{"id":784,"date":"2018-06-07T14:18:04","date_gmt":"2018-06-07T14:18:04","guid":{"rendered":"https:\/\/securitycurve.com\/?p=784"},"modified":"2018-06-07T14:18:04","modified_gmt":"2018-06-07T14:18:04","slug":"zencash-cryptocurrency-51-attacks-and-bitmain","status":"publish","type":"post","link":"https:\/\/securitycurve.com\/?p=784","title":{"rendered":"Zencash, Cryptocurrency 51% attacks, and Bitmain"},"content":{"rendered":"

\"\"<\/a>Did you see that ZenCash was hit with a 51% attack the other day<\/a>?\u00a0 It’s true; they’re the most recent to join the club of currencies<\/a> that have been impacted by someone controlling a majority of the hashrate.\u00a0 For the time this is the case, they can do whatever the heck they want — like double spend or invalidate transactions or steal all the monies or whatever.<\/p>\n

Personally, I feel like Zencash got off lucky.\u00a0 The attacker made off with about 700k in USD.\u00a0 The market cap is about $91M<\/a>, so this isn’t terrible percentage wise compared to what they could have done.\u00a0 I think the attackers were either trying to be subtle or they were trying to ensure their stolen value held value for a while by not crashing the entire currency value.<\/p>\n

I would like the record to show that I told you so.\u00a0 For example, I *just*\u00a0did a talk about this<\/a>\u00a0at ISACA’s CACS conference but I’ve been warning about this for years.\u00a0 Everyone forgets about this part from the original Bitcoin paper: \u201cThe system is secure as long as honest nodes collectively control more CPU power than any cooperating group of attacker nodes.\u201d\u00a0 <\/em><\/p>\n

Anywho, there are three reasons why I’m interested in this:<\/p>\n

    \n
  1. The implications that viable 51 percent attacks have for nascent cryptocurrencies (and how to protect against that),<\/li>\n
  2. the not-as-improbable-as-you-think scenario that someone could pull this attack (or an attack like it) off for the “big enchilada” (i.e. Bitcoin), and<\/li>\n
  3. the implications that this has for commercial blockchain implementations<\/li>\n<\/ol>\n

    Starting with number one, it’s interesting to me because how can a new cryptocurrency develop in the climate when 51 percent attacks are not only feasible but are actively being done?\u00a0 Imagine with me for a moment a growth curve reflecting the hashrate for a cryptocurrency — it starts at zero, is flat for a while, and eventually expands non-linearly. Maybe it looks a lot like the hashrate chart for Ethereum<\/a> that I’ve included below from the awesome folks over at etherscan.<\/p>\n

    \"\"<\/a><\/p>\n

    After the “hockey stick” starts (in the Ethereum chart above around about the March or April 2017 timeframe) it gets exponentially harder to pull off a 51% attack, right?\u00a0 But what about before then?\u00a0 What about the flat part of the curve before the exponential growth?\u00a0 The catch-22 is that nobody will want to stream Jim Cramer-style their trading on Twitch<\/del>\u00a0“buy stuff” with – or speculate in – the cryptocurrency if there’s a solid likelihood of a 51% attack and there’s no community.\u00a0 But yet, the growth curve can’t make that impractical until after people adopt it.<\/p>\n

    Quandry?\u00a0 Yes… yes it is.<\/p>\n

    Bitcoin didn’t have this problem because, frankly, very few people cared enough about it when it came out to actively do this type of attack.\u00a0 By the time it became within a few orders of magnitude of the money supply of a large country, that attack was out of reach… at least to the person in their basement with a network connection and access to somebody’s commoditized cloud compute fabric.\u00a0 The plot of Silicon Valley<\/a> aside, I feel like this makes it super challenging for a new currency looking to do an ICO — it’s really super dangerous unless there’s a strategy to out-compute what an attacker might be willing to spend.\u00a0 Not sure how to do that — especially when mining nodes are designed to be anonymous.\u00a0 Even if they figure that part out, that’s just another way of retaining centralized control over it.\u00a0 Either way, it’s dodgy.<\/p>\n

    The second thing that makes me interested about this is the implication – and I’d argue continued viability – of an attack like this against Bitcoin.\u00a0 No, not by somebody in a basement, but by someone controlling a large chunk of the hashrate.\u00a0 Say, for example, Bitmain<\/a>.\u00a0 I’ve talked about why it is that market forces tend to favor mining monopolies<\/a> (it is truth), and in fact we’re pretty damn close to Bitmain controlling 51%.\u00a0 Like, as of right now, they control about 44-46-ish percent<\/a>\u00a0— because remember that Antpool<\/a> is Bitmain, and BTC.com<\/a> is also Bitmain.\u00a0 Those two alone are like 40-ish percent without even accounting for any other folks that might be using Antminer or their other hardware.\u00a0 Seems to me like Bitmain should just buy out the admin of ViaBTC<\/a> and be done with it.<\/p>\n

    “But who cares?”, you ask.\u00a0 That hardware is like distributed out among like a gagillion different people… it’s like 80 million petaflops…\u00a0 What difference does it make if they’re all in the same pool, or all using the same hardware, or both?\u00a0 The counterargument to that is of course Antbleed<\/a>.\u00a0 Like,\u00a0Bitmain already installed a firmware backdoor<\/a>…<\/strong>\u00a0 that’s yesterday’s news.\u00a0 Was it malicious?\u00a0 Maybe.\u00a0 It could just be helpful “phone home” functionality to be offered as a “service” to customers… it did however let them directly shut off as much of the hashrate as they want (within the purview of what they control).\u00a0 Personally, I feel like that’s not good.\u00a0 The whole point of Bitcoin in the first place was that people didn’t trust countries like the EU or the US because fiat control over the currency is dodgy.\u00a0 Is it better if Bitmain has fiat control instead?\u00a0 Like, basically, s\/US Treasury\/Bitmain\/g and we’re all set?\u00a0 This seems worse than the problem Bitcoin was trying to move us away from.\u00a0 This continues to bother me, especially since nobody seems to care about it.<\/p>\n

    Lastly, and I’ll keep it quick because I’m starting to get too far into what I had planned for today is the implication that these attacks have for stuff that isn’t currency.\u00a0 Like, for example, commercial blockchain applications.\u00a0 That scares the hell out of me.\u00a0 For example, I can actively choose to not buy Bitcoin while Bitmain directly controls anything north of 30 percent of the hashrate (that is my cutoff rate by the way) or at least until their hardware is less than 20-ish percent… I’ll could for example stick to ETH until such time as BTC mining stops being crazysauce.\u00a0 But what about an application that I have no control over — because someone somewhere “heard blockchain was the new thing” so decided to just implement whatever?\u00a0 Like stock exchanges… or insurance… or voting… or your driver’s license.\u00a0 Any “blockchain app” that doesn’t have a consensus protocol isn’t worth doing in my opinion (like, just use a database because the security reduction is equivalent)… so long as we’re using hashrate (CPU time) as that consensus protocol, people need to give a crap about this.<\/p>\n

    Either people don’t understand this or they don’t care.\u00a0 I’m really hoping it’s the former because that at least is addressable.<\/p>\n","protected":false},"excerpt":{"rendered":"

    Did you see that ZenCash was hit with a 51% attack the other day?\u00a0 It’s true; they’re the most recent to join the club of currencies that have been impacted by someone controlling a majority of the hashrate.\u00a0 For the time this is the case, they can do whatever the heck they want — like […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[4],"tags":[6,16,28,133],"class_list":["post-784","post","type-post","status-publish","format-standard","hentry","category-security","tag-51-percent","tag-bitcoin","tag-cryptocurrency","tag-zencash"],"_links":{"self":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/posts\/784","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=784"}],"version-history":[{"count":0,"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/posts\/784\/revisions"}],"wp:attachment":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=784"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=784"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=784"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}