Hacker News new | ask | show | jobs
by jp_rider 3113 days ago
It appears their own crypto was already vulnerable. A friend pointed me to this article:

https://www.forbes.com/sites/amycastor/2017/09/07/mit-and-bu...

He was also concerned that there's no security proof in the whitepaper. To me, it seems like you could feasibly launch an attack with less than a majority of the computing resources.
3 comments
Buttes 3113 days ago
My understanding is you only need 33% of the hash power at any given time. Since PoW is only done as part of sending transactions, it probably takes less hash power than you'd think to cause problems.
link
EGreg 3113 days ago
Why does everyone repeat that Byzantine consensus requires maximum 33% of participants to be dishonest?

If messages cannot be forged, then a consensus could make positive progress with even 99% of participants being dishonest.

link
Buttes 3113 days ago
>Why does everyone repeat that Byzantine consensus requires maximum 33% of participants to be dishonest?

Not 33% of participants, 33% of the hash power, could just be one participant with a pile of GPUs or ASICS or "JINN" chips lol. That's the claim made by the IOTA author, anyway.

Right now it wouldn't surprise me if someone could amass 90+% of IOTA hash power anyway.

>If messages cannot be forged

Tbh this is not even a given with IOTA.

link
EGreg 3113 days ago
Okay but it was more of a general question. I see Hashgraph and others always saying that they need 33% of participants to be honest. But with unforgeable message signatures that limitation doesn't apply.
link
pas 3113 days ago
Virtual Voting in hashgraph requires a 2/3 agreement.

Of course PoW provides some protection against sybil attacks, but the reality is that with enough hashpower the network can be overtaken. (Hence why HashGraph is a closed network.)

link
EGreg 3113 days ago
What does POW have to do with Hashgraph? It doesn't use POW.
link
CyberDildonics 3113 days ago
Proof of work isn't about forging transactions, it is about ordering them.
link
EGreg 3113 days ago
If all you needed was a way to order transactions you would not need proof of work at all. Here for example is the PTN:

https://intercoin.org/technical.pdf

link
Aledgerly 3113 days ago
So much misinformation, where to begin. IOTA is using Keccak/SHA-3, then they are developing a new kind of LIGHTWEIGHT cryptographic primitive together with the world leaders of this field

https://blog.iota.org/iota-foundation-hires-cybercrypt-615d2...

link
baby 3113 days ago
nice try IOTA
link
albertgoeswoof 3113 days ago
So, how come no one has done that?
link
Buttes 3113 days ago
The closed-source coordinator, presumably.
link