus approach Transaction broadcast MP2 overview Announcements

358 views • 31 slides
Bitcoin as a Platform We have built Bitcoin. What can we build on top of it? Commitments

Bitcoin as a Platform We have built Bitcoin. What can we build on top of it? Commitments

Cryptocurrency Technologies Bitcoin as a Platform Bitcoin as a Platform We have built Bitcoin. What can we build on top of it? Commitments Token tracking Multiparty lotteries Public randomness Prediction markets A fine stew

714 views • 38 slides
Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed

Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed

Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed Computing Group www.disco.ethz.ch What is Bitcoin? What is Bitcoin? + What is Bitcoin? = + Whats it worth? USD / Bitcoin exchange price 300

752 views • 48 slides
Bitcoin Mining The Task of Bitcoin Miners Mining Hardware Energy Consumption &amp;

Bitcoin Mining The Task of Bitcoin Miners Mining Hardware Energy Consumption &amp;

Cryptocurrency Technologies Bitcoin Mining Bitcoin Mining The Task of Bitcoin Miners Mining Hardware Energy Consumption &amp; Ecology Mining Pools Mining Incentives and Strategies Recap: Bitcoin Miners Bitcoin depends on

821 views • 35 slides
Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers are not trusted: may be greedy or corrupt Each peer knows about all bitcoins and transactions Transaction (sender -&gt; receiver): sender

958 views • 23 slides
Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers

Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers

Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers Joseph Bonneau CITP, Princeton Thanks to Andrew Miller, Arvind Narayanan, Jeremy Clark, Joshua Kroll, Ed Felten Part I: Bitcoin in 6 easy steps

752 views • 32 slides
26: 010: 680 26: 010: 680 Current Topics in Current Topics in Accounting Research Accounting

26: 010: 680 26: 010: 680 Current Topics in Current Topics in Accounting Research Accounting

26: 010: 680 26: 010: 680 Current Topics in Current Topics in Accounting Research Accounting Research Dr. Peter R. Gillett Associate Professor Department of Accounting, Business Ethics and Information Systems Rutgers Business School

1.27k views • 60 slides
Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing

Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing

Cryptocurrency Technologies Bitcoin and Anonymity Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing Decentralized Mixing Zerocoin and Zerocash Tor and the Silk Road Bitcoin and Anonymity

524 views • 39 slides
Regulation of Bitcoin Jerry Brito Coin Center coincenter.org Is Bitcoin regulated? Is Bitcoin

Regulation of Bitcoin Jerry Brito Coin Center coincenter.org Is Bitcoin regulated? Is Bitcoin

Regulation of Bitcoin Jerry Brito Coin Center coincenter.org Is Bitcoin regulated? Is Bitcoin regulated? The so far unregulated digital currency has courted controversy because of its volatile value and its popularity among

1.17k views • 51 slides
Distributed Systems Security Topics Byzan7ne fault resistance BitCoin Course Wrap Up

Distributed Systems Security Topics Byzan7ne fault resistance BitCoin Course Wrap Up

Distributed Systems Security Topics Byzan7ne fault resistance BitCoin Course Wrap Up Fault Tolerance We have so far assumed fail-stop failures (e.g., power failures or system crashes) In other words, if the server is

739 views • 54 slides
nix-bitcoin robust Lightning nodes for hackers github.com/fort-nix/nix-bitcoin 2019-06-01

nix-bitcoin robust Lightning nodes for hackers github.com/fort-nix/nix-bitcoin 2019-06-01

nix-bitcoin robust Lightning nodes for hackers github.com/fort-nix/nix-bitcoin 2019-06-01 @n1ckler A smart home A Bitcoin node A lonely datacenter Robustness Do you trust binaries from some cache or do you build from source? Do

411 views • 29 slides
Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin?

Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin?

Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin? Bitcoin is a cryptocurrency: a digital currency whose rules are enforced by cryptography and not by a trusted party (e.g., bank) Core ideal: avoid

1.02k views • 36 slides
Electricity markets material GEOS 24705 / ENST 24705 / ENSC21100 History of electricity sector

Electricity markets material GEOS 24705 / ENST 24705 / ENSC21100 History of electricity sector

Electricity markets material GEOS 24705 / ENST 24705 / ENSC21100 History of electricity sector Electric sector history from individual private companies Fisk Street power staEon, Chicago, 1903 Commonwealth Edison Chicago first

979 views • 58 slides
Towards Blockchain-based Auditable Storage &amp; Secure Sharing of IoT Data Hossein Shafagh ,

Towards Blockchain-based Auditable Storage &amp; Secure Sharing of IoT Data Hossein Shafagh ,

Towards Blockchain-based Auditable Storage &amp; Secure Sharing of IoT Data Hossein Shafagh , Lukas Burkhalter, Anwar Hithnawi, Simon Duquennoy Summer School on Real-world Crypto and privacy, June 2017 Trust in the Internet How things started

384 views • 10 slides
Lecture 3: Scaling Bitcoin Andrew Miller SJTU 2017 Winter School on Cryptocurrency and

Lecture 3: Scaling Bitcoin Andrew Miller SJTU 2017 Winter School on Cryptocurrency and

Lecture 3: Scaling Bitcoin Andrew Miller SJTU 2017 Winter School on Cryptocurrency and Blockchain Technologies - Jan 14, 2017 3.2 transactions per second VISA: 2000 transactions/sec on average, (2015) peak rate of 56,000 transactions/sec

1k views • 79 slides
Machine Learning 10-601 Tom M. Mitchell Machine Learning Department Carnegie Mellon University

Machine Learning 10-601 Tom M. Mitchell Machine Learning Department Carnegie Mellon University

Machine Learning 10-601 Tom M. Mitchell Machine Learning Department Carnegie Mellon University February 23, 2015 Today: Readings: Bishop chapter 8, through 8.2 Graphical models Mitchell chapter 6 Bayes Nets:

834 views • 25 slides
Aspects of topicality in the use of demonstratives expressions in German and Russian Olga

Aspects of topicality in the use of demonstratives expressions in German and Russian Olga

29. DGfS Jahrestagung, Siegen, 27.02.2007 Aspects of topicality in the use of demonstratives expressions in German and Russian Olga Krasavina krasavio@rz.hu-berlin.de Christian Chiarcos chiarcos@ling.uni-potsdam.de Demonstratives

592 views • 30 slides
Using Dependency Grammar Features in Whole Sentence Maximum Entropy Language Model for Speech

Using Dependency Grammar Features in Whole Sentence Maximum Entropy Language Model for Speech

Using Dependency Grammar Features in Whole Sentence Maximum Entropy Language Model for Speech Recognition Teemu Ruokolainen, Tanel Alum ae, Marcus Dobrinkat October 8th, 2010 1 / 16 Contents Whole sentence language modeling Dependency

304 views • 16 slides
Cu and Cd sulphides for photovoltaic applications Tommaso Baroni*, Francesco Di Benedetto, Andrea

Cu and Cd sulphides for photovoltaic applications Tommaso Baroni*, Francesco Di Benedetto, Andrea

Surface X-Ray Diffraction study of a bi-layer junction based on Cu and Cd sulphides for photovoltaic applications Tommaso Baroni*, Francesco Di Benedetto, Andrea Giaccherini, Enrico Berretti, Francesca Russo, Annalisa Guerri, Massimo Innocenti,

125 views • 10 slides
The Light Channel of the CRESST Experiment Anja Tanzke Max-Planck-Institute for Physics

The Light Channel of the CRESST Experiment Anja Tanzke Max-Planck-Institute for Physics

The Light Channel of the CRESST Experiment Anja Tanzke Max-Planck-Institute for Physics Technische Universit at M unchen May 9th 2014 Table of Contents Introduction to the CRESST Experiment 1 Light Channel 2 Foil 3 Reflectivity of

330 views • 31 slides

More recommend