Donald McIntyre, one of the most active coordinators in the Ethereum Classic (ETC) community, recently shared his views and insights with Crypto Insider regarding the plausibility of a chain reorg.
McIntyre, a former Senior VP at Morgan Stanley and VP at UBS, specifically addressed the recent suggestion by Binance CEO Changpeng Zhao to perform a chain reorg. This, after Binance, the world’s largest cryptoasset exchange in terms of trading volume, suffered from a damaging security breach.
Due to the hack, the Malta-based digital asset exchange lost over 7,000 Bitcoin (BTC), an amount valued at over $41 million at the time of the incident.
Crypto Insider: Please explain, in detail, why a chain organization of Bitcoin (BTC), as recommended by Binance CEO, would be wrong or a bad idea.
Donald McIntyre: “A chain reorganization, as Changpeng Zhao, the CEO of Binance, referred to is neither wrong nor right. Bitcoin and any proof of work blockchain can be reorganized with little work within a short time window, generally accepted as 6 confirmations or less in Bitcoin, after which point it becomes exponentially difficult, therefore more costly.
This is why the whole Binance ordeal was so short; it either demanded a quick reaction, or bribing miners to recover the funds doing a reorg was not even economical for the victim (Binance) nor the bribed miners. This actually shows the power of proof of work after a certain number of confirmations.
The reason it is neither wrong nor right to perform a chain reorg is because it is an original design assumption and everybody knows that by acquiring majority computing power, a PoW blockchain can be reorganized. That is a standing threat to coin receivers, even if done by well-known full-node operators such as Binance and recognizable miners, to any chain of that type and it is widely acknowledged since 2008, as it was written and proved mathematically by Satoshi Nakamoto in the Bitcoin whitepaper.
The only protection against reorgs is waiting for sufficient confirmations. For example, and ironically, for the hacker who stole the 7000+ BTC from Binance, he/she should wait for at least 3 to 5 days of confirmations to minimize the threat of Binance colluding with miners to reorganize the chain and steal back the coins. After that, the hacker can feel secure at least on-chain. The consequences off-chain are that he/she will be hiding or running from the law for the rest of his/her life.
It is important to note that the Bitcoin whitepaper actually describes the invention of proof of work as a new and improved consensus mechanism, not a digital currency, which existed long before.
The brilliant invention was the consensus mechanism which provides four things:
- As mentioned, consensus between machines with a 50% fault tolerance (all others have 33%-1 fault tolerance).
- A cost to producing the blocks which adds a barrier to printing currency spuriously.
- Security by making it difficult computationally to rewrite the chain.
- The same computational cost as a signal to the market that provides a reference for the price of the currency in the economy.
In addition to being protected on-chain, the Bitcoin ledger is protected by what is called the “coordination problem”.
That is, when you have operators of a $141 billion decentralized, permissionless, cross border network, with developers, miners and full nodes in different nations and different cultures, spread all over the world in the tens of thousands, and all with high incentives for the network to maintain its integrity to guarantee their property, thus livelihood and businesses, it is extremely unlikely that you will lead them into damaging the network just to recover your petty 7000 BTC, which you lost because of your own incompetence in the first place.
Even if a group of miners were to decide to help, they would have gotten a strong counter reaction by developers and full-node operators globally, which is a much larger threat to their businesses, in terms of capital and future cash flow, than any reward Binance could have given them. It is much more profitable to remain an honest node and miner in Bitcoin than to go through the trouble and coordination cost of reorganizing the chain. Ethereum Classic already demonstrated that.
It is important to note that a reorg can, in fact, be pulled off if the highly unlikely coordination mentioned above actually happens. However, even with the partial reputational loss of the system, the only victim would be the hacker who stole the funds. This is because, even if all miners were to collude with Binance, the only thing they would be able to do is to double spend the money the hacker stole. This means, they cannot change network rules, they cannot modify monetary policy, and they cannot steal money from other accounts nor do anything else for that matter.”
Crypto Insider: Can you compare the events that took place at the time of the DAO Attack with Ethereum hack and what we learned from that event (specifically, in how it would be relevant to this most recent event).
Donald McIntyre: “The DAO attack and subsequent chain reversion was orders of magnitude worse than what was suggested by the CEO of Binance. That event was an out of protocol, community-wide coordinated attack on the whole network. It was an agreement by a great majority of miners, full-node operators and developers to implement an irregular state change to delete the funds by hand from one account, to transfer them to another account (or group of accounts). All without the consent or using the private key of the owner.
This was possible in Ethereum (ETH) because it has a very high profile and strong leader in Vitalik Buterin that sets direction, a foundation with a lot of money who pays for a lot of the development and marketing of the network, therefore has direct influence in the roadmap of the system; and has a philosophy of subjective security, therefore maintain high coordination between the decision makers of the system, which is a reduced and culturally homogeneous group.
A reorg using 50%+ of hashing power, as suggested by Binance, would just be a local problem between the receiver of the funds and the sender, not a system-wide violation of the protocol. And, again, it is a known vulnerability that receivers can protect from by simply waiting more confirmations. In a 51% attack, nobody can delete or move funds without the private keys.
Crypto Insider: What do you think would be the main lessons learned from this event as far as Cybersecurity and Digital Assets are concerned?
Donald McIntyre: “There is nothing new to learn as reorgs with 50%+ are a known vulnerability. There are, however, many crypto industry participants (such as Vitalik Buterin, Emin Gün Sirer, Andrew Miller, Washington Sanchez, Vlad Zamfir, Amir Taaki, and Angela Walch, among others) saying that the suggested reorg by Changpeng Zhao is some sort of final proof that Bitcoin is centralized.
My response to that is the proof of 51% attacks was already given on the October 31st, 2008, when Satoshi Nakamoto published the Bitcoin whitepaper. Proof of stake has only 33%-1 fault tolerance and is much more centralized, and, in any case, they actually didn’t get any ‘new proof’ in this particular incident because it was just the CEO of Binance, along with a group of Bitcoin skeptics doing intellectual posturing about an imaginary reorg that **never** happened.”
Crypto Insider: Does this recent Binance hack suggest that crypto exchanges are highly unsafe, and we need maybe completely different infrastructure for platforms that allow users to trade cryptoassets?
Donald McIntyre: “In the same way that it is known that 51% attacks are possible in proof of work chains, it is also widely known that trusted third parties are security holes. This includes, of course, crypto exchanges. But they are not more insecure than traditional banks, brokers or mutual funds. They are just the old format of holding wealth.
Proof of work blockchains are precisely looking to solve that problem: In traditional banking, providers have custody of wealth and grant access to owners. In proof of work blockchains, owners have custody of wealth and grant access to providers, which significantly minimizes the risk of trusted third parties. This is done by at least controlling the private keys, and at most (ideal) by running your own full node in your own machine.”
Crypto Insider: What are your predictions regarding crypto market this year, in terms of both price and adoption? Where do you see the crypto industry towards the end of 2019?
Donald McIntyre: “I can’t predict what will happen in the next year, but in the medium and longer terms, I see increasing discovery, by developers, of how to more precisely use a combination of blockchain and layer 2 systems and off-chain systems to build useful applications. This will attract more individual users, enterprise and government to secure blockchains, and that will create more demand for the tokens of highly secure networks such as Bitcoin and Ethereum Classic.”
The post Here’s why chain reorg on BTC ledger is exponentially unfeasible: Donald McIntyre appeared first on Crypto Insider.