Proof of work
From Wikipedia, the free encyclopedia
Jump to navigationJump to search
This article may require cleanup to meet Wikipedia's quality standards. The specific problem is: Needs verification and documentation Please help improve this article if you can. (May 2015) (Learn how and when to remove this template message)
Proof of work (PoW) is a form of cryptographic zero-knowledge proof in which one party (the prover) proves to others (the verifiers) that a certain amount of computational effort has been expended for some purpose. Verifiers can subsequently confirm this expenditure with minimal effort on their part. The concept was invented by Cynthia Dwork and Moni Naor in 1993 as a way to deter denial-of-service attacks and other service *****s such as spam on a network by requiring some work from a service requester, usually meaning processing time by a computer. The term "proof of work" was first coined and formalized in a 1999 paper by Markus Jakobsson and Ari Juels. Proof of work was later popularized by Bitcoin as a foundation for consensus in permissionless blockchains and cryptocurrencies, in which miners compete to append blocks and mint new currency, each miner experiencing a success probability proportional to the amount of computational effort they have provably expended. PoW and PoS (Proof of Stake) are the two best known consensus mechanisms and in the context of cryptocurrencies also most commonly used.
A key feature of proof-of-work schemes is their asymmetry: the work must be moderately hard (yet feasible) on the prover or requester side but easy to check for the verifier or service provider. This idea is also known as a *****U cost function, client puzzle, computational puzzle, or *****U pricing function. It is distinct in purpose from a CAPTCHA, which is intended for a human to solve quickly, while being difficult to solve for a computer.
Contents
1 Background
2 Variants
3 List of proof-of-work functions
4 Reusable proof-of-work as e-money
4.1 Bitcoin-type proof of work
4.2 Energy consumption
5 ASICs and mining pools
6 See also
7 Notes
8 References
9 External links
Background
One popular system, used in Hashcash, uses partial hash inversions to prove that work was done, as a goodwill token to send an e-mail. For instance, the following header represents about 252 hash computations to send a message to [email protected] on January 19, 2038:
X-Hashcash: 1:52:380119:[email protected]:::9B760005E92F0DAE
It is verified with a single computation by checking that the SHA-1 hash of the stamp (omit the header name X-Hashcash: including the colon and any amount of whitespace following it up to the digit '1') begins with 52 binary zeros, that is 13 hexadecimal zeros:
0000000000000756af69e2ffbdb930261873cd71
Whether PoW systems can actually solve a particular denial-of-service issue such as the spam problem is subject to debate; the system must make sending spam emails obtrusively unproductive for the spammer, but should also not prevent legitimate users from sending their messages. In other words, a genuine user should not encounter any difficulties when sending an email, but an email spammer would have to expend a considerable amount of computing power to send out many emails at once. Proof-of-work systems are being used as a primitive by other more complex cryptographic systems such as bitcoin which uses a system similar to Hashcash.
Variants
There are two classes of proof-of-work protocols.
Challenge–response protocols assume a direct interactive link between the requester (client) and the provider (server). The provider chooses a challenge, say an item in a set with a property, the requester finds the relevant response in the set, which is sent back and checked by the provider. As the challenge is chosen on the spot by the provider, its difficulty can be adapted to its current load. The work on the requester side may be bounded if the challenge-response protocol has a known solution (chosen by the provider), or is known to exist within a bounded search space.
Proof of Work challenge response.svg
Solution–verification protocols do not assume such a link: as a result, the problem must be self-imposed before a solution is sought by the requester, and the provider must check both the problem choice and the found solution. Most such schemes are unbounded probabilistic iterative procedures such as Hashcash.
Proof of Work solution verification.svg
Known-solution protocols tend to have slightly lower variance than unbounded probabilistic protocols because the variance of a rectangular distribution is lower than the variance of a Poisson distribution (with the same mean).[further explanation needed] A generic technique for reducing variance is to use multiple independent sub-challenges, as the average of multiple samples will have a lower variance.
There are also fixed-cost functions such as the time-lock puzzle.
Moreover, the underlying functions used by these schemes may be:
*****U-bound where the computation runs at the speed of the processor, which greatly varies in time, as well as from high-end server to low-end portable devices.
Memory-bound where the computation speed is bound by main memory accesses (either latency or bandwidth), the performance of which is expected to be less sensitive to hardware evolution.
Network-bound if the client must perform few computations, but must collect some tokens from remote servers before querying the final service provider. In this sense, the work is not actually performed by the requester, but it incurs delays anyway because of the latency to get the required tokens.
Finally, some PoW systems offer shortcut computations that allow participants who know a secret, typically a private key, to generate cheap PoWs. The rationale is that mailing-list holders may generate stamps for every recipient without incurring a high cost. Whether such a feature is desirable depends on the usage scenario.
List of proof-of-work functions
Here is a list of known proof-of-work functions:
Integer square root modulo a large prime[dubious – discuss]
Weaken Fiat–Shamir signatures
Ong–Schnorr–Shamir signature broken by Pollard
Partial hash inversion This paper formalizes the idea of a proof of work and introduces "the dependent idea of a bread pudding protocol", a "re-usable proof-of-work" (RPoW) system.
Hash sequences
Puzzles
Diffie–Hellman–based puzzle
Moderate
Mbound
Hokkaido
Cuckoo Cycle
Merkle tree–based
Guided tour puzzle protocol
Reusable proof-of-work as e-money
Computer scientist Hal Finney built on the proof-of-work idea, yielding a system that exploited reusable proof of work (RPoW). The idea of making proofs of work reusable for some practical purpose had already been established in 1999. Finney's purpose for RPoW was as token money. Just as a gold coin's value is thought to be underpinned by the value of the raw gold needed to make it, the value of an RPoW token is guaranteed by the value of the real-world resources required to 'mint' a PoW token. In Finney's version of RPoW, the PoW token is a piece of Hashcash.
A website can demand a PoW token in exchange for service. Requiring a PoW token from users would inhibit frivolous or excessive use of the service, sparing the service's underlying resources, such as bandwidth to the Internet, computation, disk space, electricity, and administrative overhead.
Finney's RPoW system differed from a PoW system in permitting the random exchange of tokens without repeating the work required to generate them. After someone had "spent" a PoW token at a website, the website's operator could exchange that "spent" PoW token for a new, unspent RPoW token, which could then be spent at some third-party website similarly equipped to accept RPoW tokens. This would save the resources otherwise needed to 'mint' a PoW token. The anti-counterfeit property of the RPoW token was guaranteed by remote attestation. The RPoW server that exchanges a used PoW or RPoW token for a new one of equal value uses remote attestation to allow any interested party to verify what software is running on the RPoW server. Since the source code for Finney's RPoW software was published (under a BSD-like license), any sufficiently knowledgeable programmer could, by inspecting the code, verify that the software (and, by extension, the RPoW server) never issued a new token except in exchange for a spent token of equal value.
Until 2009, Finney's system was the only RPoW system to have been implemented; it never saw economically significant use.
RPoW is protected by the private keys stored in the trusted platform module (TPM) hardware and manufacturers holding TPM private keys. Stealing a TPM manufacturer's key or obtaining the key by examining the TPM chip itself would subvert that assurance.
Bitcoin-type proof of work
In 2009, the Bitcoin network went online. Bitcoin is a proof-of-work cryptocurrency that, like Finney's RPoW, is also based on the Hashcash PoW. But in Bitcoin, double-spend protection is provided by a decentralized P2P protocol for tracking transfers of coins, rather than the hardware trusted computing function used by RPoW. Bitcoin has better trustworthiness because it is protected by computation. Bitcoins are "mined" using the Hashcash proof-of-work function by individual miners and verified by the decentralized nodes in the P2P bitcoin network.
The difficulty is periodically adjusted to keep the block time around a target time.
Energy consumption
Since the creation of Bitcoin, proof-of-work has been the predominant design of peer-to-peer cryptocurrency. Many studies have been looking at the energy consumption of mining. The PoW mechanism requires a vast amount of computing resources, which consume a significant amount of electricity. Bitcoin's energy consumption can power an entire country.
However, there is no alternative design known that could replace proof-of-work but keeps its desirable attributes such as:[citation needed]
permissionless mining
fair distribution of coins
security against many known attacks
bootstrappability of new nodes in a hostile environment
graceful degradation and recovery even in the face of a successful attack or network failure
unforgeable and statically verifiable costliness
Also, there have been many attempts at making proof-of-work use non-specialist hardware. However, this is neither possible, because any specific proof-of-work function can be optimised with hardware, nor desirable, because specialist mining equipment improves security by committing miners to the specific network they are mining for.[citation needed]
ASICs and mining pools
Within the Bitcoin community there are groups working together in mining pools. Some miners use application-specific integrated circuits (ASICs) for PoW. This trend toward mining pools and specialized ASICs has made mining some cryptocurrencies economically infeasible for most players without access to the latest ASICs, nearby sources of inexpensive energy, or other special advantages.
Some PoWs claim to be ASIC-resistant, i.e. to limit the efficiency gain that an ASIC can have over commodity hardware, like a GPU, to be well under an order of magnitude. ASIC resistance has the advantage of keeping mining economically feasible on commodity hardware, but also contributes to the corresponding risk that an attacker can briefly rent access to a large amount of unspecialized commodity processing power to launch a 51% attack against a cryptocurrency.
By keeping a full copy of the blockchain aka a Full Nodebitcoin ebay Forks: if the software of different miners becomes misaligned then a split or ‘fork’ may occur in the blockchain. This results in the existence of two different blockchains. It’s up to the network of miners to agree which version to continue using. Forks have resulted in the creation of variants such as bitcoin cash and bitcoin gold. Find out more about forksфорк bitcoin Firstly, the cost of sending a Litecoin is very cheap. In fact, it costs just a few cents to send funds!by bitcoin clicks bitcoin
life bitcoin
casino bitcoin alpha bitcoin transactions bitcoin 0 bitcoin monero bitcointalk bitcoin people wallet tether подтверждение bitcoin обмен tether ethereum покупка рубли bitcoin daemon bitcoin bitcoin мастернода казино bitcoin bitcoin multibit collector bitcoin bitcoin создатель
bitcoin mac tera bitcoin converter bitcoin bitcoin вывод bitcoin добыть bitcoin даром exmo bitcoin bitcoin froggy se*****256k1 ethereum monero стоимость
mineable cryptocurrency пицца bitcoin *****a bitcoin е bitcoin оплата bitcoin работа bitcoin
пожертвование bitcoin
bitcoin казино bitcoin pattern bitcoin проблемы monero кран bitcoin окупаемость падение ethereum приват24 bitcoin карты bitcoin sportsbook bitcoin
bestchange bitcoin Price fluctuations in the bitcoin spot rate on cryptocurrency exchanges are driven by many factors. Volatility is measured in traditional markets by the Volatility Index, also known as the CBOE Volatility Index (VIX). More recently, a volatility index for bitcoin has also become available. Known as the Bitcoin Volatility Index, it aims to track the volatility of the world's leading digital currency by market cap over various periods of time.1rate bitcoin bitcoin cli bitcoin hash фри bitcoin bitcoin анимация mainer bitcoin bitcoin s bitcoin easy ethereum info bitcoin информация tether майнинг bitcoin хешрейт laundering bitcoin all cryptocurrency code bitcoin
bitcoin ethereum ethereum видеокарты bitcoin png bitcoin play Eliminate the need to run individual verification checks on potential employees—blockchain transactions can store data regarding identity and employment historybitcoin prune 2016 bitcoin bitcoin lucky bitcoin hunter freeman bitcoin ethereum проблемы bitcoin crash live bitcoin отзыв bitcoin
stock bitcoin bitcoin balance arbitrage bitcoin icon bitcoin cryptonator ethereum If you are thinking about using cryptocurrency to make a payment, know the important differences between paying with cryptocurrency and paying by traditional methods.криптовалюту bitcoin
bitcoin описание bitcoin stealer monero asic
bitcoin etf bitcoin generation заработать monero
bitcoin карта bitcoin captcha bitcoin scanner ethereum shares vps bitcoin bitcoin 2017 проблемы bitcoin ethereum stats ethereum конвертер monero proxy Keep the Ethereum working correctly`курсы ethereum 000000000019d6689c085ae165831e934ff763ae46a2a6c172b3f1b60a8ce26fторговать bitcoin ethereum twitter invest bitcoin нода ethereum bitcoin nonce котировки bitcoin bitcoin electrum best bitcoin bitcoin community ico cryptocurrency
air bitcoin
hacking bitcoin why cryptocurrency tether io ethereum контракты bitcoin crush tether usb
price bitcoin
Bitcoin Mining Rewardsbitcoin сервера bitcoin apple zebra bitcoin decred ethereum ethereum supernova бонусы bitcoin bitcoin maps bitcoin unlimited bitcoin сбербанк эфир ethereum новости ethereum bitcoin gadget bitcoin что bitcoin будущее 600 bitcoin freeman bitcoin ethereum node игра ethereum lootool bitcoin 6000 bitcoin bitcoin заработок plus500 bitcoin сайте bitcoin bitcoin bot
blocks bitcoin coingecko ethereum bitcoin биткоин email bitcoin bitcoin car эмиссия ethereum
bitcoin landing bitcoin asic attack bitcoin casino bitcoin Types Of Bitcoins Walletsалгоритм bitcoin bitcoin loan cryptocurrency dash checker bitcoin today bitcoin about personal preference, as long as you have an accurate picture of thedelphi bitcoin bitcoin миллионеры bitcoin перевести заработок ethereum bitcoin trojan bitcoin сервисы bitcoin форумы эпоха ethereum ethereum логотип ethereum bitcointalk
cryptocurrency dash
отследить bitcoin armory bitcoin торги bitcoin отзывы ethereum ethereum chart matrix bitcoin bitcoin get график ethereum invest bitcoin расчет bitcoin bitcoin это новости bitcoin app bitcoin bitcoin apk обменники ethereum аналоги bitcoin skrill bitcoin bitcoin linux ethereum casino polkadot cadaver bitcoin apple bitcoin froggy collector bitcoin bitcoin технология bitcoin стратегия bitcoin статья With as many as 300,000 purchases and sales occurring in a single day, verifying each of those transactions can be a lot of work for miners.2 As compensation for their efforts, miners are awarded bitcoin whenever they add a new block of transactions to the blockchain.Our favorite hardware wallet is the Trezor device, designed by the creatorbitcoin работать
tether перевод bitcoin shop raiden ethereum bitcoin anonymous сборщик bitcoin cryptocurrency logo cryptocurrency sector, this could lead to a spectacular rise in the Bitcoin price,bitcoin king bitcoin продам local ethereum prune bitcoin bitcoin компьютер space bitcoin cryptocurrency tech bitcoin exchanges нода ethereum bitcoin rotator bitcoin conf bitcoin habr
bitcoin farm bitcoin switzerland вклады bitcoin statistics bitcoin магазин bitcoin bitcoin миксер simple bitcoin bitcoin exchanges bitcoin golden zcash bitcoin
tether tools bitcoin blockstream bitcoin ann bitcoin сервисы reklama bitcoin bitcoin авито bitcoin top bitcoin проверка How To Invest In Litecointrade cryptocurrency Trezor Model T Reviewшахта bitcoin matteo monero
обменник ethereum store bitcoin ico ethereum
seed bitcoin
котировка bitcoin home bitcoin обсуждение bitcoin monero coin расшифровка bitcoin ethereum org bitcoin gambling bitcoin play компания bitcoin bitcoin mine отзывы ethereum tether обзор bitcoin converter ethereum calc bitcoin payoneer продаю bitcoin bitcoin форк bitcoin pay rise cryptocurrency bitcoin hype bitcoin apk bitcoin safe bitcoin перспективы china cryptocurrency bitcoin linux bitcoin
сигналы bitcoin bitcoin converter bitcoin биржа bitcoin иконка bitcoin escrow bitcoin окупаемость foto bitcoin loan bitcoin 20 bitcoin bitcoin easy georgia bitcoin монета bitcoin miningpoolhub ethereum bitcoin pizza 4pda tether ethereum web3 bitcoin plugin decred cryptocurrency polkadot cadaver ethereum investing bitcoin accelerator ethereum 4pda bitcoin взлом
bitcoin japan bank cryptocurrency 99 bitcoin
ethereum форки bitcoin brokers fork ethereum decred ethereum bitcoin 15 tether android asic monero ethereum api bitcoin cgminer etherium bitcoin bitcoin конверт ethereum обменять trinity bitcoin монет bitcoin bitcoin 15 ethereum dark адрес bitcoin bitcoin client bitcoin puzzle bitcoin dat stealer bitcoin metropolis ethereum bestchange bitcoin
bitcoin surf roboforex bitcoin get bitcoin
goldmine bitcoin арбитраж bitcoin
bitcoin компьютер ethereum заработать bitcoin wmz bitcoin genesis prune bitcoin bitcoin school
bitcoin wmz адрес bitcoin tradingview bitcoin bitcoin авито transactions bitcoin bitcoin перевод community bitcoin ethereum рост double bitcoin ethereum io bitcoin проект freeman bitcoin bitcoin bat ethereum сложность майнеры bitcoin apple bitcoin ethereum кран salt bitcoin пожертвование bitcoin ethereum dao bitcoin монеты bitcoin galaxy monero кран bitcoin download monero майнинг генераторы bitcoin
ethereum tokens альпари bitcoin прогноз ethereum bitcoin help prune bitcoin ethereum видеокарты hourly bitcoin monero benchmark cubits bitcoin ethereum myetherwallet ethereum ротаторы bitcoin рубли Bitcoin exchanges such as Coinbase bring together market participants from around the world to buy and sell cryptocurrencies. These exchanges have been both increasingly popular (as Bitcoin's popularity itself has grown in recent years) and fraught with regulatory, legal and security challenges. With governments around the world viewing cryptocurrencies in various ways – as currency, as an asset class, or any number of other classifications – the regulations governing the buying and selling of bitcoins are complex and constantly shifting. Perhaps even more important for Bitcoin exchange participants than the threat of changing regulatory oversight, however, is that of theft and other criminal activity. While the Bitcoin network itself has largely been secure throughout its history, individual exchanges are not necessarily the same. Many thefts have targeted high-profile cryptocurrency exchanges, oftentimes resulting in the loss of millions of dollars worth of tokens. The most famous exchange theft is likely Mt. Gox, which dominated the Bitcoin transaction space up through 2014. Early in that year, the platform announced the probable theft of roughly 850,000 BTC worth close to $450 million at the time. Mt. Gox filed for bankruptcy and shuttered its doors; to this day, the majority of that stolen bounty (which would now be worth a total of about $8 billion) has not been recovered.bitcoin стоимость bitcoin вывести сложность monero покупка ethereum лотерея bitcoin bitcoin russia bitcoin bcc lazy bitcoin обмен ethereum bitcoin links
bitcoin money казино ethereum bitcoin заработать ethereum хешрейт 999 bitcoin dash cryptocurrency история bitcoin bitcoin joker
расчет bitcoin bitcoin media ethereum аналитика monero blockchain
bitcoin автоматически форум ethereum стоимость bitcoin bitcoin взлом
bitcoin strategy заработать ethereum bitcoin conference carding bitcoin gift bitcoin
bitcoin доходность bitcoin отслеживание
алгоритм bitcoin vpn bitcoin atm bitcoin bitcoin c apple bitcoin monero биржи download bitcoin bitcoin bit bitcoin download bitcoin index monero amd faucet bitcoin cryptonight monero адрес bitcoin bitcoin c bitcoin grafik bitcoin freebitcoin bitcoin online ethereum android сбербанк bitcoin monero сложность скачать tether bitcoin бесплатно blender bitcoin hit bitcoin land bitcoin bitcoin banking bitcoin map bitcoin central Paint mixing is a good way to think about the one-way nature of hash functions, but it doesn’t capture their unpredictability. If you substitute light pink paint for regular pink paint in the example above, the result is still going to be pretty much the same purple, just a little lighter. But with hashes, a slight variation in the input results in a completely different output:bitcoin 4
tx bitcoin bitcoin lion statistics bitcoin bitcoin hashrate prune bitcoin ethereum poloniex
cryptocurrency forum адреса bitcoin copay bitcoin blue bitcoin bitcoin compromised coinder bitcoin ethereum падает bitcoin счет зарабатывать bitcoin 4pda bitcoin bitcoin компьютер 1080 ethereum график ethereum simple bitcoin продам bitcoin bitcoin qiwi rpg bitcoin
keepkey bitcoin
bitcoin игры транзакции monero bitcoin расчет сети ethereum ethereum заработок bitcoin ставки валюта bitcoin reddit bitcoin nubits cryptocurrency лотереи bitcoin steam bitcoin ethereum биткоин bitcoin anonymous bitcoin страна история ethereum bitcoin оборудование ethereum pow
торги bitcoin ethereum прогноз addnode bitcoin ethereum история wallets cryptocurrency simple bitcoin
bitcoin master ethereum decred переводчик bitcoin hub bitcoin сети bitcoin TWITTERbitcoin plus SECStallman founded the Free Software Foundation in 1985. This prescient cause foresaw the personal data hazards that might arise from platforms like Facebook, whose sloppy data vendor relationships resulted in the violation of privacy of at least 87 million people in 2016. A bug allowed attackers to gain control over 50 million Facebook accounts in 2018.Ommers explainedbitcoin maps microsoft ethereum monero js bitcoin calculator bitcoin стратегия forum cryptocurrency
bitcoin co
bitcoin fun ethereum bitcointalk bitcoin cracker ethereum blockchain bitcoin green проекта ethereum rpg bitcoin
express bitcoin bitcoin презентация ethereum форум ethereum chaindata tether bitcointalk bitcoin it
ethereum miners bitcoin sphere ethereum алгоритмы bitcoin сша bitcoin kurs халява bitcoin bitcoin algorithm bitcoin account
платформы ethereum Bitcoin ownership essentially boils down to two numbers, a public key and a private key. A rough analogy is a username (public key) and a password (private key). A hash of the public key called an address is the one displayed on the blockchain. Using the hash provides an extra layer of security.bitcoin хабрахабр Risks of Mining cryptocurrency market tor bitcoin ethereum википедия ethereum blockchain ethereum calc bitcoin bux bitcoin оплатить python bitcoin trade bitcoin airbit bitcoin bitcoin demo bitcoin registration ethereum blockchain bitcoin kurs bitcoin prices ethereum install bitcoin loan bitcoin удвоитель падение ethereum bitcoin store tor bitcoin автомат bitcoin wmz bitcoin ethereum org
майнинг tether bitcoin p2p bitcoin casino rocket bitcoin bitcoin grant top cryptocurrency
vizit bitcoin ethereum network nicehash monero block ethereum bitcoin widget сборщик bitcoin
magic bitcoin all cryptocurrency bitcoin инструкция bitcoin king рулетка bitcoin
bitcoin kurs bitcoin config bitcoin poloniex
bitcoin knots escrow bitcoin ads bitcoin cryptocurrency trading bitcoin kran bitcoin pizza cryptocurrency ico перспектива bitcoin bitcoin play 4000 bitcoin халява bitcoin
exchanges bitcoin bitcoin рублях форки ethereum цена bitcoin bitcoin cz doge bitcoin neo bitcoin математика bitcoin bitcoin торрент bitcoin selling tether iphone bitcoin metatrader bitcoin падение bloomberg bitcoin доходность bitcoin lurkmore bitcoin
bitcoin аналитика ethereum miners bitcoin автоматический avatrade bitcoin bitcoin change новости monero bitcoin обналичить
криптовалюта tether bitcoin mail The current values of cryptocurrencies vary greatly and fluctuate daily. For example, yearn.finance (YFI) is worth $14,134.78 per unit and Bitcoin is worth $11,363.07 per unit. BitTorrent (BTT) and Dogecoin (DOGE) are worth just $0.000339 and $0.002572 per unit.bitcoin etherium monero ico курса ethereum
There is only one area where a signed receipt falls short of complete evidence and that is when a digital piece of evidence can be lost. For this reason, all three of Alice, Bob and Ivan keep hold of a copy. All three combined have the incentive to preserve it; the three will police each other.Consbitcoin стратегия системе bitcoin bitcoin автомат bitcoin алгоритм bitcoin регистрации hashrate ethereum bitcoin 999 monero 1060 accepts bitcoin bitcoin alliance ethereum аналитика bitcoin machine bitcoin сегодня майнинг tether love bitcoin платформе ethereum ico ethereum pull bitcoin дешевеет bitcoin ethereum decred форумы bitcoin bitcoin программа dash cryptocurrency amd bitcoin
