8/ PoS security "comes from putting up economic value-at-loss”. And since you arbitrarily decide on the stake/penalty value, you claim this is asymmetric.
-
Show this thread
-
9/ However, this “value-at-loss” is not truly at risk until a later point in time. It is *not 100% committed* unlike PoW. Your threat of punishment only works if and only if attackers remain on the same chain.
1 reply 1 retweet 9 likesShow this thread -
10/ Sure, you could put an arbitrary value on the penalty and claim that’s it’s a huge wall of defense, but because of the “weak subjectivity” vulnerability, there’s a small backdoor to the side of the castle, making the hugeness of the wall irrelevant.
1 reply 0 retweets 7 likesShow this thread -
11/ I want to take the opportunity to put away the misguided idea of achieving better cost of attack/cost of defense ratio than 1:1.
@TuurDemeester also addressed this in his critique of PoShttps://medium.com/@tuurdemeester/critique-of-buterins-a-proof-of-stake-design-philosophy-49fc9ebb36c6 …1 reply 1 retweet 11 likesShow this thread -
12/ Take public-cryptography for example. One might cite it as an example of asymmetric attack/defense ratio.
1 reply 0 retweets 2 likesShow this thread -
13/ However, it is only asymmetric from the point of view of the owner of the private key, and dependent on the fact that this key is forever kept secret. In other words, public-key cryptography security is *relative*.
2 replies 0 retweets 1 likeShow this thread -
14/ You can defeat the asymmetry by somehow forcefully switching the roles: become the owner yourself.
1 reply 0 retweets 1 likeShow this thread -
15/ The true cost analysis of attacking public-key cryptography must include social engineering attacks: kidnapping, extortion, torture. You can make attacking cost much lower than the cost of brute-forcing the key.
2 replies 2 retweets 19 likesShow this thread -
16/ So anything that has asymmetric attack/defense ratio has to be relative. There’s always a way to go around the asymmetry.
1 reply 1 retweet 6 likesShow this thread -
17/ PoW security, otoh, is *absolute*. It doesn't matter which frame of reference you come from, the cost of attack is the same. PoW ledger immutability is objective, it doesn’t care who you are.
4 replies 3 retweets 27 likesShow this thread
18/ Ledger immutability that relies on relative security will always be weaker than one that relies on absolute security.
-
-
19/ EDIT (13): it is only *secure* from the point of view of the owner of the private key
0 replies 0 retweets 5 likesShow this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
