hidden and unexplained central authority, whom you have to trust, and
which does stuff that is never explained or revealed. This is not stable, and
does not scale. Not only is it evil, it is incapable of connecting everyone
in the world to everyone in the world. The existing lightning network has the
same problem as Tether.
Tether is not a ponzi scheme. It is an unregulated bank, but it is still doing
marginal reserve banking, and will implode sooner or later due to insider
fraud or maturity transformation, and something analogous is bound to
happen with the existing Bitcoin lightning network, because of the inherent
fragility of centralization. The moral problem of the existing lightning
network is the same as the moral problem of marginal reserve
correspondence banking. Scaling requires trustlessness. Or rather you are
trusting that if enough people see and process the transactions in full, then,
because they are not parties to that transaction and don’t have a dog in the
fight, they will process it correctly. And as soon as you have a central
authority that you have to trust, you have a party with an interest and
capability to not process it correctly.
So we don’t want everyone in the world, or even every full peer in the
world, to process every transaction in the world. We want every full peer
in the world to process every transaction in the world where the parties
quarrel, with most other transactions never showing up directly on the
primary blockchain. And we don’t want everyone in the world to be a full
peer. We want enough full peers that the vast majority will not have a dog
in the fight, and we want anyone in the world who is reasonably affluent
and wants to be a full peer to be able to be a full peer, which is likely to be
most with substantial amounts of cryptocurrency. At scale, nearly
everyone will keep his money in his client wallet, but if it is a lot of
money, his client wallet will likely be a client of a peer that he controls.
# The failures of bitcoin
The pseudonymity of coins being owned by the bearer of some
cryptographic key is a failure; People have been eavesdropping and
aggressively analyzing the block chain from day 1. And the block chain
will always be there, it will always be public, and it will always be subject
to further analysis. And we are learning that analysis of that record is
sufficient to destroy any pretense of anonymity or pseudonymity.
The scarcity of transactions has led people to re-invent every last feature
of the banks they thought they were going to be escaping. Including debt
brokering (lightning network) and fractional-reserve banking, starting with
the case of Mt. Gox and continuing to ventures today by “responsible”
business people who just don’t get, or don’t care, or both, that the entire
reason the system existed, as far as the early adopters were concerned, was
to get away from exactly that. They have made Bitcoin into a debt-based
system like any other; as long as the “exchange” holds your keys for you,
there is no obligation for them to maintain assets equal to the deposits. You
can’t prove that they are, or aren’t, maintaining sufficient assets until
after those assets are spent and the evidence appears in the block chain.
And it’s useless for small transactions. Had it been deployed to a
market the size of, say, a college campus it could bear the load and
the bidding for block space wouldn’t exceed the value of most
transactions. But had it been deployed to a market the size of a
college campus, the small pool of miners available would make mining
bursty and unstable, and the block chain therefore not well protected
from tampering. Same could have happened to Bitcoin early on, which is
why Satoshi was mining like crazy and jumping on when needed to prop up
the block rate and back off again when the blocks were coming too fast.
And that brings us to mining. Bitcoin mining has encouraged corruption
(Because it’s often done using electricity which is effectively stolen
from taxpayers with the help of government officials), wasted enormous
resources of energy, fostered botnets, centralized mining activity in a
country where centralization means it’s effectively owned by exactly
the kind of government most people thought they *DIDN’T* want looking
up their butts and where the people who that government allows to “own”
this whole business work together as a cartel.
The whole idea of proof-of-work mining is broken the instant hardware
comes out which is specialized for mining and useless for general
computation because at that point the need to have compute power
for other purposes is absolutely irrelevant in having any effect on mining,
and there ceases to be any force that causes mining to be distributed
around the world. It becomes a “race to the bottom” to find where people
can get the cheapest electricity, and then mining anywhere else – anywhere
the government tries to make sure ordinary people actually get the benefit
from electricity bought for tax money, for example – becomes first pointless,
then a net loss.
Bitcoin doesn’t scale, except by becoming the very thing it was supposed to
replace.
Bitcoin was a Pilot system, a good first effort. It did what a Pilot system is
intended to do: show where the pitfalls lie.
You're supposed to learn from it, then toss it out and go back to the
drawing board.
We cannot keep pushing the prototype, we must a designing a proper production system.
Satoshi’s main goal was to improve on DigiCash, RPOW and other similar schemes
that had a fair degree of decentralization but still relied on a central authority. Satoshi managed to solve this problem in a genius way
by combing existing technologies and understanding of human psychology.
People had been trying to solve it for decades without any luck. People like
Wei Dai and Szabo came close but never managed to materialize their visions
(assuming they're not Satoshi).
Bitcoin showed us where the pitfalls are, so we can focus attention on solving
them.
Privacy, security, efficiency, and scalability are mutually opposed if if one attempts to have them all on the blockchain. For the blockchain achieves security by everyone repeating the processing of everyone else’s transactions, which is opposed to privacy, efficiency, and scalability.
The most efficient way is obviously a single central authority deciding everything, which is not very private nor secure, and has big problems with scalability.
If a transaction is to be processed by many people, one achieves privacy, as with Monaro, by cryptographically padding it with a lot of misinformation, which is contrary to efficiency and scalability.
The efficient and scalable way to do privacy is not to share the
information at all. Rather we should arrange matters so that
information only goes to the blockchain to be scrutinized by
many people if the parties to the transaction have a falling out.
Which is what the Bitcoin lightning network was supposed to be,
but is not.
Bitcoin’s pseudonymity is alarmingly weak, (though the Wasabi wallet
partially fixes this). The lightning network layer would fix this, as
well as providing instant transactions, but a true lightning network
cannot be implemented over Bitcoin as it exists today.
A lightning network would provide instantly settled transactions and
strong fungibility. It would make bitcoins (unspent transaction outputs of
the blockchain) far less traceable, because lightning transactions happen
off chain and inherently mingle coins, thus making crypto coins fully
fungible, thus increasing their desirability as a direct substitute for cash.
# proof of stake, Byzantine fault, and statehood
A proof of stake currency is a corporation. Its currency is shares in that
corporation. Corporations derive their corporateness from the authority
of the sovereign, but a proof of stake currency derives its corporateness from
each stakeholder (shareholder) playing by the rules because all the other
stakeholders play by those rules.
Which means the rules to be incentive compatible and have provide
Byzantine Fault Resistant consensus.
This was Satoshi’s great stroke of genius. If most people follow Satoshi’s rules, everyone has an economic incentive to follow the rules.
Constructing such a set of rules is very hard. Even non Byzantine
distributed consensus is hard, because distributed consensus is very hard.
The Byzantine Generals problem is named after Byzantium, because in the
latter days of the Byzantine empire, there were some generals who wanted
a large part of the Byzantine army defeated and annihilated so that they
could take Byzantium, overthrow the emperor, and become emperor.
So general Malloc might send general Bob the the message:
> facing overwhelming enemy attack, falling back. You and general Dave may soon be cut off.
and general Dave the message:
> enemy collapsing. In pursuit.
With the intent that general Dave will advance and find himself cut off and isolated.
That the messages are inconsistent is Byzantine failure, and that they are
deliberately inconsistent with malicious intent is Byzantine defection.
The phrase “Byzantine failure” is usually used to refer to one computer in a
network sending a message to one computer that is inconsistent with the
message it sent to another computer.
The generals need to find a consensus as to whether they are all going to
attack, or all going to retreat. They are physically separate, and messages
going between them may get lost. And some of them are traitors. The
problem of establishing a true consensus for cohesive action under these
circumstances is difficult, and the algorithms and process often hard to
understand.
To achieve cohesive action, to act as one, all the independent actors need
to follow some process. And it can be proven that deviation from process
yields an advantage of least two to one in getting one’s way.
This is a Byzantine fault. And if people get away with it, pretty soon no
one is following process, and the capacity to act as one collapses. Thus
process becomes bureaucracy. Hence today’s American State Department
and defense policy. Big corporations die of this, though states take longer
to die, and their deaths are messier. It is a big problem, and people, not
just computer programs, fail to solve it all the time.
Proof of work was a brilliant and unobvious solution – but it is costing too
much, and it is slowing down the rate at which transactions can handled,
which slowness is now starting to bite hard.
The blockdag, done right, is equivalent to the Practical Fault Tolerant
Byzantine consensus, albeit the equivalence is far from obvious, and the
blockdag is in ways simpler to understand. Practical Fault Tolerant
Byzantine consensus is arcane, but reveals a number of interesting
mathematical facts about the nature of collective action.
## Sovereign Corporation
[a sovereign corporation]:social_networking.html#many-sovereign-corporations-on-the-blockchain
[that sovereign corporation]:social_networking.html#many-sovereign-corporations-on-the-blockchain
A successful proof of stake currency would be a non state corporation,
[a sovereign corporation]. What is a sovereign corporation but a state? The
power of the US is in substantial part that it is a world currency, albeit a
major reason why it is a world currency is airsea war superiority, and as its
relative airsea war superiority power declines, its role as a world currency
declines. If the shares of a sovereign corporation took over the role of the
US dollar, that sovereign corporation would be a world power. Its power
would be in the network, as the power of the US was in the air and sea,
rather than the land. But the dollar and nukes are not the only bases of
USG power. Even more than being a financial root node, the power of
USG is a result of being the monopoly truth root node. (Via Harvard aka
the Cathedral, but including lesser official government outposts such as
the CIA.) USG establishes the world’s narratives which control what
everyone cool across the world believes – that gay marriage is justice, for
example, or that “trans” people are a real thing and not just crazy and/or
sexually deviant, or that global warming is real, human-caused, and
disastrous, or that black lives matter. A proof of stake currency is not very
functional, unless, like the Jitsi blockchain, it provides a namespace and
service, because you need to interact with peers that have authority over
the consensus – the shareholders, or their computers, need to interact with
the computer equivalent of the members of the board and CEO. A
nameservice, that unlike Domain names, cannot be seized by the
government, nor mimmed by any of a hundred organizations that have a
certificate authority in their pocket. Replacing the domain name service as
well as the US\$ would substantially undermine the US Government’s monopoly
of truth. [Yarvin analysis of bitcoin](white_paper_YarvinAppendix.html)
## The big metadata security hole
The necessarily cumbersome process of embedding a payment in SSL is a
huge security hole in every crypto currency, as for example when one
leases a virtual private server (cloud server) over the internet using bitcoin.
We need to replace SSL, which requires replacement of the name system
that is integrated in SSL.
The Domain Name System means that names are ultimately owned by the
government, and the government can intercept communications to and
from such names. SSL is inherently insecure, because any entity that has
one of a thousand certificate authorities in its pocket can man in the
middle communications to and from such names. A currency cannot be
truly private, and thus is in danger of losing fungibility, if payments are
sent and received from entities with government owned names.
Names should be owned by secrets in crypto wallets.
# The name system is worth serious money
Business is moving to the internet
Increasingly, the primary assets of a business are its internet name, other people’s links to its name, and its position on other people’s pages.
The primary asset of Amazon is the same as the primary asset of Ebay. It
silos the reputations that enable strangers to do business with each
other. You do business on Amazon, it owns your reputation.
We need a name system that supports reviews, so that you own your own reputation.
For the lightning network to work without central authority, we need a
cryptographic means to enforce full circle payments, so you are
guaranteed acknowledgment of your payment if it it goes through. In
which case we can have Amazon and Ebay like reviews, without a central
authority such as Amazon or Ebay.
Amazon’s management of its primary asset is rapidly becoming worse and
worse.
Amazon is not primarily a warehousing and delivery service, and to the
extent that is a warehousing and delivery service, it is poorly run
warehousing and delivery service. When I get something through Amazon,
it usually comes direct from the seller, not through an Amazon warehouse.
It is primarily a reputation service like Ebay suffering from the delusion
that it is a warehousing and delivery service.
There is another option, neither FBA nor your own warehousing and
delivery service, but using some other logistics services company.
Schenker is big, precisely because they are offering to run practically
every aspect of your business, warehouse, shipping, a basic aftersales (call
center going through a script, giving replacements or credit notes for
returns), they are even offering things like billing or even building a
webshop.
You design a product. China manufactures it for you and these logistics
services companies deal with all the details of getting the product out. So
you do not really have to have a real business with employees. Logistics is
a service, accounting is a service, marketing is a service, sales is a service,
every department can be virtualized into a service bought from another
company.
This is probably too expensive in the long run, but very good when you
are just putting your toes into the water. Suppose you have a real actual
company in the US with employees, office, warehouse. You decide you try
to sell your stuff in France and Germany. Will you go through hiring
people and renting office and warehouse? Without even knowing if
anyone wants to buy your product there? Too risky. In 1980 it was
necessary to risk it, but not today, you can have an entirely virtual
business where every department is outsourced to local (local language
etc.) service providers, it can be started one day and liquidated the
other day if it does not work out. And if it does work out, you start
insourcing the most expensive services.
If you take that path, you are bypassing Amazon owning your name.
Instead, the Domain Name Service owns your name. There is a lot of
money in names, and while the service is not failing as badly as the banks,
it still is mighty bad. And it is missing the capability to securely pay
money to the entity that has the name. The methods for encapsulating
payments inside SSL work, but are cumbersome and indirect, hence the
ubiquitous need to sign up, fill out a captcha, receive an email message to
confirm your sign up, click on a link in that message, before you enter
your credit card details which promptly get stolen. You should be able to
receive an invoice from `example.com` the way you can receive an email
from `name@example.com`, know for sure it is the same `example.com` you
were just clicking around in, rather than yet another scammer, and reply to
that message by clicking on a pay button.
To accomplish this will be a great deal of work, but the foundation for
accomplishing it is that names need be on the same blockchain as cryptocoins,
and controlled by their owners secrets, rather than some central authority which
is apt to pursue its own political objectives and the financial interests of the
registrars, rather than those whose names are being registered.
