tag:blogger.com,1999:blog-37798047.post6367940918535103213..comments2024-01-16T05:48:33.523-05:00Comments on Errata Security: Ethereum/TheDAO hack simplifiedDavid Maynorhttp://www.blogger.com/profile/09921229607193067441noreply@blogger.comBlogger8125tag:blogger.com,1999:blog-37798047.post-63600976676119661972016-06-25T07:18:09.676-04:002016-06-25T07:18:09.676-04:00Unique Designing has engaged the services of First...Unique Designing has engaged the services of <a href="http://www.firstsecurityservices.com/oakland-private-security-guards-services/" rel="nofollow">First Alarm Security & Patrol, Inc</a> & Patrol, Inc on a number of high profile VIP and corporate events. Their reliability, attention to detail and quality of service is second to none.Anonymoushttps://www.blogger.com/profile/13193690132162130947noreply@blogger.comtag:blogger.com,1999:blog-37798047.post-4629457541237366592016-06-22T05:59:20.213-04:002016-06-22T05:59:20.213-04:00The use of a block chain fork to reverse large sca...The use of a block chain fork to reverse large scale fraud in a contract is not a fix, it is a SUICIDE ! WHO DECIDE what is remarkable for a reverse ? Who decide what is a fraud ? who decide - for example - if funds in a wikileaks account must be reversed, nulled or seized ? did you have ever a claim with paypal or any credit card operator ? They simply steal your money - do you want a blockchain able to implement a chargeback ? We already have beautiful traditional jurassic bank for that.<br />Do not confuse "THE DAO" with "ETHEREUM" - the Dao is a service within Ethereum and the solution MUST be found within the DAO with absolutely no changes for ethereum. The blockchain should be preserved in almost all cases apart any intrinsic issue in its mechanism. When more stable and secure contracts will come to the light , there will be many tentatives to reverse transactions by governments, agencies, powerful people and so on. The Ethereum is a transnational dream do not transform it in a nightmare.Anonymoushttps://www.blogger.com/profile/04670551432964342635noreply@blogger.comtag:blogger.com,1999:blog-37798047.post-39443008553352387842016-06-21T18:12:44.542-04:002016-06-21T18:12:44.542-04:00It's important to remember that currency and c...It's important to remember that currency and capitalism are inventions, i.e. they're just technologies concocted to serve a purpose. Like all inventions, we tweak them when we find ways to make them better.<br /><br />In the case of Ether, the idea that the community can decide to tweak to undo a large-scale theft is a feature, one that gives the currency a potential for stability and safety we didn't think about before. We could create an institution, if we so desire, that would make a decision about when to use this feature.<br /><br />It would be nice to get humans out of our transactions so that we can protect the transactions from human corruption, but unfortunately the transactions are being made for the benefit of humans in the first place. If one's "principle" requires that a crime go forward without resistance in order to keep the technology "pure", perhaps the "principle" needs review. After all, "principles", like technologies, are generally meant to benefit humans, aren't they?Anonymoushttps://www.blogger.com/profile/18235407379807696615noreply@blogger.comtag:blogger.com,1999:blog-37798047.post-8002257014671396182016-06-19T17:27:26.998-04:002016-06-19T17:27:26.998-04:00I think you probably mean Zcash rather than Zeroco...I think you probably mean Zcash rather than Zerocoin. The Zerocoin protocol was refined and made more efficient to become the Zerocash protocol, which is being implemented (with some necessary security fixes) as the <a href="https://z.cash" rel="nofollow">Zcash currency</a>.<br /><br />Declaration of interest: I'm a Zcash developer.Daira Hopwoodhttps://www.blogger.com/profile/07786700719460528830noreply@blogger.comtag:blogger.com,1999:blog-37798047.post-59310038107767459352016-06-19T16:19:58.156-04:002016-06-19T16:19:58.156-04:00I imagine the LangSec community would have some ha...I imagine the LangSec community would have some harsh words for the Ethereum developers right now. Given the nature of "smart contracts" to immortalize code bugs as contractual obligations, empowering them with Turing-completeness seems like an absolutely terrible idea. Finding bugs in programs of any significant complexity is a matter of <i>when</i>, not <i>if</i>; it's completely unsurprising that TheDAO's code would fall to this.Anonymoushttps://www.blogger.com/profile/01417638210775130514noreply@blogger.comtag:blogger.com,1999:blog-37798047.post-39091121063168276352016-06-19T10:23:02.844-04:002016-06-19T10:23:02.844-04:00"One solution is to roll-back the blockchain ..."One solution is to roll-back the blockchain before the theft. Of course, that means screwing over everybody who made a transaction since then. You'd be screwing people out of $1 million in order to compensate the theft of $100 million."<br /><br />- incorrect statement, with ethereum you're not rolling back transactions at all.antifragilehttps://www.blogger.com/profile/05894921694635181185noreply@blogger.comtag:blogger.com,1999:blog-37798047.post-13890163157556156942016-06-18T16:19:25.386-04:002016-06-18T16:19:25.386-04:00And what does it mean for ethereum currency ? Why ...And what does it mean for ethereum currency ? Why people should use it when there's bitcoin or zerocoin ?Martinhttps://www.blogger.com/profile/01280775306150013821noreply@blogger.comtag:blogger.com,1999:blog-37798047.post-21257130728370157632016-06-18T13:43:31.112-04:002016-06-18T13:43:31.112-04:00This is incorrect:
"One solution is to roll-...This is incorrect:<br /><br />"One solution is to roll-back the blockchain before the theft. Of course, that means screwing over everybody who made a transaction since then. You'd be screwing people out of $1 million in order to compensate the theft of $100 million."<br /><br />Ethereum has balances while Bitcoin has Unspent Transaction Outputs. In order to "rollback" the Bitcoin blockchain you have to rollback every transaction. With Ethereum, you can change the balances of certain accounts without touching the balance of others. This can only happen if <b>consensus</b> is met which is through the miners accepting (or rejecting) a hard fork. <br /><br />Obviously changing the blockchain is against the immutable nature of the technology but it's been done before. In 2010 Bitcoin ran into a bug that caused the number of coins in circulation increase excessively. The team behind Bitcoin performed a hard fork (one that actually reverted a large chunk of the blockchain) to restore it to it's correct state. The same will happen with Ethereum.josephjpetershttps://www.blogger.com/profile/07234613454862158201noreply@blogger.com