RE: Binance Hack SAFU and BTC Rollback
I agree the rollback was blown out of proportion, but immediately after a hack isn't the time for that discussion. I definitely think it was reactionary and poorly thought out Tweet.
CZ can and will do as he wishes with BNB because it is barely decentralized. However to take that approach with BTC is not possible.
Any change to btc requires months of discussion and general consensus or it will fail. This is good imo, and why it is still no.1 despite all the imperfections.
He got hacked because he keeps millions of dollars of liquid btc on his exchange. He could very well keep it all in cold stoage and make people wait a week to take out anything. I think an insured vault system would be interesting. A lot of people don't want any risk or responsibility or inconvenience and he makes money on this.
There are a lot of proposals to change btc, its a slow process but well thought out. Lots of people have and will make better blockchains, but i think a one sized fits all blickchain is a bad idea.
Posted using Partiko Android
They hit the hot wallets of the exchange... I think they really can't make people wait that long! If banks did that with fiat, there would be blood on the streets!
Anyway, I think the interesting part is that it does reveal a weakness in the current game theory architecture that secures Bitcoin. That a bad actor with enough bitcoin can unilaterally rebalance the economic incentives for the miners....and that we have to rely on the mining pool to do the right thing. Now, if the bad actor is invested in the long term future of the chain, then game theory incentive is to NOT do this. However, if a bad actor is NOT interested in the long term survival of the chain then it is a big problem. Even more so, as it is not a hard fork... But a reorg.
I think you are right. If a powerful block with a ton of computing power like China, Europe, or USA wanted to bring down BTC, they may be able to in theory. However, people could just reorg anything they did after the attack is done. Besides, I don't think they would bother until it is a massive threat to their economy because as you mentioned it won't actually give them a positive benefit and more likely eliminate a negative one. Also, it will probably allow analysists too much insight into their computing techniques and strenghts to risk it.
I do wonder how they can manage to make it take less time to withdraw without it being dangerous.
I think limiting APIs for withdraw would be an obvious idea. If you are engaged in arbitrage (giving your transfer key to 3rd parties), you don't get protection when hacked. BTC may be able to implement their own protective system.
I would only support a decentralized solution. I am still not sure how that would work.
One thing I could see is set up a kind of timed lock. For example if I hit 21st day of month or lock for 6 weeks, it is impossible to reverse. Allow people to set it for up to 1 year. That means those who want to keep it and forget it can.