2
class Block{
    constructor(timestamp, transactions, previousHash = ''){
        this.timestamp = timestamp;
        this.transactions = transactions;
        this.previousHash = previousHash;
        this.hash = this.calculateHash();
        this.nonce = 0;
    }

    calculateHash(){
        return SHA256(this.previousHash + JSON.stringify(this.transactions) 
        + this.timestamp + this.nonce).toString();
    }

    mineBlock(difficulty){
        while(this.hash.substring(0, difficulty) !== Array(difficulty + 
        1).join("0")){
            this.nonce++;
            this.hash = this.calculateHash();
        }

        console.log("Block mined: " + this.hash);
    }
}

In the above code, how is it promised that the underlying logic is not manipulated to one's advantage? I mean, to mine a block a miner has to invest immense computing power. If rather s/he is able to break the while loop above in the mineBlock() method, perhaps not much computing is necessary to mine a block and get it accepted (provided the source code could be manipulated in all the validator/miner (proof of work and stake respectively) machines). Thanks in advance.

carver
  • 2,229
  • 12
  • 28
Abhay Nagaraj
  • 93
  • 9
  • You can not protect clientside code. – epascarello Oct 23 '18 at 17:02
  • I don't think "decompiled" correctly describes the situation you're worried about. That only means that someone can see the contract code. This cannot be prevented. Maybe you mean "tampered"? That means someone would run different code than you wrote in the contract. I'll update the title, but please clarify if I'm missing something. – carver Oct 23 '18 at 17:48
  • Thanks for the edit and making my question more lucid. I must have used "Tampered" instead. – Abhay Nagaraj Oct 24 '18 at 04:50

2 Answers2

2

You shouldn't hide your client code because it kills the concent of blockchain and decentralized technology itself.

Technologies such as Bitcoin are unbreakable as long as 51% of computing power (in case of PoW consesus) comes from honest nodes.

In the moment that more than 51% of computing power is corrupted (malicious) then the ledger is not safe.

As many maximalist may suggest if your intent is to build your own blockchain probably you should re-use code that is already written and considered to be safe and add your features step by step.

Writing a DLT is not only about writing bug-less code (that cannot be used to corrupt all the nodes, as you stated in the question) but also efficient consensus mechanisms that cannot be exploited.

PoW stands for Proof of Work. DLT stands for Distribuited Ledger Technology (which includes Blockchain, Tangles etc.)

Just also to clarify some misconceptions which I've seen going out here.

Solidity is a deterministic language used to write smart contracts inside the blockchain (it is not the language used to code the blockchain itself but the code used for the softwares running inside the blockchain, example: Ethereum)

Taking Ethereum as example there are different implementations of it, geth (golang-ethereum) being the most active. As I told you if you want to create your own blockchain probably you should look to reuse code that is already proven to be solid.

Answering to: "new blockchain are prone to 51% attacks" (this plagues Proof of Work-consensus blockchains mainly): yes this is absolutely true, new born blockchains (or blockchains with low hash-rates) tend to be attacked frequently by renting hashpower (see Bitcoin Private case happened recently or Bitcoin gold). Unfortunately there's no way to prevent this from happening because it's just how Proof of Work consensus work, the only thing that can be done to contain it is that you wait more block confirmations before considering the assets coming from the transaction to be spendable.

Example (names are chosen randomly): I have an online store accepting BTW (coin) coming from Bitcoin Weak's blockchain which is often plagued by 51% attacks, what I do is that although customers transaction was inserted in block number (X) I wait up until block number (X + 100) before allowing him to spend those money in my platform.

Why do I do this? It's because 51% attacks aim to recreate two chains and insert the longer chain later on which deletes the shorter chain (the one where I created the transaction used to buy on your platform) so the longer confirmation blocks I await the more money I force the hacker to spend to keep the 51% hashrate attack going. If his double spend attack consists in spending 100$ but I force him to spend 101$ in electricity (or hashpower rent) then I discourage him to attack the chain and try to double spend in my platform.

Hope this clarified your doubts.

mrclx
  • 304
  • 2
  • 11
  • Yup. Can't agree more on the 51% de-facto. But 51% could rather look achievable if the chain is in its inception and has just a few blocks, right?. However, Proof of Stake (or DLT) overcomes this vulnerability - is a breather to an extent. Swinging back to my concern, I am wary about the tampering of source code which could be a common entry point to a miscreant hacker and could possibly succeed to satisfy all the validator nodes though less likely but impends high fatality (as the underlying source is very much likely to be common if say a language like Solidity is used by all the nodes) ! – Abhay Nagaraj Oct 24 '18 at 05:05
  • @AbhayNagaraj I updated the post clarifying some of your doubts and explaining 51% and what they do and how to discourage them. – mrclx Oct 24 '18 at 11:21
  • I totally appreciate your efforts in the answer. Thank you for the lucidity and the details. – Abhay Nagaraj Nov 08 '18 at 23:08
0

perhaps not much computing is necessary to mine a block and get it accepted (provided the source code could be manipulated in all the validator/miner (proof of work and stake respectively) machines)

Since mining is a one-way algorithm, it is (currently) not possible to fake a solution without brute forcing until you get a solution. So, you cannot fake proof of work.

However, you mention that if the source code could be changed on all validators, they might accept a lower difficulty solution. This is true, but a few points on this:

  1. It would be very difficult to modify the consensus code on all validators without anyone knowing. First, because the code is open source, and builds can be verified. Second, many are distributed around the world on different networks, running different versions and operating systems, so this is as much a concern for any software/computing devices.

  2. In the case that this did happen, however, the consensus code could be patched and the network would recover by discarding all invalid blocks that were accepted after the breach.

If you are suggesting that code on all miners is modified:

  1. Same problem as #1 above, except that not all miner software is open source, and there are many different mining software implementations.

  2. All miners would then submit blocks at a lower difficulty, and the difficulty adjustment algorithm would lower the difficulty of the network because blocks are being solved slower. This would be more difficult to recover from, and would likely require a hard fork, since the consensus rules validated all of the blocks.

JBaczuk
  • 13,886
  • 10
  • 58
  • 86
  • Thanks for answering my question. Makes sense. It could be an exception that the network has just started growing and is using a common code base and an intruder made his/her way into the network's source code and has successfully beaten predicate that validates the hash generated and drains the chain before the news spreads. Boom! The reaction is irreversible as the blocks were liquidated. But yeah. It is an exception for sure. – Abhay Nagaraj Nov 09 '18 at 04:15