Vitalik's 7 questions

in #eos6 years ago (edited)

Vitalik asked 7 questions. Here's my answers.

1. Bitmain and affiliated pools now have ~53% of all bitcoin hashpower. Isn't this a really big problem?

For those who are steeped in 51% thinking, it is a breach. But for those who are more thoughtful, the number was always just a number. Miners always are encouraged by the cash flow they need to buy the energy. So just having "more hashrate" doesn't change the fact that you need to keep paying your bills, and given the size of these operations, the bills will keep coming for a while.

What 51% means is that you can technically put in a dodgy transaction. Fine, but you still face several barriers, the primary of which is - everyone will know. As soon as it is known that there are dodgy transactions, the price will drop. Or the chain forks. See, bills, above, and now the clanger is that Bitmain needs a transaction that increases its cash flow overall, over time, so the price has to go up. What dodgy transaction is going to cause the price to go up?

So, there is little danger here - for BTC. Where there is danger is if there is a more complicated system, such as BTC having the same mining rigs as BCH. But that's a post for another day.

2. Why aren't there any useful large-scale applications yet?

I've been presenting and writing on this for over 6 months. The answer is this - businesses are scared to deploy their capital because of 3-Security and 7-Governance, below.

3. Why are there not yet good solutions to account security? When will the problem of account hacks and thefts be solved?

The problem is that security is best seen as a holistic approach. It effects all elements of the technical system. This is a hard lesson for security people to learn, some never learn it, but the basic flaw in infosec thinking is this:

Infosec people think that security needs a technical solution, delivered to humans - but no: Security is of the humans, and security needs a human solution, with technical elements.

In particular, blockchain security thinking is blinkered. It thinks blockchain is secure because the chain is secure, and the chain is secure because e.g., 1-Hashpower above. But actually that's nonsense, because the only security result that matters is, does the human have the value at the end? And the answer is no - we're looking at something like a 30% loss rate over all for blockchain, which is worse than mattresses. It's also worse than banks, unless you include bailouts and QE stealth bailouts.

Another conclusion of this is that because of the holistic and human-led nature of security, it is far better to do this as a vertical not an economy: Apple, Steemit/Bitshares, Corda and other permissioned products have a much easier time because security begins at the application and ends at the mind. EOS was the first open entry chain that had a chance to break this, but see 7-Governance, below. Ethereum and Bitcoin never stood a chance, again, because of 7-Governance.

4. How can decentralized apps work well even with 5-10 second blockchain latency?

Risk Management. Also called zero-conf in bitcoin world. But basically this is a solvable problem with good design.

What is apparently not an easy thing to solve is reliable interfacing, and in particular the price of access. All major chains have shown that there are artificial and natural bottlenecks that make access a hit & miss affair because the value needed to launch the transaction cannot be reliably predicted.

Interestingly, EOS has introduced RAM pricing as a one-sided market which has caused leveraged speculation and blocked access due to high prices. In much the same way as gas or full mempool has afflicted the other main chains.

Under these circumstances, big decentralised apps will not fly on chains with speculator-driven pricing models.

5. PoW is burning billions of dollars per year, even more than all scams and thefts combined," Ethereum's co-founder asked, "Isn't this a big tragedy?

What people are really miffed about is that in times of global warming, we shouldn't be burning fossil fuels on yet another white boy's toy.

But it needs to be seen in context - as miners shift to (northern) hydro power and (equatorial) solar, it's less of an issue. If I buy a square kilometer of solar cells and put it on an equatorial spare patch of land, the externalities or sideeffects of this are economically nil. Or at least, efficient.

Whatever you think the problem is here, it isn't a tragedy.

Then, inefficiency. Last figures I saw were that Ethereum was consuming 11% per annum and Bitcoin 4% per annum. That's pretty expensive for a payment system, but it isn't so bad compared to credit card (2% per tx) or Paypal (4.2% per tx). DPOS promises to be much cheaper, if we can get the governance safely working and past the RAM pricing variability.

6. What are the centralization risks in proof of stake?

It's simple. If one person has too much stake, they can push things around. And they will. Curiously, this isn't a problem with PoW.

7. Given how EOS governance has turned into an epic fail, doesn't this mean that all on-chain governance including DAOs is fundamentally flawed? How can any DAO deal with bribe attacks, plutocrats and other risks?

This is tough to understand because Vitalik is looking at it from the perspective of a non-community. Let me explain from the point of view of Elinor Ostrom.

Elinor-Ostrom.jpg

Governance is of the people. So when there are problems with the governance of EOS - and admittedly there are - the problems are of the people. Hence, if EOS governance has failed, and that's not a foregone conclusion although titilating to those on other chains, it will be primarily because of intervention, see 6-Centralisation above, and collapse of support - actions by the people.

This is a fundamental limitation with the system of governance. Because it is of the people, it can only move forward and operate with support from the people. If there are detractors, they can undermine it. If they undermine it, it becomes "choice" for some and not for others. Then it fails, because criminals claim the choice side.

Governance is the choice of a community that define themselves on their choice of governance.

Then, if the governance is failing, it is because the community isn't - it is not a community. That's by definition, because a community is defined only loosely by how we handle ourselves in the positive. A community is defined primarily by how we handle ourselves, and how we all agree to handle ourselves in the negative - in dispute, in difficulties, at war, in disaster. Refer to Ostrom for more here.

Ethereum doesn't have a community, as seen with the DAO, with the scams, with the desperation of many to follow the leader (which to his credit, Vitalik recognises). If people are not agreed on the negative, then ... they're not a community, they are a set of self-interested persons with some overlap of interest that makes everyone money in the short term. But that's not a community.

And Ethereum can never be a community because the people that access the chain will never agree to lose their sovereignty over their own particular patch of interests. It goes further than that, as Ethereum and Bitcoin champion the process of win-lose, but more on that in The Governed Blockchain.

So Vitalik's question is really, can we build a community on blockchain? And the answer is, start with the principles of community, and support your community. If EOS governance fails, which it hasn't yet, it will be because the principles were breached and the community wasn't supported.

Endnote, yes the title got munged with another post. Sorry 'bout dat!

Sort:  

WARNING - The message you received from @sanjugangber is a CONFIRMED SCAM!
DO NOT FOLLOW any instruction and DO NOT CLICK on any link in the comment!

For more information about this scam, read this post:
https://steemit.com/steemit/@arcange/phishing-site-reported-steem-link-premium

If you find my work to protect you and the community valuable, please consider to upvote this warning or to vote for my witness.

I disagree with your first point. If you have 51%, you can do various attacks that won't crash the price(which actually may not matter if you are in for the long term). This is why I like dPOS where the control is in 21 actors. In Bitcoin and Ethereum, 5 pools basically decide everything.

As an example of attacks, you could target other miners: build your own fork but include all the transactions from other forks. This means that you are not going for the double-spending attack (which is not my favourite attack actually) but you are going for the mining rewards. Users are inconvenienced but they don't loose money.

For the whole cryptospace, the N°2 should be the most concerning. With all the money and people involved, did we achieve anything? I do believe that cryptocurrencies and blockchain are not just a technology but more of a movement. For me the success is not to replace everything with cryptocurrency, blockchains, token, decentralization... The success will be to put pressure on centralized systems, so that they give back more power to users or rethink their models.

A single person can own multiple bp nodes.

I agree. Comparing to PoW, it's the same as a pool having different identities.
I don't think you can do better than making it easier to have more block producers/miners.

If you're right, we'll see Bitmain do that, perhaps.

Who knows?! Coming from security fields, I am more paranoiac than most. I am wondering now if there were a massive crackdown at cryptocurrencies, who will survive ? I would bet GPU-mined coins would die first because you can re-use them.

Is your attack transparent or hidden? How does the market respond?

The attack should be transparent enough which is why I try to spare the market by re-including transactions from concurrent miners. But I have no idea how the market would respond and I don't think we saw this attack live.

@iang i think it's a big problem that antpool and other bitmain pools own so much PoW-Power and are in many crypto currencies. Even as an EOS block producer.

They mine currencies with ASICs already when no one knows about it. When Monero changed its PoW-algorithm, the difficulty went down so much you can be sure that the ASICs from Bitmain were used to mine monero without the publicity knowing about it. This is why I don't trust them. Do you agree?

I also think Ostrom's novel approach on common resources is very important for blockchain governance system.

Vitalik clearly exposes the truth: He is in fact a fallible human after all.