Mike Hearn [ARCHIVE] on Nostr: 📅 Original date posted:2011-07-07 🗒️ Summary of this message: A lightweight ...
📅 Original date posted:2011-07-07
🗒️ Summary of this message: A lightweight client can't prove a transaction is not a double spend without knowledge of all transactions, but appearing deep in the chain is currently considered safe. Implementing filtering suggestions is a better approach to downloading the entire memory pool.
📝 Original message:On Thu, Jul 7, 2011 at 11:49 AM, Andy Parkins <andyparkins at gmail.com> wrote:
> Imagine this situation though. I am a light weight client. I store the block
> headers only. I am only interested in the history of my own wallet addresses.
> I receive a block broadcast with a transaction that sends coins to one of my
> addresses. That transaction references other transactions (of course), but I
> haven't stored any transactions. So; I want to request those transactions and
> ensure they are all valid and in blocks. I can't.
Everyone writing an alternative client goes through this thought
process :-) There's no point in doing it, you cannot prove your
transaction is not a double spend. That requires knowledge (ie, an
index) of all transactions.
You have to treat appearing deep in the chain as ipso-facto proof of
validity. Lightweight/SPV clients simply must have that trust, it
cannot be done any other way. See this article:
http://code.google.com/p/bitcoinj/wiki/SecurityModel
Currently this is pretty safe due to the crazy speeds. In future when
speeds are likely to be lower, it will be less safe and you'd have to
wait longer or use a trusted node.
> It should be possible to request the current pending transaction list.
I think it'd be better to implement the filtering suggestions that
have been made. It doesn't scale to download the entire memory pool -
a better approach is to give the remote node a filter to match against
transactions then have it only relay those. After setting a filter,
transactions pending and matching would be sent in one big inv and you
can then keep the connection open to learn about new transactions
without needing to "drink from the firehose". Filters can be
probabilistic and set on many different nodes to reduce the privacy
implications.
🗒️ Summary of this message: A lightweight client can't prove a transaction is not a double spend without knowledge of all transactions, but appearing deep in the chain is currently considered safe. Implementing filtering suggestions is a better approach to downloading the entire memory pool.
📝 Original message:On Thu, Jul 7, 2011 at 11:49 AM, Andy Parkins <andyparkins at gmail.com> wrote:
> Imagine this situation though. I am a light weight client. I store the block
> headers only. I am only interested in the history of my own wallet addresses.
> I receive a block broadcast with a transaction that sends coins to one of my
> addresses. That transaction references other transactions (of course), but I
> haven't stored any transactions. So; I want to request those transactions and
> ensure they are all valid and in blocks. I can't.
Everyone writing an alternative client goes through this thought
process :-) There's no point in doing it, you cannot prove your
transaction is not a double spend. That requires knowledge (ie, an
index) of all transactions.
You have to treat appearing deep in the chain as ipso-facto proof of
validity. Lightweight/SPV clients simply must have that trust, it
cannot be done any other way. See this article:
http://code.google.com/p/bitcoinj/wiki/SecurityModel
Currently this is pretty safe due to the crazy speeds. In future when
speeds are likely to be lower, it will be less safe and you'd have to
wait longer or use a trusted node.
> It should be possible to request the current pending transaction list.
I think it'd be better to implement the filtering suggestions that
have been made. It doesn't scale to download the entire memory pool -
a better approach is to give the remote node a filter to match against
transactions then have it only relay those. After setting a filter,
transactions pending and matching would be sent in one big inv and you
can then keep the connection open to learn about new transactions
without needing to "drink from the firehose". Filters can be
probabilistic and set on many different nodes to reduce the privacy
implications.