SlideShare a Scribd company logo

Some Thoughts On Bitcoin

Download as PPTX, PDF
Dan Kaminsky
Dan Kaminsky

Dan Kaminsky's thoughts on BitCoin

TechnologyEducation
1 of 22
Some Thoughts On Bitcoin Dan Kaminsky
If You’re Smart Leave the room right now “Bitcoin turns nerd forums into libertarian forums” This is true Bitcoin is a particularly effective DoS against security professionals Why?
Security Inversion Normal Code Looks like it might be OK up front Scratch the surface, it’s actually really bad BitCoin Looks really bad up front Scratch the surface, it’s actually surprisingly good We aren’t used to systems with these characteristics This code has the mark of having been audited by People Like Us And quants
The basic summary BitCoin is absolutely not anonymous BitCoin clearly does not scale In the long term It does work for now though This isn’t 0day stuff, this is basically declared almost entirely up front
What Is BitCoin A really strange use of cryptography “Strange” is not a sufficient, interesting, or even vaguely competent way to mark a system as insecure It’s a decent way to say “this is not the normal way things are put together” Two systems mated together A peer to peer network that does a best case effort to synchronize data (loose “transactions” and solved “blocks”) across as many nodes as possible A Chinese Lottery that canonicalizes subsets of synchronized data, using the difficulty of finding partial hash collisions
The Basic Idea (In A Nutshell) 1) I’m hearing about all these transactions going on – Alice is paying Bob, Bob is paying Charlie, etc 2) I hash all the transactions I’ve heard about, with some random information, and the hash of the last time someone did that, until there’s a partial collision First n bits equals 0 N is automatically determined based on how hard it has to be for one block to be found about every 10 minutes This is a block 3) I send everyone my “block” – transactions plus hash of previous block plus random data. This gives me 50 bitcoins (for now). 4) I can now “sign over” those bitcoins, from my private key, to other people’s (or my) public key. 5) Repeat until there’s lots of people with lots of BitCoins Possibly purchased instead of “mined”
Interesting Traits The basic concept is actually relatively solid Assuming partial collisions are predictably hard to find Assuming ECDSA works Basic Idea 1: Money can’t be created from nothing – hashing is needed Basic Idea 2: Transactions can’t be blocked or reversed by a central entity – “is none” It makes security engineers talk like monetary scientists That’s sort of OK, economists pretend to do that too… Seriously, that’s silly– lets just talk tech, OK?
Epic Scalability Quote 1(https://en.bitcoin.it/wiki/Scalability) “The core BitCoin network can scale to very high transaction rates assuming a distributed version of the node software is built. This would not be very complicated.” Because there’s nothing easier to do, than make a system distributed This is totally not one of the Hard Problems Of Computer Science By “Distributed” they mean “Centralized” WhyBitCoin is uniquely hard to audit It claims the advantages of its present architecture, and its future architecture, while rebutting the disadvantages of one with the advantages of the other Instead of saying, “We don’t do that”, they say “Something else could do that”
Scalability Costs: Network Bandwidth “Let's assume an average rate of 2000tps, so just VISA…. Shifting 60 gigabytes of data in, say, 60 seconds means an average rate of 1 gigabyte per second, or 8 gigabits per second.” :O
Up and Down Going up “Let's take 4,000 tps as starting goal. Obviously if we want BitCoin to scale to all economic transactions worldwide, including cash, it'd be a lot higher than that, perhaps more in the region of a few hundred thousand transactions/sec.”  And the need to be able to withstand DoS attacks (which VISA does not have to deal with) implies we would want to scale far beyond the standard peak rates. TB/sec Going down Even at 1/100th of VISA, that’s still 10MB/sec
Are There Future Optimizations? “Because nodes are very likely to have already seen a transaction when it was first broadcast, this means the size of a block to download would be trivial (80 bytes + 32 bytes per transaction). If a node didn't see a transaction broadcast, it can ask the connected node to provide it.” Potential 50% savings! Could go from 1GB to 500MB/sec
What About Storage? In order to validate a transaction, you need all blocks up to the present one Joining BitCoin today == downloading 200+MB history all the way to the start of time That only increases “ A 3 terabyte hard disk costs less than $200 today and will be cheaper still in future, so you'd need one such disk for every 21 days of operation (at 1gb per block).” So you get to participate directly in BitCoin, at the low low cost of $200 a month Assuming zero costs of running a storage array
CPU?  ”A network node capable of keeping up with VISA would need roughly 50 cores + whatever is used for mining (done by separate machines/GPUs).” In the long run, that’s what it takes to participate (assuming no DoS, which would take 5000 cores) (You actually need to validate all historical transactions too)
OK, so you end up with supernodes and normal nodes What are the characteristics of supernodes? They’re banks “Welcome to the new boss, who looks suspiciously like the old boss” I’m not saying banks are bad or anything The “peer to peer” model of BitCoin eventually goes away; as soon as the thing gets big, the entire thing switches to a banking model
Reality of Banking As the network gets bigger, fewer and fewer nodes can be banks Only so many parties can exchange a gigabyte a second. The 50% threshold is inevitable BitCoin banks still can’t gin up money BitCoin banks can’t forcibly take money Unless they hold the private keys for the user, which they might BitCoin banks can refuse to accept blocks with “undesirable” transactions Don’t need 50% -- just need enough to inconvenience 50% to accept your opinion Can block undesirable transactions Can recompute blocks w/o certain transactions (reversal) This offers a host of ugly semantics
Already Suffering This BitCoin’s security model is base on the idea that nobody can control more than 50% of the network Exact PetaFlop count unclear, but >40 and <200 Weird metric, given that crypto uses integer operations when FLOPS are floating point Several times more than largest supercomputer Pools are breaking this #1 pool has 41% #2 pool has 30% “Security through ostracism” to Pitchfork Security DDoS against #1 pool
Bad Choice Of Hash Standard Existing model can be accelerated massively with GPUs Just 2x SHA-256 Could have been bcrypt or the like, in which performance does not scale with pure processing speed Basically adds memory and serialization dependencies Wasn’t implemented, so now we have shortages of GPUs…
What About Anonymity? The full worldwide transaction history is stored and shared, forever and ever Everyone has names like: 1MQbbWUi2scKdZ4KtMMSUSvVmxi6XtEeaC How do you know who you’re paying? You don’t Everyone is encouraged to make up new names for every transaction Actually how you can tell why someone is paying you Out of band, you tell someone “to pay me, pay this address” When that address is paid, you can dereference to your own private transaction Do lots of random names equal anonymity?
Names Are Linkable (see blockexplorer.com) All FROM sources are effectively the same person (or linked IDs) Almost all TO destinations are payee and payor
Reality of Anonymity As BitCoin “fights fragmentation”, it merges identities As it merges identities, it…well, merges identities There are other models of using BitCoin in which money goes in, stays, and then presumably goes back out Again, it’s amazing how much this looks like a bank. Not saying banks are bad, just don’t tell me BitCoin doesn’t morph into the banking system
So, with this all being said BitCoin is working, today That counts for a lot It will not work this way forever It will not have today’s security properties forever If you define the loss of today’s properties a serious loss of value, then there are Ponzi-ish characteristics in plain view I’m not going to make that claim, however
Conclusion This was just a quick summary BitCoin is actually well designed, if you accept that anonymity and scaling forces the entire present model to be shifted into something that effectively looks like banking I’ll talk about more another time

Recommended

Medicinal Mushroom Cultivation
Medicinal Mushroom CultivationMedicinal Mushroom Cultivation
Medicinal Mushroom CultivationGBPUA&T, Pantnagar, (US Nagar)
 
Signs and symptoms of plant disease
Signs and symptoms of plant diseaseSigns and symptoms of plant disease
Signs and symptoms of plant diseasevaishalidandge3
 
Tea Disease Management
Tea Disease Management Tea Disease Management
Tea Disease Management Mahmudul Hasan
 
Scope and imp. of mushroom
Scope and imp. of mushroomScope and imp. of mushroom
Scope and imp. of mushroomORION KING
 
production profile of cardamom.pptx
production profile of cardamom.pptxproduction profile of cardamom.pptx
production profile of cardamom.pptxArunKumar863577
 
Grafting & budding
Grafting & buddingGrafting & budding
Grafting & buddingHORTIPEDIA INDIA
 
Plant Diseases 170312 V1
Plant Diseases 170312 V1Plant Diseases 170312 V1
Plant Diseases 170312 V1Plantlet Culture.com
 
Production technology of kokum
Production technology of kokumProduction technology of kokum
Production technology of kokumannamalai university
 

Recommended

Medicinal Mushroom Cultivation
Medicinal Mushroom CultivationMedicinal Mushroom Cultivation
Medicinal Mushroom CultivationGBPUA&T, Pantnagar, (US Nagar)
 
Signs and symptoms of plant disease
Signs and symptoms of plant diseaseSigns and symptoms of plant disease
Signs and symptoms of plant diseasevaishalidandge3
 
Tea Disease Management
Tea Disease Management Tea Disease Management
Tea Disease Management Mahmudul Hasan
 
Scope and imp. of mushroom
Scope and imp. of mushroomScope and imp. of mushroom
Scope and imp. of mushroomORION KING
 
production profile of cardamom.pptx
production profile of cardamom.pptxproduction profile of cardamom.pptx
production profile of cardamom.pptxArunKumar863577
 
Grafting & budding
Grafting & buddingGrafting & budding
Grafting & buddingHORTIPEDIA INDIA
 
Plant Diseases 170312 V1
Plant Diseases 170312 V1Plant Diseases 170312 V1
Plant Diseases 170312 V1Plantlet Culture.com
 
Production technology of kokum
Production technology of kokumProduction technology of kokum
Production technology of kokumannamalai university
 
Cultivars of Kniphofia
Cultivars of KniphofiaCultivars of Kniphofia
Cultivars of KniphofiaRoyal_Horticultural_Society
 
Sugarcane Processing Technologies by Akram Hossain
Sugarcane Processing Technologies by Akram HossainSugarcane Processing Technologies by Akram Hossain
Sugarcane Processing Technologies by Akram HossainAkram Hossain
 
Cardamom
CardamomCardamom
CardamomDhanya AJ
 
Potato
PotatoPotato
Potatokaslinsas
 
Honey Production & Processing
Honey Production & ProcessingHoney Production & Processing
Honey Production & ProcessingMD SALMAN ANJUM
 
Cocoa
CocoaCocoa
Cocoavinodshinde354
 
Polyembryony
Polyembryony Polyembryony
Polyembryony Dr. Harwinder Kaur
 
Seed prod cole crops
Seed prod cole cropsSeed prod cole crops
Seed prod cole cropsTEJU C M
 
weed identification Guide
weed identification Guideweed identification Guide
weed identification GuideDaleysturf
 
Carrot Production Technology
Carrot Production TechnologyCarrot Production Technology
Carrot Production TechnologyAzhar Khan
 
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...Mr.Allah Dad Khan
 
Structure and reproduction in agaricus
Structure and reproduction in agaricusStructure and reproduction in agaricus
Structure and reproduction in agaricusAliAbbasAslam
 
Symptoms of plant disease (symptomology)
Symptoms of plant disease (symptomology)Symptoms of plant disease (symptomology)
Symptoms of plant disease (symptomology)Mohit Meena
 
Value addition in mango
Value addition in mango Value addition in mango
Value addition in mango SOUMENKARAK
 
SYNGAMY IN PLANT
SYNGAMY IN PLANTSYNGAMY IN PLANT
SYNGAMY IN PLANTGanesh Sidar
 
Tobacco ( Nicotiana spp. )
Tobacco ( Nicotiana spp. )Tobacco ( Nicotiana spp. )
Tobacco ( Nicotiana spp. )ManishSoni170
 
2-Introduction to fruit Sci.ppt
2-Introduction to fruit Sci.ppt2-Introduction to fruit Sci.ppt
2-Introduction to fruit Sci.pptBoingPee
 
Types of fruits
Types of fruitsTypes of fruits
Types of fruitskarthisivasamy
 
Processing and value addition of medicinal and herbal crops
Processing and value addition of medicinal and herbal cropsProcessing and value addition of medicinal and herbal crops
Processing and value addition of medicinal and herbal cropsRamabhau Patil
 
31. Cotton.pdf
31. Cotton.pdf31. Cotton.pdf
31. Cotton.pdfDr. Hem Chander
 
Black Ops of TCP/IP 2011 (Black Hat USA 2011)
Black Ops of TCP/IP 2011 (Black Hat USA 2011)Black Ops of TCP/IP 2011 (Black Hat USA 2011)
Black Ops of TCP/IP 2011 (Black Hat USA 2011)Dan Kaminsky
 
Bitcoin story of programable currency
Bitcoin story of programable currencyBitcoin story of programable currency
Bitcoin story of programable currencyHossam Soffar
 

More Related Content

What's hot

Sugarcane Processing Technologies by Akram Hossain
Sugarcane Processing Technologies by Akram HossainSugarcane Processing Technologies by Akram Hossain
Sugarcane Processing Technologies by Akram HossainAkram Hossain
 
Honey Production & Processing
Honey Production & ProcessingHoney Production & Processing
Honey Production & ProcessingMD SALMAN ANJUM
 
Seed prod cole crops
Seed prod cole cropsSeed prod cole crops
Seed prod cole cropsTEJU C M
 
weed identification Guide
weed identification Guideweed identification Guide
weed identification GuideDaleysturf
 
Carrot Production Technology
Carrot Production TechnologyCarrot Production Technology
Carrot Production TechnologyAzhar Khan
 
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...Mr.Allah Dad Khan
 
Structure and reproduction in agaricus
Structure and reproduction in agaricusStructure and reproduction in agaricus
Structure and reproduction in agaricusAliAbbasAslam
 
Symptoms of plant disease (symptomology)
Symptoms of plant disease (symptomology)Symptoms of plant disease (symptomology)
Symptoms of plant disease (symptomology)Mohit Meena
 
Value addition in mango
Value addition in mango Value addition in mango
Value addition in mango SOUMENKARAK
 
Tobacco ( Nicotiana spp. )
Tobacco ( Nicotiana spp. )Tobacco ( Nicotiana spp. )
Tobacco ( Nicotiana spp. )ManishSoni170
 
2-Introduction to fruit Sci.ppt
2-Introduction to fruit Sci.ppt2-Introduction to fruit Sci.ppt
2-Introduction to fruit Sci.pptBoingPee
 
Processing and value addition of medicinal and herbal crops
Processing and value addition of medicinal and herbal cropsProcessing and value addition of medicinal and herbal crops
Processing and value addition of medicinal and herbal cropsRamabhau Patil
 

What's hot (20)

Cultivars of Kniphofia
Cultivars of KniphofiaCultivars of Kniphofia
Cultivars of Kniphofia
 
Sugarcane Processing Technologies by Akram Hossain
Sugarcane Processing Technologies by Akram HossainSugarcane Processing Technologies by Akram Hossain
Sugarcane Processing Technologies by Akram Hossain
 
Cardamom
CardamomCardamom
Cardamom
 
Potato
PotatoPotato
Potato
 
Honey Production & Processing
Honey Production & ProcessingHoney Production & Processing
Honey Production & Processing
 
Cocoa
CocoaCocoa
Cocoa
 
Polyembryony
Polyembryony Polyembryony
Polyembryony
 
Seed prod cole crops
Seed prod cole cropsSeed prod cole crops
Seed prod cole crops
 
weed identification Guide
weed identification Guideweed identification Guide
weed identification Guide
 
Carrot Production Technology
Carrot Production TechnologyCarrot Production Technology
Carrot Production Technology
 
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...
Bottle gourd diseases A lecture on ToT training of FFS By Mr Allah Dad Kha...
 
Structure and reproduction in agaricus
Structure and reproduction in agaricusStructure and reproduction in agaricus
Structure and reproduction in agaricus
 
Symptoms of plant disease (symptomology)
Symptoms of plant disease (symptomology)Symptoms of plant disease (symptomology)
Symptoms of plant disease (symptomology)
 
Value addition in mango
Value addition in mango Value addition in mango
Value addition in mango
 
SYNGAMY IN PLANT
SYNGAMY IN PLANTSYNGAMY IN PLANT
SYNGAMY IN PLANT
 
Tobacco ( Nicotiana spp. )
Tobacco ( Nicotiana spp. )Tobacco ( Nicotiana spp. )
Tobacco ( Nicotiana spp. )
 
2-Introduction to fruit Sci.ppt
2-Introduction to fruit Sci.ppt2-Introduction to fruit Sci.ppt
2-Introduction to fruit Sci.ppt
 
Types of fruits
Types of fruitsTypes of fruits
Types of fruits
 
Processing and value addition of medicinal and herbal crops
Processing and value addition of medicinal and herbal cropsProcessing and value addition of medicinal and herbal crops
Processing and value addition of medicinal and herbal crops
 
31. Cotton.pdf
31. Cotton.pdf31. Cotton.pdf
31. Cotton.pdf
 

Similar to Some Thoughts On Bitcoin

Black Ops of TCP/IP 2011 (Black Hat USA 2011)
Black Ops of TCP/IP 2011 (Black Hat USA 2011)Black Ops of TCP/IP 2011 (Black Hat USA 2011)
Black Ops of TCP/IP 2011 (Black Hat USA 2011)Dan Kaminsky
 
Bitcoin story of programable currency
Bitcoin story of programable currencyBitcoin story of programable currency
Bitcoin story of programable currencyHossam Soffar
 
Bitcoin on Blockchain: Money 2.0
Bitcoin on Blockchain: Money 2.0Bitcoin on Blockchain: Money 2.0
Bitcoin on Blockchain: Money 2.0Salih Cenap Baydar
 
Bitcoin Breakthrough Training Guide.
Bitcoin Breakthrough Training Guide.Bitcoin Breakthrough Training Guide.
Bitcoin Breakthrough Training Guide.KepharsKunda
 
Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...
Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...
Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...Bitcoin Wallet Canada
 
14 Jan17- Nullmeets -Blockchain concept decoded by Ninad Sarang
14 Jan17- Nullmeets -Blockchain concept decoded by Ninad Sarang14 Jan17- Nullmeets -Blockchain concept decoded by Ninad Sarang
14 Jan17- Nullmeets -Blockchain concept decoded by Ninad SarangNinad Sarang
 
What is the mechanism of Bitcoin?
What is the mechanism of Bitcoin? What is the mechanism of Bitcoin?
What is the mechanism of Bitcoin? Muhammad Mansha
 
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdfTrading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdfShreeharshaHegde7
 
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdfTrading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdfLeokas123
 
Bitcoin the_insider_guide_to_cryptocurrency_
Bitcoin the_insider_guide_to_cryptocurrency_Bitcoin the_insider_guide_to_cryptocurrency_
Bitcoin the_insider_guide_to_cryptocurrency_waseem nawaz
 
A beginners Guide to NFTs.pdf
A beginners Guide to NFTs.pdfA beginners Guide to NFTs.pdf
A beginners Guide to NFTs.pdfAkash Agrawal
 
Blockchain 101 - public, tokenized blockchains
Blockchain 101 - public, tokenized blockchainsBlockchain 101 - public, tokenized blockchains
Blockchain 101 - public, tokenized blockchainsBrett Colbert
 
BlockChain for the Banker
BlockChain for the BankerBlockChain for the Banker
BlockChain for the BankerBohdan Szymanik
 
Introduction to Bitcoin & Blockchain @ darefest16
Introduction to Bitcoin & Blockchain @ darefest16Introduction to Bitcoin & Blockchain @ darefest16
Introduction to Bitcoin & Blockchain @ darefest16Sam Wouters
 
BlockChain BreakDown
BlockChain BreakDownBlockChain BreakDown
BlockChain BreakDownChris Black
 
Bitcoin All The Way
Bitcoin All The WayBitcoin All The Way
Bitcoin All The WayAdmin SBS
 

Similar to Some Thoughts On Bitcoin (20)

Black Ops of TCP/IP 2011 (Black Hat USA 2011)
Black Ops of TCP/IP 2011 (Black Hat USA 2011)Black Ops of TCP/IP 2011 (Black Hat USA 2011)
Black Ops of TCP/IP 2011 (Black Hat USA 2011)
 
Bitcoin story of programable currency
Bitcoin story of programable currencyBitcoin story of programable currency
Bitcoin story of programable currency
 
Bitcoin on Blockchain: Money 2.0
Bitcoin on Blockchain: Money 2.0Bitcoin on Blockchain: Money 2.0
Bitcoin on Blockchain: Money 2.0
 
Bitcoin Breakthrough Training Guide.
Bitcoin Breakthrough Training Guide.Bitcoin Breakthrough Training Guide.
Bitcoin Breakthrough Training Guide.
 
Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...
Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...
Is It Safe To Invest In Bitcoin? Check Out How To Easily Buy Bitcoin In Canad...
 
Cryptocurrency
CryptocurrencyCryptocurrency
Cryptocurrency
 
14 Jan17- Nullmeets -Blockchain concept decoded by Ninad Sarang
14 Jan17- Nullmeets -Blockchain concept decoded by Ninad Sarang14 Jan17- Nullmeets -Blockchain concept decoded by Ninad Sarang
14 Jan17- Nullmeets -Blockchain concept decoded by Ninad Sarang
 
Bitcoins introduction
Bitcoins introduction Bitcoins introduction
Bitcoins introduction
 
Bitcoin cash
Bitcoin cashBitcoin cash
Bitcoin cash
 
What is the mechanism of Bitcoin?
What is the mechanism of Bitcoin? What is the mechanism of Bitcoin?
What is the mechanism of Bitcoin?
 
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdfTrading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdf
 
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdfTrading-CryptoCurrency-Advanced-Trading-Strategies.pdf
Trading-CryptoCurrency-Advanced-Trading-Strategies.pdf
 
Bitcoin the_insider_guide_to_cryptocurrency_
Bitcoin the_insider_guide_to_cryptocurrency_Bitcoin the_insider_guide_to_cryptocurrency_
Bitcoin the_insider_guide_to_cryptocurrency_
 
MythsandMisnomers
MythsandMisnomersMythsandMisnomers
MythsandMisnomers
 
A beginners Guide to NFTs.pdf
A beginners Guide to NFTs.pdfA beginners Guide to NFTs.pdf
A beginners Guide to NFTs.pdf
 
Blockchain 101 - public, tokenized blockchains
Blockchain 101 - public, tokenized blockchainsBlockchain 101 - public, tokenized blockchains
Blockchain 101 - public, tokenized blockchains
 
BlockChain for the Banker
BlockChain for the BankerBlockChain for the Banker
BlockChain for the Banker
 
Introduction to Bitcoin & Blockchain @ darefest16
Introduction to Bitcoin & Blockchain @ darefest16Introduction to Bitcoin & Blockchain @ darefest16
Introduction to Bitcoin & Blockchain @ darefest16
 
BlockChain BreakDown
BlockChain BreakDownBlockChain BreakDown
BlockChain BreakDown
 
Bitcoin All The Way
Bitcoin All The WayBitcoin All The Way
Bitcoin All The Way
 

More from Dan Kaminsky

Bugs Aren't Random
Bugs Aren't RandomBugs Aren't Random
Bugs Aren't RandomDan Kaminsky
 
Wo defensive trickery_13mar2017
Wo defensive trickery_13mar2017Wo defensive trickery_13mar2017
Wo defensive trickery_13mar2017Dan Kaminsky
 
Move Fast and Fix Things
Move Fast and Fix ThingsMove Fast and Fix Things
Move Fast and Fix ThingsDan Kaminsky
 
A Technical Dive into Defensive Trickery
A Technical Dive into Defensive TrickeryA Technical Dive into Defensive Trickery
A Technical Dive into Defensive TrickeryDan Kaminsky
 
I Want These * Bugs Off My * Internet
I Want These * Bugs Off My * InternetI Want These * Bugs Off My * Internet
I Want These * Bugs Off My * InternetDan Kaminsky
 
Yet Another Dan Kaminsky Talk (Black Ops 2014)
Yet Another Dan Kaminsky Talk (Black Ops 2014)Yet Another Dan Kaminsky Talk (Black Ops 2014)
Yet Another Dan Kaminsky Talk (Black Ops 2014)Dan Kaminsky
 
Chicken Chicken Chicken Chicken
Chicken Chicken Chicken ChickenChicken Chicken Chicken Chicken
Chicken Chicken Chicken ChickenDan Kaminsky
 
Showing How Security Has (And Hasn't) Improved, After Ten Years Of Trying
Showing How Security Has (And Hasn't) Improved, After Ten Years Of TryingShowing How Security Has (And Hasn't) Improved, After Ten Years Of Trying
Showing How Security Has (And Hasn't) Improved, After Ten Years Of TryingDan Kaminsky
 
Domain Key Infrastructure (From Black Hat USA)
Domain Key Infrastructure (From Black Hat USA)Domain Key Infrastructure (From Black Hat USA)
Domain Key Infrastructure (From Black Hat USA)Dan Kaminsky
 
232 md5-considered-harmful-slides
232 md5-considered-harmful-slides232 md5-considered-harmful-slides
232 md5-considered-harmful-slidesDan Kaminsky
 
Dmk sb2010 web_defense
Dmk sb2010 web_defenseDmk sb2010 web_defense
Dmk sb2010 web_defenseDan Kaminsky
 
Bh us-02-kaminsky-blackops
Bh us-02-kaminsky-blackopsBh us-02-kaminsky-blackops
Bh us-02-kaminsky-blackopsDan Kaminsky
 

More from Dan Kaminsky (20)

Bugs Aren't Random
Bugs Aren't RandomBugs Aren't Random
Bugs Aren't Random
 
Wo defensive trickery_13mar2017
Wo defensive trickery_13mar2017Wo defensive trickery_13mar2017
Wo defensive trickery_13mar2017
 
Move Fast and Fix Things
Move Fast and Fix ThingsMove Fast and Fix Things
Move Fast and Fix Things
 
A Technical Dive into Defensive Trickery
A Technical Dive into Defensive TrickeryA Technical Dive into Defensive Trickery
A Technical Dive into Defensive Trickery
 
Chicken
ChickenChicken
Chicken
 
I Want These * Bugs Off My * Internet
I Want These * Bugs Off My * InternetI Want These * Bugs Off My * Internet
I Want These * Bugs Off My * Internet
 
Yet Another Dan Kaminsky Talk (Black Ops 2014)
Yet Another Dan Kaminsky Talk (Black Ops 2014)Yet Another Dan Kaminsky Talk (Black Ops 2014)
Yet Another Dan Kaminsky Talk (Black Ops 2014)
 
Chicken Chicken Chicken Chicken
Chicken Chicken Chicken ChickenChicken Chicken Chicken Chicken
Chicken Chicken Chicken Chicken
 
Black ops 2012
Black ops 2012Black ops 2012
Black ops 2012
 
Showing How Security Has (And Hasn't) Improved, After Ten Years Of Trying
Showing How Security Has (And Hasn't) Improved, After Ten Years Of TryingShowing How Security Has (And Hasn't) Improved, After Ten Years Of Trying
Showing How Security Has (And Hasn't) Improved, After Ten Years Of Trying
 
Domain Key Infrastructure (From Black Hat USA)
Domain Key Infrastructure (From Black Hat USA)Domain Key Infrastructure (From Black Hat USA)
Domain Key Infrastructure (From Black Hat USA)
 
Interpolique
InterpoliqueInterpolique
Interpolique
 
232 md5-considered-harmful-slides
232 md5-considered-harmful-slides232 md5-considered-harmful-slides
232 md5-considered-harmful-slides
 
Confidence web
Confidence webConfidence web
Confidence web
 
Dmk sb2010 web_defense
Dmk sb2010 web_defenseDmk sb2010 web_defense
Dmk sb2010 web_defense
 
Interpolique
InterpoliqueInterpolique
Interpolique
 
Black opspki 2
Black opspki 2Black opspki 2
Black opspki 2
 
Bh us-02-kaminsky-blackops
Bh us-02-kaminsky-blackopsBh us-02-kaminsky-blackops
Bh us-02-kaminsky-blackops
 
Bh eu 05-kaminsky
Bh eu 05-kaminskyBh eu 05-kaminsky
Bh eu 05-kaminsky
 
Bh eu 05-kaminsky
Bh eu 05-kaminskyBh eu 05-kaminsky
Bh eu 05-kaminsky
 

Recently uploaded

Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentationphoebematthew05
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024The Digital Insurer
 

Recently uploaded (20)

Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort ServiceHot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentation
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024
 

Some Thoughts On Bitcoin

  • 1. Some Thoughts On Bitcoin Dan Kaminsky
  • 2. If You’re Smart Leave the room right now “Bitcoin turns nerd forums into libertarian forums” This is true Bitcoin is a particularly effective DoS against security professionals Why?
  • 3. Security Inversion Normal Code Looks like it might be OK up front Scratch the surface, it’s actually really bad BitCoin Looks really bad up front Scratch the surface, it’s actually surprisingly good We aren’t used to systems with these characteristics This code has the mark of having been audited by People Like Us And quants
  • 4. The basic summary BitCoin is absolutely not anonymous BitCoin clearly does not scale In the long term It does work for now though This isn’t 0day stuff, this is basically declared almost entirely up front
  • 5. What Is BitCoin A really strange use of cryptography “Strange” is not a sufficient, interesting, or even vaguely competent way to mark a system as insecure It’s a decent way to say “this is not the normal way things are put together” Two systems mated together A peer to peer network that does a best case effort to synchronize data (loose “transactions” and solved “blocks”) across as many nodes as possible A Chinese Lottery that canonicalizes subsets of synchronized data, using the difficulty of finding partial hash collisions
  • 6. The Basic Idea (In A Nutshell) 1) I’m hearing about all these transactions going on – Alice is paying Bob, Bob is paying Charlie, etc 2) I hash all the transactions I’ve heard about, with some random information, and the hash of the last time someone did that, until there’s a partial collision First n bits equals 0 N is automatically determined based on how hard it has to be for one block to be found about every 10 minutes This is a block 3) I send everyone my “block” – transactions plus hash of previous block plus random data. This gives me 50 bitcoins (for now). 4) I can now “sign over” those bitcoins, from my private key, to other people’s (or my) public key. 5) Repeat until there’s lots of people with lots of BitCoins Possibly purchased instead of “mined”
  • 7. Interesting Traits The basic concept is actually relatively solid Assuming partial collisions are predictably hard to find Assuming ECDSA works Basic Idea 1: Money can’t be created from nothing – hashing is needed Basic Idea 2: Transactions can’t be blocked or reversed by a central entity – “is none” It makes security engineers talk like monetary scientists That’s sort of OK, economists pretend to do that too… Seriously, that’s silly– lets just talk tech, OK?
  • 8. Epic Scalability Quote 1(https://en.bitcoin.it/wiki/Scalability) “The core BitCoin network can scale to very high transaction rates assuming a distributed version of the node software is built. This would not be very complicated.” Because there’s nothing easier to do, than make a system distributed This is totally not one of the Hard Problems Of Computer Science By “Distributed” they mean “Centralized” WhyBitCoin is uniquely hard to audit It claims the advantages of its present architecture, and its future architecture, while rebutting the disadvantages of one with the advantages of the other Instead of saying, “We don’t do that”, they say “Something else could do that”
  • 9. Scalability Costs: Network Bandwidth “Let's assume an average rate of 2000tps, so just VISA…. Shifting 60 gigabytes of data in, say, 60 seconds means an average rate of 1 gigabyte per second, or 8 gigabits per second.” :O
  • 10. Up and Down Going up “Let's take 4,000 tps as starting goal. Obviously if we want BitCoin to scale to all economic transactions worldwide, including cash, it'd be a lot higher than that, perhaps more in the region of a few hundred thousand transactions/sec.”  And the need to be able to withstand DoS attacks (which VISA does not have to deal with) implies we would want to scale far beyond the standard peak rates. TB/sec Going down Even at 1/100th of VISA, that’s still 10MB/sec
  • 11. Are There Future Optimizations? “Because nodes are very likely to have already seen a transaction when it was first broadcast, this means the size of a block to download would be trivial (80 bytes + 32 bytes per transaction). If a node didn't see a transaction broadcast, it can ask the connected node to provide it.” Potential 50% savings! Could go from 1GB to 500MB/sec
  • 12. What About Storage? In order to validate a transaction, you need all blocks up to the present one Joining BitCoin today == downloading 200+MB history all the way to the start of time That only increases “ A 3 terabyte hard disk costs less than $200 today and will be cheaper still in future, so you'd need one such disk for every 21 days of operation (at 1gb per block).” So you get to participate directly in BitCoin, at the low low cost of $200 a month Assuming zero costs of running a storage array
  • 13. CPU?  ”A network node capable of keeping up with VISA would need roughly 50 cores + whatever is used for mining (done by separate machines/GPUs).” In the long run, that’s what it takes to participate (assuming no DoS, which would take 5000 cores) (You actually need to validate all historical transactions too)
  • 14. OK, so you end up with supernodes and normal nodes What are the characteristics of supernodes? They’re banks “Welcome to the new boss, who looks suspiciously like the old boss” I’m not saying banks are bad or anything The “peer to peer” model of BitCoin eventually goes away; as soon as the thing gets big, the entire thing switches to a banking model
  • 15. Reality of Banking As the network gets bigger, fewer and fewer nodes can be banks Only so many parties can exchange a gigabyte a second. The 50% threshold is inevitable BitCoin banks still can’t gin up money BitCoin banks can’t forcibly take money Unless they hold the private keys for the user, which they might BitCoin banks can refuse to accept blocks with “undesirable” transactions Don’t need 50% -- just need enough to inconvenience 50% to accept your opinion Can block undesirable transactions Can recompute blocks w/o certain transactions (reversal) This offers a host of ugly semantics
  • 16. Already Suffering This BitCoin’s security model is base on the idea that nobody can control more than 50% of the network Exact PetaFlop count unclear, but >40 and <200 Weird metric, given that crypto uses integer operations when FLOPS are floating point Several times more than largest supercomputer Pools are breaking this #1 pool has 41% #2 pool has 30% “Security through ostracism” to Pitchfork Security DDoS against #1 pool
  • 17. Bad Choice Of Hash Standard Existing model can be accelerated massively with GPUs Just 2x SHA-256 Could have been bcrypt or the like, in which performance does not scale with pure processing speed Basically adds memory and serialization dependencies Wasn’t implemented, so now we have shortages of GPUs…
  • 18. What About Anonymity? The full worldwide transaction history is stored and shared, forever and ever Everyone has names like: 1MQbbWUi2scKdZ4KtMMSUSvVmxi6XtEeaC How do you know who you’re paying? You don’t Everyone is encouraged to make up new names for every transaction Actually how you can tell why someone is paying you Out of band, you tell someone “to pay me, pay this address” When that address is paid, you can dereference to your own private transaction Do lots of random names equal anonymity?
  • 19. Names Are Linkable (see blockexplorer.com) All FROM sources are effectively the same person (or linked IDs) Almost all TO destinations are payee and payor
  • 20. Reality of Anonymity As BitCoin “fights fragmentation”, it merges identities As it merges identities, it…well, merges identities There are other models of using BitCoin in which money goes in, stays, and then presumably goes back out Again, it’s amazing how much this looks like a bank. Not saying banks are bad, just don’t tell me BitCoin doesn’t morph into the banking system
  • 21. So, with this all being said BitCoin is working, today That counts for a lot It will not work this way forever It will not have today’s security properties forever If you define the loss of today’s properties a serious loss of value, then there are Ponzi-ish characteristics in plain view I’m not going to make that claim, however
  • 22. Conclusion This was just a quick summary BitCoin is actually well designed, if you accept that anonymity and scaling forces the entire present model to be shifted into something that effectively looks like banking I’ll talk about more another time