Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Mining
Re: FPGA mining for fun and profit
by
Steve
on 25/05/2011, 01:01:40 UTC
Quote from: creighto on May 20, 2011, 10:13:44 PM
Quote from: Grinder on May 20, 2011, 09:23:02 PM
Quote from: kjj on May 20, 2011, 07:41:28 PM
What are the odds of getting the next block, and being able to prevent transactions that you don't approve of for ~10 minutes?  51%
You don't get it. If you have more than 50% of the mining power you can just continue searching for a valid block even after somebody else has found one before you. This way you can make sure that you control every block. This is listed in the weaknesses on the Wiki. Yes, you can technically still add transactions, but there's not much point if they'll never get confirmed.

No, he gets it, and you are still a little behind on the curve.  Having control of 51% of the hashing power of the whole network makes it possible to successfully attack the blockchain for a short period of time.  That period of time being one 10 minute interval.  The whitepaper doesn't go into detail about the odds of success of such an attack, other than to show how it's not really possible at all at less than 50%.  Having just over 50% of the network hashing power doesn't really give you very good odds of success past one block, and an attacker intending to deny transactions into the blockchain for longer than one block has to be able to be certain that no blocks can sneak in under him, for if one gets in and the next is built on top of that before he build one to overwrite that one and one on top to secure his false one then it become exponentially more difficult for him to overwrite two blocks back.  In practice, an attacker wishing to keep this up for an extended period of time needs at least double the hashing power of the network because it's like the attacker is trying to wade up river while the honest nodes are wading down river.  And even with double the rest of the network, some blocks are going to slip in and be covered up again anyway.  At which point the attacker has to choose between trying to overwrite two blocks and then write another before a third is made by the network or simply ignore the one that got away and overwrite the last one to take the network back.

This is not correct.  You have to remember that the chain with the highest difficulty is the one that the network accepts.  If you control >50% of the mining power, you do not have to build on anyone else blocks, you only have to build on top of the ones you produce.  Over time, your chain pull away from the chain that the rest of the network is producing and your chain will be *the* bitcoin chain.  This attack would afford you the opportunity to double spend, or block transactions that spend out of certain accounts, or block transactions altogether...and probably many other kinds of mischief.