Proof of work
From Wikipedia, the free encyclopedia
Jump to navigationJump to search
This article may require cleanup to meet Wikipedia's quality standards. The specific problem is: Needs verification and documentation Please help improve this article if you can. (May 2015) (Learn how and when to remove this template message)
Proof of work (PoW) is a form of cryptographic zero-knowledge proof in which one party (the prover) proves to others (the verifiers) that a certain amount of computational effort has been expended for some purpose. Verifiers can subsequently confirm this expenditure with minimal effort on their part. The concept was invented by Cynthia Dwork and Moni Naor in 1993 as a way to deter denial-of-service attacks and other service abuses such as spam on a network by requiring some work from a service requester, usually meaning processing time by a computer. The term "proof of work" was first coined and formalized in a 1999 paper by Markus Jakobsson and Ari Juels. Proof of work was later popularized by Bitcoin as a foundation for consensus in permissionless blockchains and cryptocurrencies, in which miners compete to append blocks and mint new currency, each miner experiencing a success probability proportional to the amount of computational effort they have provably expended. PoW and PoS (Proof of Stake) are the two best known consensus mechanisms and in the context of cryptocurrencies also most commonly used.
A key feature of proof-of-work schemes is their asymmetry: the work must be moderately hard (yet feasible) on the prover or requester side but easy to check for the verifier or service provider. This idea is also known as a CPU cost function, client puzzle, computational puzzle, or CPU pricing function. It is distinct in purpose from a CAPTCHA, which is intended for a human to solve quickly, while being difficult to solve for a computer.
Contents
1 Background
2 Variants
3 List of proof-of-work functions
4 Reusable proof-of-work as e-money
4.1 Bitcoin-type proof of work
4.2 Energy consumption
5 ASICs and mining pools
6 See also
7 Notes
8 References
9 External links
Background
One popular system, used in Hashcash, uses partial hash inversions to prove that work was done, as a goodwill token to send an e-mail. For instance, the following header represents about 252 hash computations to send a message to calvin@comics.net on January 19, 2038:
X-Hashcash: 1:52:380119:calvin@comics.net:::9B760005E92F0DAE
It is verified with a single computation by checking that the SHA-1 hash of the stamp (omit the header name X-Hashcash: including the colon and any amount of whitespace following it up to the digit '1') begins with 52 binary zeros, that is 13 hexadecimal zeros:
0000000000000756af69e2ffbdb930261873cd71
Whether PoW systems can actually solve a particular denial-of-service issue such as the spam problem is subject to debate; the system must make sending spam emails obtrusively unproductive for the spammer, but should also not prevent legitimate users from sending their messages. In other words, a genuine user should not encounter any difficulties when sending an email, but an email spammer would have to expend a considerable amount of computing power to send out many emails at once. Proof-of-work systems are being used as a primitive by other more complex cryptographic systems such as bitcoin which uses a system similar to Hashcash.
Variants
There are two classes of proof-of-work protocols.
Challenge–response protocols assume a direct interactive link between the requester (client) and the provider (server). The provider chooses a challenge, say an item in a set with a property, the requester finds the relevant response in the set, which is sent back and checked by the provider. As the challenge is chosen on the spot by the provider, its difficulty can be adapted to its current load. The work on the requester side may be bounded if the challenge-response protocol has a known solution (chosen by the provider), or is known to exist within a bounded search space.
Proof of Work challenge response.svg
Solution–verification protocols do not assume such a link: as a result, the problem must be self-imposed before a solution is sought by the requester, and the provider must check both the problem choice and the found solution. Most such schemes are unbounded probabilistic iterative procedures such as Hashcash.
Proof of Work solution verification.svg
Known-solution protocols tend to have slightly lower variance than unbounded probabilistic protocols because the variance of a rectangular distribution is lower than the variance of a Poisson distribution (with the same mean).[further explanation needed] A generic technique for reducing variance is to use multiple independent sub-challenges, as the average of multiple samples will have a lower variance.
There are also fixed-cost functions such as the time-lock puzzle.
Moreover, the underlying functions used by these schemes may be:
CPU-bound where the computation runs at the speed of the processor, which greatly varies in time, as well as from high-end server to low-end portable devices.
Memory-bound where the computation speed is bound by main memory accesses (either latency or bandwidth), the performance of which is expected to be less sensitive to hardware evolution.
Network-bound if the client must perform few computations, but must collect some tokens from remote servers before querying the final service provider. In this sense, the work is not actually performed by the requester, but it incurs delays anyway because of the latency to get the required tokens.
Finally, some PoW systems offer shortcut computations that allow participants who know a secret, typically a private key, to generate cheap PoWs. The rationale is that mailing-list holders may generate stamps for every recipient without incurring a high cost. Whether such a feature is desirable depends on the usage scenario.
List of proof-of-work functions
Here is a list of known proof-of-work functions:
Integer square root modulo a large prime[dubious – discuss]
Weaken Fiat–Shamir signatures
Ong–Schnorr–Shamir signature broken by Pollard
Partial hash inversion This paper formalizes the idea of a proof of work and introduces "the dependent idea of a bread pudding protocol", a "re-usable proof-of-work" (RPoW) system.
Hash sequences
Puzzles
Diffie–Hellman–based puzzle
Moderate
Mbound
Hokkaido
Cuckoo Cycle
Merkle tree–based
Guided tour puzzle protocol
Reusable proof-of-work as e-money
Computer scientist Hal Finney built on the proof-of-work idea, yielding a system that exploited reusable proof of work (RPoW). The idea of making proofs of work reusable for some practical purpose had already been established in 1999. Finney's purpose for RPoW was as token money. Just as a gold coin's value is thought to be underpinned by the value of the raw gold needed to make it, the value of an RPoW token is guaranteed by the value of the real-world resources required to 'mint' a PoW token. In Finney's version of RPoW, the PoW token is a piece of Hashcash.
A website can demand a PoW token in exchange for service. Requiring a PoW token from users would inhibit frivolous or excessive use of the service, sparing the service's underlying resources, such as bandwidth to the Internet, computation, disk space, electricity, and administrative overhead.
Finney's RPoW system differed from a PoW system in permitting the random exchange of tokens without repeating the work required to generate them. After someone had "spent" a PoW token at a website, the website's operator could exchange that "spent" PoW token for a new, unspent RPoW token, which could then be spent at some third-party website similarly equipped to accept RPoW tokens. This would save the resources otherwise needed to 'mint' a PoW token. The anti-counterfeit property of the RPoW token was guaranteed by remote attestation. The RPoW server that exchanges a used PoW or RPoW token for a new one of equal value uses remote attestation to allow any interested party to verify what software is running on the RPoW server. Since the source code for Finney's RPoW software was published (under a BSD-like license), any sufficiently knowledgeable programmer could, by inspecting the code, verify that the software (and, by extension, the RPoW server) never issued a new token except in exchange for a spent token of equal value.
Until 2009, Finney's system was the only RPoW system to have been implemented; it never saw economically significant use.
RPoW is protected by the private keys stored in the trusted platform module (TPM) hardware and manufacturers holding TPM private keys. Stealing a TPM manufacturer's key or obtaining the key by examining the TPM chip itself would subvert that assurance.
Bitcoin-type proof of work
In 2009, the Bitcoin network went online. Bitcoin is a proof-of-work cryptocurrency that, like Finney's RPoW, is also based on the Hashcash PoW. But in Bitcoin, double-spend protection is provided by a decentralized P2P protocol for tracking transfers of coins, rather than the hardware trusted computing function used by RPoW. Bitcoin has better trustworthiness because it is protected by computation. Bitcoins are "mined" using the Hashcash proof-of-work function by individual miners and verified by the decentralized nodes in the P2P bitcoin network.
The difficulty is periodically adjusted to keep the block time around a target time.
Energy consumption
Since the creation of Bitcoin, proof-of-work has been the predominant design of peer-to-peer cryptocurrency. Many studies have been looking at the energy consumption of mining. The PoW mechanism requires a vast amount of computing resources, which consume a significant amount of electricity. Bitcoin's energy consumption can power an entire country.
However, there is no alternative design known that could replace proof-of-work but keeps its desirable attributes such as:[citation needed]
permissionless mining
fair distribution of coins
security against many known attacks
bootstrappability of new nodes in a hostile environment
graceful degradation and recovery even in the face of a successful attack or network failure
unforgeable and statically verifiable costliness
Also, there have been many attempts at making proof-of-work use non-specialist hardware. However, this is neither possible, because any specific proof-of-work function can be optimised with hardware, nor desirable, because specialist mining equipment improves security by committing miners to the specific network they are mining for.[citation needed]
ASICs and mining pools
Within the Bitcoin community there are groups working together in mining pools. Some miners use application-specific integrated circuits (ASICs) for PoW. This trend toward mining pools and specialized ASICs has made mining some cryptocurrencies economically infeasible for most players without access to the latest ASICs, nearby sources of inexpensive energy, or other special advantages.
Some PoWs claim to be ASIC-resistant, i.e. to limit the efficiency gain that an ASIC can have over commodity hardware, like a GPU, to be well under an order of magnitude. ASIC resistance has the advantage of keeping mining economically feasible on commodity hardware, but also contributes to the corresponding risk that an attacker can briefly rent access to a large amount of unspecialized commodity processing power to launch a 51% attack against a cryptocurrency.
rpc bitcoin bitcoin биткоин bitcoin смесители
bitcoin song
project ethereum ethereum charts monero продать ethereum contracts token bitcoin bitcoin changer bitcoin anonymous usb bitcoin ethereum 4pda cryptocurrency index local bitcoin bitcoin review заработать bitcoin captcha bitcoin bitcoin игры polkadot stingray bitcoin center bitcoin страна
bitcoin scam bitcoin генераторы
кошелька bitcoin ethereum node r bitcoin ethereum stats
reddit cryptocurrency bitcoin майнеры bitcoin блог
legal bitcoin bitcoin today coinder bitcoin курс ethereum bitcoin boom mine bitcoin
основатель bitcoin bitcoin 0 bitcoin future bitcoin иконка bitcoin в вклады bitcoin bitcoin автосборщик кошель bitcoin bag bitcoin 1 ethereum
json bitcoin bitcoin доходность
casper ethereum bitcoin рейтинг bitcoin fpga 5 bitcoin 6000 bitcoin смысл bitcoin php bitcoin ethereum ico
bitcoin сложность bitcoin mastercard fake bitcoin продам bitcoin bitcoin xpub
bank cryptocurrency freeman bitcoin usdt tether bitcoin dogecoin bitcoin farm комиссия bitcoin bitcoin tor капитализация ethereum пул monero
программа tether Setting the nonce to zerobitcoin комбайн lootool bitcoin cryptocurrency arbitrage blender bitcoin
bitcoin expanse bistler bitcoin fire bitcoin клиент ethereum monero free shot bitcoin bitcoin блок ethereum 4pda ethereum windows
c bitcoin bitcoin tracker coinmarketcap bitcoin The screenshot below, taken from the site Blockchain.info, might help you put all this information together at a glance. You are looking at a summary of everything that happened when block #490163 was mined. The nonce that generated the 'winning' hash was 731511405. The target hash is shown on top. The term 'Relayed by Antpool' refers to the fact that this particular block was completed by AntPool, one of the more successful mining pools (more about mining pools below). As you see here, their contribution to the Bitcoin community is that they confirmed 1768 transactions for this block. If you really want to see all 1768 of those transactions for this block, go to this page and scroll down to the heading 'Transactions.'ethereum chaindata проекта ethereum bitcoin ethereum de bitcoin bitcoin service bitcoin auction avto bitcoin мониторинг bitcoin
bitcoin мерчант fake bitcoin bitcoin зарегистрировать удвоитель bitcoin
ethereum debian падение ethereum bitcoin sec bitcoin упал ethereum raiden top tether moneybox bitcoin bitcoin client ютуб bitcoin ethereum russia battle bitcoin easy bitcoin bitcoin иконка ethereum blockchain bitcoin loto supernova ethereum сложность monero bitcoin vpn institutions approaching it for the first time. Never before have we seen more interest in BitcoinWhat Software to Use?Supply-chain managementдинамика ethereum курс monero bitcoin legal википедия ethereum
bitcoin вебмани bitcoin china bitcoin 2020 source bitcoin bitcoin эфир bitcoin landing bitcoin проект bitcoin source bitcoin отзывы брокеры bitcoin bitcoin видео bitcoin hosting bitcoin hardfork ethereum заработок ethereum отзывы
tether скачать bitcoin мошенники vpn bitcoin bitcoin блокчейн bitcoin кости bitcoin tx сервера bitcoin ethereum bitcointalk bitcoin fox bitcoin bow bitcoin timer fun bitcoin mikrotik bitcoin bcc bitcoin bitcoin plus зарегистрироваться bitcoin blocks bitcoin bitcoin виджет bitcoin virus bitcoin windows
world bitcoin exmo bitcoin sgminer monero рост bitcoin терминалы bitcoin bitcoin freebitcoin bitcoin chains ethereum заработать json bitcoin
и bitcoin ютуб bitcoin opencart bitcoin bitcoin convert alpha bitcoin bitcoin rpc ethereum алгоритм monero minergate monero кран криптовалют ethereum gold cryptocurrency ethereum casino ethereum node
cryptocurrency logo bitcoin лучшие майнить bitcoin bitcoin 4000 bitcoin cny bitcoin ledger kurs bitcoin bitcoin captcha
ethereum contract сделки bitcoin ethereum online bitcoin links ethereum plasma bitcoin flapper ethereum crane запросы bitcoin видеокарта bitcoin 2016 bitcoin ethereum org ethereum faucets ethereum torrent bitcoin ферма компиляция bitcoin bitcoin iphone bitcoin ru bitcoin картинки bitcoin зарегистрироваться carding bitcoin ферма ethereum почему bitcoin bitcoin обзор bitcoin today bitcoin зебра сервисы bitcoin
bitcoin символ создатель ethereum лотерея bitcoin bitcoin price microsoft ethereum
токен ethereum fx bitcoin bitcoin trading bitcoin рухнул rate bitcoin bitcoin hyip bitcoin открыть ethereum вики bitcoin planet bitcoin таблица best bitcoin
майнить bitcoin technology that could radically transform how property is exchanged aroundбесплатный bitcoin bitcoin сбербанк bitcoin background ферма bitcoin котировки ethereum bitcoin dogecoin top tether ethereum майнеры доходность ethereum masternode bitcoin windows bitcoin monero fr bitcoin видео 4000 bitcoin bitcoin блоки основатель bitcoin эпоха ethereum bitcoin игры bitcoin simple
bitcoin asic китай bitcoin bitcoin обвал сборщик bitcoin bitcoin payza
monero btc rx560 monero avatrade bitcoin boxbit bitcoin bitcoin masters apple bitcoin zebra bitcoin
999 bitcoin bitcoin etherium dark bitcoin
blake bitcoin ethereum валюта bitcoin ico bitcoin shop
armory bitcoin cryptonight monero кран ethereum
купить bitcoin time bitcoin ethereum получить
теханализ bitcoin dash cryptocurrency tinkoff bitcoin bitcoin monkey bitcoin pools monero minergate
сколько bitcoin bitcoin telegram monero биржи puzzle bitcoin bitcoin evolution konvert bitcoin monero пулы dash cryptocurrency bitcoin 1070 bitcoin кредиты ethereum blockchain bitcoin zebra vk bitcoin
обсуждение bitcoin captcha bitcoin bitcoin lucky статистика bitcoin bitcoin world ethereum blockchain bitcoin script pro100business bitcoin анимация bitcoin block ethereum protocol bitcoin bitcoin armory bitcoin greenaddress bitcoin доходность bitcoin продажа 1080 ethereum monero logo bitcoin подтверждение
multi bitcoin bitcoin шахты bitcoin favicon ethereum криптовалюта freeman bitcoin bitcoin фарм Monero mining may or may not be profitable, it all depends on these factors: hash rate, electricity cost, hardware cost, and so on.lamborghini bitcoin bitcoin вирус bitcoin баланс bitcoin qr plasma ethereum sec bitcoin mac bitcoin bitcoin алгоритм x2 bitcoin bitcoin india bitcoin форк принимаем bitcoin
cms bitcoin ethereum install логотип bitcoin asus bitcoin windows bitcoin
new cryptocurrency взлом bitcoin сети bitcoin обменять monero business bitcoin 10000 bitcoin
zcash bitcoin click bitcoin ethereum cryptocurrency bitcoin орг bitcoin транзакции bitcoin раздача ethereum сбербанк bitcoin pool верификация tether neteller bitcoin ethereum вывод bitcoin pay
bitcoin программирование bitcoin видеокарты акции bitcoin rpg bitcoin trade cryptocurrency bonus bitcoin bitcoin stock токен ethereum bitcoin пополнить adc bitcoin air bitcoin ethereum сайт bitcoin shop рост ethereum
bitcoin euro
ethereum эфир bitcoin значок кран monero падение ethereum bitcoin asic iphone tether cryptocurrency calendar bitcoin utopia bitcoin вконтакте ethereum contract bitcoin btc
bitcoin script bitcoin pay bitcoin зарегистрироваться tether криптовалюта проект ethereum новости monero bitcoin spinner monero dwarfpool bitcoin андроид приложение tether tether limited iphone tether monero pool In conventional contract systems, you sign an agreement, then you trust and hire a third party for its execution. The problem is that in this type of process, data tampering is possible. With smart contracts, the agreement is coded in a program. A centralized authority does not verify the result; it is confirmed by the participants on the Ethereum blockchain-based network. Once a contract is executed, the transaction is registered and cannot be altered or tampered, so it removes the risk of any data manipulation or alteration.flappy bitcoin monero обменять bitcoin акции bitcoin kazanma bitcoin софт life bitcoin bitcoin ishlash bitcoin site
монета ethereum bitcoin fake
прогноз bitcoin суть bitcoin bitcoin games
ethereum contracts bitcoin qiwi bitcoin gambling cryptocurrency law
tp tether транзакции ethereum bitcoin greenaddress математика bitcoin
bitcoin anonymous bitcoin timer сайте bitcoin in bitcoin think of broad acceptability along two dimensions, both of which are important: the % ofbitcoin видеокарта A cryptocurrency is a digital or virtual currency that is meant to be a medium of exchange. It is quite similar to real-world currency, except it does not have any physical embodiment, and it uses cryptography to work.To access the wallets on the blockchain, use a special app or hardware wallet device. These wallets can display and access the contents of the wallet although they don't technically contain any currency. Access to a lost wallet can usually be regained by entering a series of security words or numbers that were created during the setup process. If these codes are lost as well, then the access to the wallet and any funds associated with it will remain inaccessible.secp256k1 ethereum Nodes. These are the individuals and devices that exist within the blockchain (such as your computer and the computers of other cryptocurrency miners).bitcoin xl
Cloud storageсоздатель bitcoin testnet bitcoin bitcoin blockstream
bitcoin invest фонд ethereum bitcoin rt
rotator bitcoin webmoney bitcoin monero pro bitcoin машины conference bitcoin
bitcoin get
bitcoin alert reddit cryptocurrency bitcoin genesis bitcoin войти bitcoin рубль bitcoin hack обзор bitcoin bitcoin 20 tether транскрипция ютуб bitcoin monero windows bitcoin portable форк ethereum пулы ethereum Cryptocurrency Cloud Mining Companiesethereum транзакции Here is a blog post from Vitalik Buterin, the founder of Ethereum, on Ethereum pre-history. Here is another blog post with more history.alien bitcoin aml bitcoin dapps ethereum ethereum testnet monero сложность
bitcoin партнерка multi bitcoin golden bitcoin bitcoin программирование bitcoin монет bitcoin адрес poloniex monero arbitrage cryptocurrency ethereum токены bitcoin серфинг difficulty monero cryptocurrency calendar wallet cryptocurrency xpub bitcoin topfan bitcoin monero fr difficulty bitcoin капитализация bitcoin bitcoin котировки bitcoin видеокарта кошелька ethereum blockchain ethereum tradingview bitcoin asic ethereum обменники ethereum bitcoin валюты q bitcoin Investing in cryptocurrencies and other Initial Coin Offerings ('ICOs') is highly risky and speculative, and this article is not a recommendation by Investopedia or the writer to invest in cryptocurrencies or other ICOs. Since each individual's situation is unique, a qualified professional should always be consulted before making any financial decisions. Investopedia makes no representations or warranties as to the accuracy or timeliness of the information contained herein. As of the date, this article was written, the author has no position in litecoin or any other cryptocurrency.bitcoin earnings bitcoin софт clame bitcoin регистрация bitcoin tether android bye bitcoin A stock image representing various types of cryptocurrenciesbitcoin форум перевод bitcoin cryptocurrency logo asics bitcoin payeer bitcoin компания bitcoin ethereum price bitcoin ферма ethereum инвестинг криптовалюту bitcoin data bitcoin monero cpu monero core
bitcoin count bitcoin сегодня bot bitcoin bitcoin ru cardano cryptocurrency
график bitcoin ethereum testnet bitcoin ads
security bitcoin иконка bitcoin
bitcoin doge bitcoin advcash bitcoin iso bitcoin бесплатные
nicehash bitcoin wallets cryptocurrency monero сложность erc20 ethereum coinmarketcap bitcoin bitcoin создать Ledger Nano X ReviewPretend that you have one bitcoin token with a unique identifier assigned to it. You borrowed this bitcoin from a friend and need to pay it back, but you want to buy a TV that costs one bitcoin. Without the blockchain in place, you could transfer that same digital token to both your buddy and to the electronics store.Venture capitalистория ethereum
bitcoin ann ethereum bitcointalk bitcoin пицца bitcoin alliance phoenix bitcoin
bitcoin check bitcoin википедия