By Bitcoinist - 1 år siden - Læsetid: 3 minutter
Her er Bitcoin Og Ethereums fejl, ifølge denne Pentagon-undersøgelse
Sikkerhedsfirmaet Trail of Bits skrev en indberette on potential vulnerabilities that can allegedly affect the Bitcoin (BTC) and Ethereum (ETH) blockchain. Called “Are Blockchains Decentralized?”, the report was funded by the U.S. Department of Defense via its Defense Advanced Research Projects Agency (DARPA).
Relateret læsning | Svar fra Tether CTO på rapporter om shorting af USDT fra hedgefonde
The report is focused on Bitcoin and Ethereum but approaches other blockchain-based platforms using Proof-of-Work (PoW) and Proof-of-Stake (PoS) and Byzantine Fault Tolerant consensus protocols in general.
Undersøgelsen konkluderede, at disse netværks kryptografiske komponenter er "robuste", og hævder, at der findes sårbarheder i blockchain-implementeringen og konsensusprotokollerne. Med andre ord mener sikkerhedsfirmaet, at blockchain kan udnyttes, men at den kryptografi, der understøtter dem, er stærk.
Trail of Bits arrived at the following conclusions during their investigation: Bitcoin, Ethereum, and other blockchains have a “privileged set of entities” with the power to change their transactions, unencrypted traffic, nodes running old “vulnerable” software, and others.
Generelt hævder rapporten, at blockchain-netværk ikke er decentraliserede, og at de er sårbare over for en række potentielle angrebsvektorer og forstyrrelser fra eksterne aktører. De påpegede især, at nuværende blockchain-netværk mangler "Sybil-omkostninger", hvilket betyder, at de "let" kan angribes:
For a blockchain to be optimally distributed, there must be a so-called Sybil cost. There is currently no known way to implement Sybil costs in a permissionless blockchain like Bitcoin or Ethereum without employing a centralized trusted third party (TTP)Until a mechanism for enforcing Sybil costs without a TTP is discovered, it will be almost impossible for permissionless blockchains to achieve satisfactory decentralization.
Det er overflødigt at sige, at kryptosamfundet har afvist konklusionerne af disse resultater. De to større kryptovalutaer af markedsværdi BTC og ETH blev grundlagt på ideen om at skabe decentraliserede, tillidsløse, gennemsigtige og åbne systemer. Udfordringerne i betænkningen hævder grundlæggende, at de har fejlet i den henseende.
Er Bitcoin And Ethereum Truly Decentralized?
Rapporten er meget kontroversiel på grund af dens resultater, nøjagtigheden af dens konklusioner, og fordi den modtog finansiering fra det amerikanske Pentagon, har dette lands regeringsembedsmænd fremsat fjendtlige udtalelser over for kryptoindustrien og kryptovalutaer.
The CTO and Co-founder at Swan Bitcoin Yan Pritzker and its Editor-in-Chief Tomer Strolight faktatjekket the investigation and arrived at discrepancies. Their arguments were in support of Bitcoin that “most blockchains are centralized to varying degrees (…)”.
The report from Pritzker and Strolight studies Trail of Bits claims one by one. First, they said Bitcoin lacks a “privileged set of entities” capable of changing its code, as it’s the user running the nodes that decide which software code they run. They add:
Even if we focus on the most popular Bitcoin klient, bitcoin-core, the claim that four people control the source code is also FALSE (…). Many other blockchains employ a forced-upgrade mechanism such as Ethereum’s difficulty bombs. In those cases, we find the claim to be largely TRUE (…).
Derudover fremhævede Pritzker og Strolight forskellen mellem minepuljer og minearbejdere for at påpege, at førstnævnte ikke kan forstyrre netværket, som den DARPA-finansierede rapport siger. Med hensyn til BTC's Sybil-angrebsomkostninger hævder rapporten følgende, der bemærker, hvordan kryptovalutaen blev oprettet med det formål at forhindre denne angrebsvektor til sit netværk:
The invention of Nakamoto Consensus (i.e. Bitcoin’s reliance on proof of work for source of truth) was literally designed to prevent Sybil attacks. Satoshi wanted any participant to be able to add a block, but choosing one user at random would be open to individuals pretending to be many users. But work cannot be faked (…).
Relateret læsning | Ethereums energiforbrug ser et kraftigt fald, da minedriftsindtjening falder
I skrivende stund registrerer BTCs pris 3% i de sidste 24 timer og handles til $20,000.
BTC's kurstendenser til nedadgående på 4-timers diagrammet. Kilde: BTCUSD TradingviewOprindelig kilde: Bitcoiner