And indeed, as
far as I’ve seen none of the stolen BitCoin have actually been
spent in any way. There’s actually an entire ecosystem
around BitCoin – web sites, “mining pools”, and the like – all of
which would have to stamp their approval on a transaction
involving the obviously stolen funds, none of which have
seemingly been asked to.
They really are very cute.
CONCENTRATION OF AUTHORITY?
Much thanks to Michael Tiffany and Ash Kalb, with whom many of these issues were discussed.
By all extant metrics in security system review, this system should have failed instantaneously, at every possible layer.
BitCoin was simply developed under a different reality.
That is what I thought, as well.
First of all, yes. Money changes things.
BitCoin is actually an exploit against network complexity. Not financial networks, or computer networks, or social networks. Networks themselves.
But all that was obvious two years ago, when my fifteen point list of obvious likely bugs was systematically destroyed by a codebase that quite frankly knew better.
But the cost of adding yourself to the BitCoin network is not exponential.
The “official truth” of what money has changed hands is really in the hands of less than five or ten organizations, and that’s being generous. It’s somewhat the case that if those actors really anger people, the flareup could create a sort of cryptographically enforced uprising whereby a new set of actors takes majority control of ground truth.
Yes, the cost increases over time. BitCoin has something called a Blockchain, which is a list of all transactions that have ever occurred, ever. You can think of this as an account ledger, containing the content of every account, everywhere. It’s a lot of data, and it gets bigger every day, and every first class participant of BitCoin must have all of it in order for the system to work.
We are right, but we are wrong.
You’re probably thinking, there’s no way that can work. Eventually, that becomes too much data, and BitCoin eventually devolves into the present state of affairs with specially invested institutions forming “the banking community”.
This was very exciting.
They didn’t ignore the engineering reality, they absorbed it and innovated ridiculously.
There’s just a deep network of “hearts and minds” that can keep that BitCoin Ledger alive.
And that’s interesting, because possession of stolen property is and will forever be a criminal offense, and nothing is more provably stolen than the cryptographic taint of a transaction with money from a stolen account.
It’s the fact that, if it was truly threatened, the cost to add more nodes — people participating in the Bitcoin experiment — is much lower than the cost to prevent the addition of new nodes.
My mistake two years ago was thinking too much like an engineer, and not enough like certain Business Insider readers.
What’s important to realize is that it’s not the size of the base that matters.
But BitCoin’s profoundly cool design allows one to track the thieves.
What is obvious now?
And, to be fair, it has failed at other layers – BitCoin thefts have occurred, in the meta-code that surrounds the core technology itself.
But the power of the masses is only shrinking. BitCoin made a technical choice during its initial design that allowed some people to do far more work than others, simply by having a graphical accelerator or even by designing custom hardware. This is the precise capability that large financial actors and nation states have above and beyond the private sector’s capacity to produce, and it’s not obvious that even the BitCoin developers have the political ability to override a technical choice that would also harm the technology’s largest (public) players.
It is a fairly open secret that almost all systems can be hacked, somehow. It is a less spoken of secret that such hacking has actually gone quite mainstream. Everybody hacks … sometimes.
I actually have no idea what will happen when these chickens come home to roost. Right now, everyone wins – hoarding BitCoins is probably the optimum strategy even if you didn’t steal them, people who were robbed move on with their life in normal circumstances, and the ecosystem can pretend things are better now.
To be quite specific: BitCoin is a rejection of the regulation of monetary flows.
I provide these details to make it clear – the BitCoin experiment is not complete, there is actually quite a bit of interesting work to be done and it’s not at all clear what the future holds for the technology.
The cost of regulating any network actually goes up exponentially with the number of nodes that must be monitored (you need a hierarchy of systems to perform ‘guard labor’ to make sure systems are behaving within declared parameters).
There have been some major thefts – the BitFloor grab at 24,000 BTC, the Linode cloud robbery at 46,703 BTC, even the single user-steal at 25,000BTC.
But I am not here to discuss the raging question that is — what do we do about the fact that we’ve built a global economy on a system optimized for moving pictures of cats?
The stakes weren’t obscured, and the problem wasn’t someone else’s.
BitCoin operates in a domain that is Too Big To Regulate. I predicted the number of systems monitoring Bitcoin transactions would fall — and it did, by about 75% last time I checked.
But the core technology actually works, and has continued to work, to a degree not everyone predicted. Time to enjoy being wrong. What the heck is going on here?
That all being said, BitCoin has not actually won the day.
Two years ago, I tried to hack BitCoin.
When $50K of BitCoins is stolen today, and is $500K of BitCoin five years from now, every last cent of that filthy lucre can be monitored with acute cryptographic precision until the end of time.
Dan Kaminsky has been a noted security researcher for over a decade, and has spent his career advising Fortune 500 companies such as Cisco, Avaya, and Microsoft.
The system fails, but when? Storage and bandwidth are themselves getting hilariously inexpensive. You can’t just ignore time (like all those other programming languages).
Seriously though, as an engineer and as a hacker (and I promise you, these are two very different things), BitCoin surprised me. Here was a system with the following properties:
Read the original article on DanKaminsky.com. Copyright 2013.
A lot of the slop that permeates most software is much less likely to be present when the developer is aware that, yes, a single misplaced character really could End The World. The reality of most software development is that the consequences of failure are simply nonexistent. Software tends not to kill people and so we accept incredibly fast innovation loops because the consequences are tolerable and the results are astonishing.
Bitcoin's Price Breaks Through Key Support As Stocks Go South
Bitcoin (BTC) has dropped out of the tight trading range seen recently, paralleling losses in the U.S. stock markets.
The leading cryptocurrency, which was trapped in a triangle pattern (narrowing
Chip Maker TSMC Forecasts Weaker Crypto Mining Demand in Q4
Chip-making giant Taiwan Semiconductor Manufacturing Company (TSMC) has predicted weak demand for processors from cryptocurrency miners for the fourth quarter.
TSMC, the primary supplier for crypto
Crypto Exchange Huobi Now Lets Users Swap Between 4 Different Stablecoins
Huobi, the Singapore-based cryptocurrency exchange, has just launched a new solution that enables users to switch between different types of fiat currency-pegged cryptocurrencies, or stablecoins, in e
Bitcoin Price Eyes Triangle Breakout Above $6.4K
Bitcoin (BTC) is again trading in a narrowing price range above $6,400, but the lateral trading may soon give way to a rally, according to technical studies.
The price consolidation comes after Mon
Security firm G4S Has Launched a Crypto Custody Service
U.K.-based security services company G4S now offers a crypto custody service aimed to protect investors' holdings of digital assets.
Announcing the move in a press release on Oct. 16, the firm said
Gates Foundation Partners With Former Ripple CTO's Blockchain Project
The Bill and Melinda Gates Foundation has partnered with blockchain startup Coil as part of its mission to provide payment services for the unbanked.
The news comes via a tweet from Miller Abel, th
Mt Gox's Bitcoin Creditors Have 4 Days to Submit Rehabilitation Claims
Clients of the defunct crypto exchange Mt. Gox must submit claims for trapped funds by Oct. 22.
As previously reported by CoinDesk, the exchange first opened up the claims process in August, follow
Crypto Exchange Coinbase Open-Sources Its Security Scaling Tool
U.S.-based cryptocurrency exchange Coinbase is making a recently developed automated security scaling tool available to the public.
Called Salus, after the Roman the goddess of safety and well-bein