Bitcoin mining pool join free slushpool setup best btc miner
Best Bitcoin Paying Sites
Bitcoin Mining Pool Bitcoin.com
Bob The Magic Custodian
Summary: Everyone knows that when you give your assets to someone else, they always keep them safe. If this is true for individuals, it is certainly true for businesses. Custodians always tell the truth and manage funds properly. They won't have any interest in taking the assets as an exchange operator would. Auditors tell the truth and can't be misled. That's because organizations that are regulated are incapable of lying and don't make mistakes. First, some background. Here is a summary of how custodians make us more secure: Previously, we might give Alice our crypto assets to hold. There were risks:
Alice might take the assets and disappear.
Alice might spend the assets and pretend that she still has them (fractional model).
Alice might store the assets insecurely and they'll get stolen.
Alice might give the assets to someone else by mistake or by force.
Alice might lose access to the assets.
But "no worries", Alice has a custodian named Bob. Bob is dressed in a nice suit. He knows some politicians. And he drives a Porsche. "So you have nothing to worry about!". And look at all the benefits we get:
Alice can't take the assets and disappear (unless she asks Bob or never gives them to Bob).
Alice can't spend the assets and pretend that she still has them. (Unless she didn't give them to Bob or asks him for them.)
Alice can't store the assets insecurely so they get stolen. (After all - she doesn't have any control over the withdrawal process from any of Bob's systems, right?)
Alice can't give the assets to someone else by mistake or by force. (Bob will stop her, right Bob?)
Alice can't lose access to the funds. (She'll always be present, sane, and remember all secrets, right?)
See - all problems are solved! All we have to worry about now is:
Bob might take the assets and disappear.
Bob might spend the assets and pretend that he still has them (fractional model).
Bob might store the assets insecurely and they'll get stolen.
Bob might give the assets to someone else by mistake or by force.
Bob might lose access to the assets.
It's pretty simple. Before we had to trust Alice. Now we only have to trust Alice, Bob, and all the ways in which they communicate. Just think of how much more secure we are! "On top of that", Bob assures us, "we're using a special wallet structure". Bob shows Alice a diagram. "We've broken the balance up and store it in lots of smaller wallets. That way", he assures her, "a thief can't take it all at once". And he points to a historic case where a large sum was taken "because it was stored in a single wallet... how stupid". "Very early on, we used to have all the crypto in one wallet", he said, "and then one Christmas a hacker came and took it all. We call him the Grinch. Now we individually wrap each crypto and stick it under a binary search tree. The Grinch has never been back since." "As well", Bob continues, "even if someone were to get in, we've got insurance. It covers all thefts and even coercion, collusion, and misplaced keys - only subject to the policy terms and conditions." And with that, he pulls out a phone-book sized contract and slams it on the desk with a thud. "Yep", he continues, "we're paying top dollar for one of the best policies in the country!" "Can I read it?' Alice asks. "Sure," Bob says, "just as soon as our legal team is done with it. They're almost through the first chapter." He pauses, then continues. "And can you believe that sales guy Mike? He has the same year Porsche as me. I mean, what are the odds?" "Do you use multi-sig?", Alice asks. "Absolutely!" Bob replies. "All our engineers are fully trained in multi-sig. Whenever we want to set up a new wallet, we generate 2 separate keys in an air-gapped process and store them in this proprietary system here. Look, it even requires the biometric signature from one of our team members to initiate any withdrawal." He demonstrates by pressing his thumb into the display. "We use a third-party cloud validation API to match the thumbprint and authorize each withdrawal. The keys are also backed up daily to an off-site third-party." "Wow that's really impressive," Alice says, "but what if we need access for a withdrawal outside of office hours?" "Well that's no issue", Bob says, "just send us an email, call, or text message and we always have someone on staff to help out. Just another part of our strong commitment to all our customers!" "What about Proof of Reserve?", Alice asks. "Of course", Bob replies, "though rather than publish any blockchain addresses or signed transaction, for privacy we just do a SHA256 refactoring of the inverse hash modulus for each UTXO nonce and combine the smart contract coefficient consensus in our hyperledger lightning node. But it's really simple to use." He pushes a button and a large green checkmark appears on a screen. "See - the algorithm ran through and reserves are proven." "Wow", Alice says, "you really know your stuff! And that is easy to use! What about fiat balances?" "Yeah, we have an auditor too", Bob replies, "Been using him for a long time so we have quite a strong relationship going! We have special books we give him every year and he's very efficient! Checks the fiat, crypto, and everything all at once!" "We used to have a nice offline multi-sig setup we've been using without issue for the past 5 years, but I think we'll move all our funds over to your facility," Alice says. "Awesome", Bob replies, "Thanks so much! This is perfect timing too - my Porsche got a dent on it this morning. We have the paperwork right over here." "Great!", Alice replies. And with that, Alice gets out her pen and Bob gets the contract. "Don't worry", he says, "you can take your crypto-assets back anytime you like - just subject to our cancellation policy. Our annual management fees are also super low and we don't adjust them often". How many holes have to exist for your funds to get stolen? Just one. Why are we taking a powerful offline multi-sig setup, widely used globally in hundreds of different/lacking regulatory environments with 0 breaches to date, and circumventing it by a demonstrably weak third party layer? And paying a great expense to do so? If you go through the list of breaches in the past 2 years to highly credible organizations, you go through the list of major corporate frauds (only the ones we know about), you go through the list of all the times platforms have lost funds, you go through the list of times and ways that people have lost their crypto from identity theft, hot wallet exploits, extortion, etc... and then you go through this custodian with a fine-tooth comb and truly believe they have value to add far beyond what you could, sticking your funds in a wallet (or set of wallets) they control exclusively is the absolute worst possible way to take advantage of that security. The best way to add security for crypto-assets is to make a stronger multi-sig. With one custodian, what you are doing is giving them your cryptocurrency and hoping they're honest, competent, and flawlessly secure. It's no different than storing it on a really secure exchange. Maybe the insurance will cover you. Didn't work for Bitpay in 2015. Didn't work for Yapizon in 2017. Insurance has never paid a claim in the entire history of cryptocurrency. But maybe you'll get lucky. Maybe your exact scenario will buck the trend and be what they're willing to cover. After the large deductible and hopefully without a long and expensive court battle. And you want to advertise this increase in risk, the lapse of judgement, an accident waiting to happen, as though it's some kind of benefit to customers ("Free institutional-grade storage for your digital assets.")? And then some people are writing to the OSC that custodians should be mandatory for all funds on every exchange platform? That this somehow will make Canadians as a whole more secure or better protected compared with standard air-gapped multi-sig? On what planet? Most of the problems in Canada stemmed from one thing - a lack of transparency. If Canadians had known what a joke Quadriga was - it wouldn't have grown to lose $400m from hard-working Canadians from coast to coast to coast. And Gerald Cotten would be in jail, not wherever he is now (at best, rotting peacefully). EZ-BTC and mister Dave Smilie would have been a tiny little scam to his friends, not a multi-million dollar fraud. Einstein would have got their act together or been shut down BEFORE losing millions and millions more in people's funds generously donated to criminals. MapleChange wouldn't have even been a thing. And maybe we'd know a little more about CoinTradeNewNote - like how much was lost in there. Almost all of the major losses with cryptocurrency exchanges involve deception with unbacked funds. So it's great to see transparency reports from BitBuy and ShakePay where someone independently verified the backing. The only thing we don't have is:
ANY CERTAINTY BALANCES WEREN'T EXCLUDED. Quadriga's largest account was $70m. 80% of funds are in 20% of accounts (Pareto principle). All it takes is excluding a few really large accounts - and nobody's the wiser. A fractional platform can easily pass any audit this way.
ANY VISIBILITY WHATSOEVER INTO THE CUSTODIANS. BitBuy put out their report before moving all the funds to their custodian and ShakePay apparently can't even tell us who the custodian is. That's pretty important considering that basically all of the funds are now stored there.
ANY IDEA ABOUT THE OTHER EXCHANGES. In order for this to be effective, it has to be the norm. It needs to be "unusual" not to know. If obscurity is the norm, then it's super easy for people like Gerald Cotten and Dave Smilie to blend right in.
It's not complicated to validate cryptocurrency assets. They need to exist, they need to be spendable, and they need to cover the total balances. There are plenty of credible people and firms across the country that have the capacity to reasonably perform this validation. Having more frequent checks by different, independent, parties who publish transparent reports is far more valuable than an annual check by a single "more credible/official" party who does the exact same basic checks and may or may not publish anything. Here's an example set of requirements that could be mandated:
First report within 1 month of launching, another within 3 months, and further reports at minimum every 6 months thereafter.
No auditor can be repeated within a 12 month period.
All reports must be public, identifying the auditor and the full methodology used.
All auditors must be independent of the firm being audited with no conflict of interest.
Reports must include the percentage of each asset backed, and how it's backed.
The auditor publishes a hash list, which lists a hash of each customer's information and balances that were included. Hash is one-way encryption so privacy is fully preserved. Every customer can use this to have 100% confidence they were included.
If we want more extensive requirements on audits, these should scale upward based on the total assets at risk on the platform, and whether the platform has loaned their assets out.
There are ways to structure audits such that neither crypto assets nor customer information are ever put at risk, and both can still be properly validated and publicly verifiable. There are also ways to structure audits such that they are completely reasonable for small platforms and don't inhibit innovation in any way. By making the process as reasonable as possible, we can completely eliminate any reason/excuse that an honest platform would have for not being audited. That is arguable far more important than any incremental improvement we might get from mandating "the best of the best" accountants. Right now we have nothing mandated and tons of Canadians using offshore exchanges with no oversight whatsoever. Transparency does not prove crypto assets are safe. CoinTradeNewNote, Flexcoin ($600k), and Canadian Bitcoins ($100k) are examples where crypto-assets were breached from platforms in Canada. All of them were online wallets and used no multi-sig as far as any records show. This is consistent with what we see globally - air-gapped multi-sig wallets have an impeccable record, while other schemes tend to suffer breach after breach. We don't actually know how much CoinTrader lost because there was no visibility. Rather than publishing details of what happened, the co-founder of CoinTrader silently moved on to found another platform - the "most trusted way to buy and sell crypto" - a site that has no information whatsoever (that I could find) on the storage practices and a FAQ advising that “[t]rading cryptocurrency is completely safe” and that having your own wallet is “entirely up to you! You can certainly keep cryptocurrency, or fiat, or both, on the app.” Doesn't sound like much was learned here, which is really sad to see. It's not that complicated or unreasonable to set up a proper hardware wallet. Multi-sig can be learned in a single course. Something the equivalent complexity of a driver's license test could prevent all the cold storage exploits we've seen to date - even globally. Platform operators have a key advantage in detecting and preventing fraud - they know their customers far better than any custodian ever would. The best job that custodians can do is to find high integrity individuals and train them to form even better wallet signatories. Rather than mandating that all platforms expose themselves to arbitrary third party risks, regulations should center around ensuring that all signatories are background-checked, properly trained, and using proper procedures. We also need to make sure that signatories are empowered with rights and responsibilities to reject and report fraud. They need to know that they can safely challenge and delay a transaction - even if it turns out they made a mistake. We need to have an environment where mistakes are brought to the surface and dealt with. Not one where firms and people feel the need to hide what happened. In addition to a knowledge-based test, an auditor can privately interview each signatory to make sure they're not in coercive situations, and we should make sure they can freely and anonymously report any issues without threat of retaliation. A proper multi-sig has each signature held by a separate person and is governed by policies and mutual decisions instead of a hierarchy. It includes at least one redundant signature. For best results, 3of4, 3of5, 3of6, 4of5, 4of6, 4of7, 5of6, or 5of7. History has demonstrated over and over again the risk of hot wallets even to highly credible organizations. Nonetheless, many platforms have hot wallets for convenience. While such losses are generally compensated by platforms without issue (for example Poloniex, Bitstamp, Bitfinex, Gatecoin, Coincheck, Bithumb, Zaif, CoinBene, Binance, Bitrue, Bitpoint, Upbit, VinDAX, and now KuCoin), the public tends to focus more on cases that didn't end well. Regardless of what systems are employed, there is always some level of risk. For that reason, most members of the public would prefer to see third party insurance. Rather than trying to convince third party profit-seekers to provide comprehensive insurance and then relying on an expensive and slow legal system to enforce against whatever legal loopholes they manage to find each and every time something goes wrong, insurance could be run through multiple exchange operators and regulators, with the shared interest of having a reputable industry, keeping costs down, and taking care of Canadians. For example, a 4 of 7 multi-sig insurance fund held between 5 independent exchange operators and 2 regulatory bodies. All Canadian exchanges could pay premiums at a set rate based on their needed coverage, with a higher price paid for hot wallet coverage (anything not an air-gapped multi-sig cold wallet). Such a model would be much cheaper to manage, offer better coverage, and be much more reliable to payout when needed. The kind of coverage you could have under this model is unheard of. You could even create something like the CDIC to protect Canadians who get their trading accounts hacked if they can sufficiently prove the loss is legitimate. In cases of fraud, gross negligence, or insolvency, the fund can be used to pay affected users directly (utilizing the last transparent balance report in the worst case), something which private insurance would never touch. While it's recommended to have official policies for coverage, a model where members vote would fully cover edge cases. (Could be similar to the Supreme Court where justices vote based on case law.) Such a model could fully protect all Canadians across all platforms. You can have a fiat coverage governed by legal agreements, and crypto-asset coverage governed by both multi-sig and legal agreements. It could be practical, affordable, and inclusive. Now, we are at a crossroads. We can happily give up our freedom, our innovation, and our money. We can pay hefty expenses to auditors, lawyers, and regulators year after year (and make no mistake - this cost will grow to many millions or even billions as the industry grows - and it will be borne by all Canadians on every platform because platforms are not going to eat up these costs at a loss). We can make it nearly impossible for any new platform to enter the marketplace, forcing Canadians to use the same stagnant platforms year after year. We can centralize and consolidate the entire industry into 2 or 3 big players and have everyone else fail (possibly to heavy losses of users of those platforms). And when a flawed security model doesn't work and gets breached, we can make it even more complicated with even more people in suits making big money doing the job that blockchain was supposed to do in the first place. We can build a system which is so intertwined and dependent on big government, traditional finance, and central bankers that it's future depends entirely on that of the fiat system, of fractional banking, and of government bail-outs. If we choose this path, as history has shown us over and over again, we can not go back, save for revolution. Our children and grandchildren will still be paying the consequences of what we decided today. Or, we can find solutions that work. We can maintain an open and innovative environment while making the adjustments we need to make to fully protect Canadian investors and cryptocurrency users, giving easy and affordable access to cryptocurrency for all Canadians on the platform of their choice, and creating an environment in which entrepreneurs and problem solvers can bring those solutions forward easily. None of the above precludes innovation in any way, or adds any unreasonable cost - and these three policies would demonstrably eliminate or resolve all 109 historic cases as studied here - that's every single case researched so far going back to 2011. It includes every loss that was studied so far not just in Canada but globally as well. Unfortunately, finding answers is the least challenging part. Far more challenging is to get platform operators and regulators to agree on anything. My last post got no response whatsoever, and while the OSC has told me they're happy for industry feedback, I believe my opinion alone is fairly meaningless. This takes the whole community working together to solve. So please let me know your thoughts. Please take the time to upvote and share this with people. Please - let's get this solved and not leave it up to other people to do. Facts/background/sources (skip if you like):
The inspiration for the paragraph about splitting wallets was an actual quote from a Canadian company providing custodial services in response to the OSC consultation paper: "We believe that it will be in the in best interests of investors to prohibit pooled crypto assets or ‘floats’. Most Platforms pool assets, citing reasons of practicality and expense. The recent hack of the world’s largest Platform – Binance – demonstrates the vulnerability of participants’ assets when such concessions are made. In this instance, the Platform’s entire hot wallet of Bitcoins, worth over $40 million, was stolen, facilitated in part by the pooling of client crypto assets." "the maintenance of participants (and Platform) crypto assets across multiple wallets distributes the related risk and responsibility of security - reducing the amount of insurance coverage required and making insurance coverage more readily obtainable". For the record, their reply also said nothing whatsoever about multi-sig or offline storage.
In addition to the fact that the $40m hack represented only one "hot wallet" of Binance, and they actually had the vast majority of assets in other wallets (including mostly cold wallets), multiple real cases have clearly demonstrated that risk is still present with multiple wallets. Bitfinex, VinDAX, Bithumb, Altsbit, BitPoint, Cryptopia, and just recently KuCoin all had multiple wallets breached all at the same time, and may represent a significantly larger impact on customers than the Binance breach which was fully covered by Binance. To represent that simply having multiple separate wallets under the same security scheme is a comprehensive way to reduce risk is just not true.
Private insurance has historically never covered a single loss in the cryptocurrency space (at least, not one that I was able to find), and there are notable cases where massive losses were not covered by insurance. Bitpay in 2015 and Yapizon in 2017 both had insurance policies that didn't pay out during the breach, even after a lengthly court process. The same insurance that ShakePay is presently using (and announced to much fanfare) was describe by their CEO himself as covering “physical theft of the media where the private keys are held,” which is something that has never historically happened. As was said with regard to the same policy in 2018 - “I don’t find it surprising that Lloyd’s is in this space,” said Johnson, adding that to his mind the challenge for everybody is figuring out how to structure these policies so that they are actually protective. “You can create an insurance policy that protects no one – you know there are so many caveats to the policy that it’s not super protective.”
The most profitable policy for a private insurance company is one with the most expensive premiums that they never have to pay a claim on. They have no inherent incentive to take care of people who lost funds. It's "cheaper" to take the reputational hit and fight the claim in court. The more money at stake, the more the insurance provider is incentivized to avoid payout. They're not going to insure the assets unless they have reasonable certainty to make a profit by doing so, and they're not going to pay out a massive sum unless it's legally forced. Private insurance is always structured to be maximally profitable to the insurance provider.
The circumvention of multi-sig was a key factor in the massive Bitfinex hack of over $60m of bitcoin, which today still sits being slowly used and is worth over $3b. While Bitfinex used a qualified custodian Bitgo, which was and still is active and one of the industry leaders of custodians, and they set up 2 of 3 multi-sig wallets, the entire system was routed through Bitfinex, such that Bitfinex customers could initiate the withdrawals in a "hot" fashion. This feature was also a hit with the hacker. The multi-sig was fully circumvented.
Bitpay in 2015 was another example of a breach that stole 5,000 bitcoins. This happened not through the exploit of any system in Bitpay, but because the CEO of a company they worked with got their computer hacked and the hackers were able to request multiple bitcoin purchases, which Bitpay honoured because they came from the customer's computer legitimately. Impersonation is a very common tactic used by fraudsters, and methods get more extreme all the time.
A notable case in Canada was the Canadian Bitcoins exploit. Funds were stored on a server in a Rogers Data Center, and the attendee was successfully convinced to reboot the server "in safe mode" with a simple phone call, thus bypassing the extensive security and enabling the theft.
The very nature of custodians circumvents multi-sig. This is because custodians are not just having to secure the assets against some sort of physical breach but against any form of social engineering, modification of orders, fraudulent withdrawal attempts, etc... If the security practices of signatories in a multi-sig arrangement are such that the breach risk of one signatory is 1 in 100, the requirement of 3 independent signatures makes the risk of theft 1 in 1,000,000. Since hackers tend to exploit the weakest link, a comparable custodian has to make the entry and exit points of their platform 10,000 times more secure than one of those signatories to provide equivalent protection. And if the signatories beef up their security by only 10x, the risk is now 1 in 1,000,000,000. The custodian has to be 1,000,000 times more secure. The larger and more complex a system is, the more potential vulnerabilities exist in it, and the fewer people can understand how the system works when performing upgrades. Even if a system is completely secure today, one has to also consider how that system might evolve over time or work with different members.
By contrast, offline multi-signature solutions have an extremely solid record, and in the entire history of cryptocurrency exchange incidents which I've studied (listed here), there has only been one incident (796 exchange in 2015) involving an offline multi-signature wallet. It happened because the customer's bitcoin address was modified by hackers, and the amount that was stolen ($230k) was immediately covered by the exchange operators. Basically, the platform operators were tricked into sending a legitimate withdrawal request to the wrong address because hackers exploited their platform to change that address. Such an issue would not be prevented in any way by the use of a custodian, as that custodian has no oversight whatsoever to the exchange platform. It's practical for all exchange operators to test large withdrawal transactions as a general policy, regardless of what model is used, and general best practice is to diagnose and fix such an exploit as soon as it occurs.
False promises on the backing of funds played a huge role in the downfall of Quadriga, and it's been exposed over and over again (MyCoin, PlusToken, Bitsane, Bitmarket, EZBTC, IDAX). Even today, customers have extremely limited certainty on whether their funds in exchanges are actually being backed or how they're being backed. While this issue is not unique to cryptocurrency exchanges, the complexity of the technology and the lack of any regulation or standards makes problems more widespread, and there is no "central bank" to come to the rescue as in the 2008 financial crisis or during the great depression when "9,000 banks failed".
In addition to fraudulent operations, the industry is full of cases where operators have suffered breaches and not reported them. Most recently, Einstein was the largest case in Canada, where ongoing breaches and fraud were perpetrated against the platform for multiple years and nobody found out until the platform collapsed completely. While fraud and breaches suck to deal with, they suck even more when not dealt with. Lack of visibility played a role in the largest downfalls of Mt. Gox, Cryptsy, and Bitgrail. In some cases, platforms are alleged to have suffered a hack and keep operating without admitting it at all, such as CoinBene.
It surprises some to learn that a cryptographic solution has already existed since 2013, and gained widespread support in 2014 after Mt. Gox. Proof of Reserves is a full cryptographic proof that allows any customer using an exchange to have complete certainty that their crypto-assets are fully backed by the platform in real-time. This is accomplished by proving that assets exist on the blockchain, are spendable, and fully cover customer deposits. It does not prove safety of assets or backing of fiat assets.
If we didn't care about privacy at all, a platform could publish their wallet addresses, sign a partial transaction, and put the full list of customer information and balances out publicly. Customers can each check that they are on the list, that the balances are accurate, that the total adds up, and that it's backed and spendable on the blockchain. Platforms who exclude any customer take a risk because that customer can easily check and see they were excluded. So together with all customers checking, this forms a full proof of backing of all crypto assets.
However, obviously customers care about their private information being published. Therefore, a hash of the information can be provided instead. Hash is one-way encryption. The hash allows the customer to validate inclusion (by hashing their own known information), while anyone looking at the list of hashes cannot determine the private information of any other user. All other parts of the scheme remain fully intact. A model like this is in use on the exchange CoinFloor in the UK.
A Merkle tree can provide even greater privacy. Instead of a list of balances, the balances are arranged into a binary tree. A customer starts from their node, and works their way to the top of the tree. For example, they know they have 5 BTC, they plus 1 other customer hold 7 BTC, they plus 2-3 other customers hold 17 BTC, etc... until they reach the root where all the BTC are represented. Thus, there is no way to find the balances of other individual customers aside from one unidentified customer in this case.
Proposals such as this had the backing of leaders in the community including Nic Carter, Greg Maxwell, and Zak Wilcox. Substantial and significant effort started back in 2013, with massive popularity in 2014. But what became of that effort? Very little. Exchange operators continue to refuse to give visibility. Despite the fact this information can often be obtained through trivial blockchain analysis, no Canadian platform has ever provided any wallet addresses publicly. As described by the CEO of Newton "For us to implement some kind of realtime Proof of Reserves solution, which I'm not opposed to, it would have to ... Preserve our users' privacy, as well as our own. Some kind of zero-knowledge proof". Kraken describes here in more detail why they haven't implemented such a scheme. According to professor Eli Ben-Sasson, when he spoke with exchanges, none were interested in implementing Proof of Reserves.
And yet, Kraken's places their reasoning on a page called "Proof of Reserves". More recently, both BitBuy and ShakePay have released reports titled "Proof of Reserves and Security Audit". Both reports contain disclaimers against being audits. Both reports trust the customer list provided by the platform, leaving the open possibility that multiple large accounts could have been excluded from the process. Proof of Reserves is a blockchain validation where customers see the wallets on the blockchain. The report from Kraken is 5 years old, but they leave it described as though it was just done a few weeks ago. And look at what they expect customers to do for validation. When firms represent something being "Proof of Reserve" when it's not, this is like a farmer growing fruit with pesticides and selling it in a farmers market as organic produce - except that these are people's hard-earned life savings at risk here. Platforms are misrepresenting the level of visibility in place and deceiving the public by their misuse of this term. They haven't proven anything.
Fraud isn't a problem that is unique to cryptocurrency. Fraud happens all the time. Enron, WorldCom, Nortel, Bear Stearns, Wells Fargo, Moser Baer, Wirecard, Bre-X, and Nicola are just some of the cases where frauds became large enough to become a big deal (and there are so many countless others). These all happened on 100% reversible assets despite regulations being in place. In many of these cases, the problems happened due to the over-complexity of the financial instruments. For example, Enron had "complex financial statements [which] were confusing to shareholders and analysts", creating "off-balance-sheet vehicles, complex financing structures, and deals so bewildering that few people could understand them". In cryptocurrency, we are often combining complex financial products with complex technologies and verification processes. We are naïve if we think problems like this won't happen. It is awkward and uncomfortable for many people to admit that they don't know how something works. If we want "money of the people" to work, the solutions have to be simple enough that "the people" can understand them, not so confusing that financial professionals and technology experts struggle to use or understand them.
For those who question the extent to which an organization can fool their way into a security consultancy role, HB Gary should be a great example to look at. Prior to trying to out anonymous, HB Gary was being actively hired by multiple US government agencies and others in the private sector (with glowing testimonials). The published articles and hosted professional security conferences. One should also look at this list of data breaches from the past 2 years. Many of them are large corporations, government entities, and technology companies. These are the ones we know about. Undoubtedly, there are many more that we do not know about. If HB Gary hadn't been "outted" by anonymous, would we have known they were insecure? If the same breach had happened outside of the public spotlight, would it even have been reported? Or would HB Gary have just deleted the Twitter posts, brought their site back up, done a couple patches, and kept on operating as though nothing had happened?
In the case of Quadriga, the facts are clear. Despite past experience with platforms such as MapleChange in Canada and others around the world, no guidance or even the most basic of a framework was put in place by regulators. By not clarifying any sort of legal framework, regulators enabled a situation where a platform could be run by former criminal Mike Dhanini/Omar Patryn, and where funds could be held fully unchecked by one person. At the same time, the lack of regulation deterred legitimate entities from running competing platforms and Quadriga was granted a money services business license for multiple years of operation, which gave the firm the appearance of legitimacy. Regulators did little to protect Canadians despite Quadriga failing to file taxes from 2016 onward. The entire administrative team had resigned and this was public knowledge. Many people had suspicions of what was going on, including Ryan Mueller, who forwarded complaints to the authorities. These were ignored, giving Gerald Cotten the opportunity to escape without justice.
There are multiple issues with the SOC II model including the prohibitive cost (you have to find a third party accounting firm and the prices are not even listed publicly on any sites), the requirement of operating for a year (impossible for new platforms), and lack of any public visibility (SOC II are private reports that aren't shared outside the people in suits).
Securities frameworks are expensive. Sarbanes-Oxley is estimated to cost $5.1 million USD/yr for the average Fortune 500 company in the United States. Since "Fortune 500" represents the top 500 companies, that means well over $2.55 billion USD (~$3.4 billion CAD) is going to people in suits. Isn't the problem of trust and verification the exact problem that the blockchain is supposed to solve?
To use Quadriga as justification for why custodians or SOC II or other advanced schemes are needed for platforms is rather silly, when any framework or visibility at all, or even the most basic of storage policies, would have prevented the whole thing. It's just an embarrassment.
We are now seeing regulators take strong action. CoinSquare in Canada with multi-million dollar fines. BitMex from the US, criminal charges and arrests. OkEx, with full disregard of withdrawals and no communication. Who's next?
We have a unique window today where we can solve these problems, and not permanently destroy innovation with unreasonable expectations, but we need to act quickly. This is a unique historic time that will never come again.
XT.COM CEO Weber was invited to attend Hacken’s online AMA Event
At 10:00 on the evening of September 24, XT.COM CEO Weber WOO and Haken, the world's leading cyber security consulting company, launched an online AMA with the theme of "Future Development of XT.COM". Weber talked about XT.COM's history, team, business development and attitude towards the development of the blockchain industry. When talking about the future market trend of XT.COM, Weber said, "XT will continue to explore markets in Europe, Southeast Asia, South Asia and South America in the future, and further strengthen XT's international market." The community members actively presented their questions following the event. Congratulations to the four users u/Nos Tha u/brucelee199u/DanielleStelleu/brunoiat, getting rewards for putting up questions. https://preview.redd.it/dp6zmy7fv8p51.png?width=1280&format=png&auto=webp&s=e76a3bb2da20084b5074ee077347ab0446d5e430 For those missing the broadcast, Mr.XT has compiled the content for everyone~ Let’s get a review~ Host: Dyma Budorin | Hacken CEO Guest: Weber WOO | XT.COM CEO Dyma:Please introduce yourself a little.Where are you from?When were you involved in crypto? Weber:Hello Hackeners. I am Weber Woo from the XT.COM exchange. I am glad to be invited here to share something about the XT exchange, XT team, and also myself. I am from Shanghai, China. When I was studying MBA at school in 2012, I read an article in Business Week about Bitcoin being very popular in Iran. Because of sanctions, many Iranians bought bitcoin to transfer their assets to overseas. That was the first time I heard about crypto. Dyma:What experience do you have in crypto? Trading? Mining? Investing? Holding? Only positive experience or negative, too? Weber:I will talk about my experience in Blockchain, and also my team. In 2013, after my friends involved in Bitcoin, I also started to pay more attention to it. We began to mine Bitcoin. From 2013-2016, we are more focused on mining and trading. We have 100,000 mining machines in our mining factory, located in Yunnan, Sichuan province in China. Of course, most of them are owned by our customers. At the end of 2016, we started our mining pool business. Our mining portfolio included BTC, ETH, ETC, ZEC, SC, DCR. We had 5%of ETH computing power at the peak. At the beginning of 2017, we invested a crypto exchange in China. But it was stopped in September 2017, because of China's new policies. In the middle of 2018, we started the XT exchange in Seychelles, headquartered in HongKong. Dyma:Have you ever been hacked? Weber:I've never been hacked directly But lost my Bitcoin from the MT. Gox hack in 2014. That taught me a lot to keep crypto-assets safe. The MT. Gox incident also reminded our team and me to take security measures very seriously when running the XT exchange. Business 1.We know that XT has more than 1 millionn global users. You might have a big team. How many people? What idea does unite them? Currently, XT has more than 80 employees comprised of the C-level team, technical developers, marketers, and business developers. More than 40% of our team have Postgraduate educational background. Our team comes from previous companies like Alibaba, Tencent, China Unicoin, Bosch, LG, and more. Everyone on the team has a high level of understanding of what opportunities blockchain can and does provide for the world. 2.XT was introduced in 2018 — just in the beginning of crypto winter. Was it hard to start in such conditions? How did you motivate yourself and your colleagues? Since XT started in a bear market, it was easier for us than other exchanges to stay agile and motivated. We continued to grow our team and focus on building an exchange that protects its users and listens to what they want. Understanding that just like any market, crypto goes through market cycles too. We stayed motivated and focused on being ready for the next bull market. We already spend seven years in the blockchain industry. The bear market is an excellent opportunity to start a new business to save costs and talent recruits. 3.Is it really hard to be a Chinese crypto exchange nowadays? As I said before, the XT exchange was registered in Seychelles, headquartered in HongKong. We are not officially a Chinese crypto exchange. Half of our users are from other global markets than China. We are the most popular in Korea and Japan. Of course, Crypto is still very popular in China, especially recently, with the rise of DeFi. Investors are smarter than 2017, but everyone is excited about all the new blockchain space developments. https://preview.redd.it/91rmlsidv8p51.png?width=693&format=png&auto=webp&s=debd3e9f3c6bd5efad4b58589fe5e988179d7e19 4.Are your developers working on some new features? What should we expect? Currently, XT is working on bringing new features to the exchange. XT is the first social infused exchange that launched a Group Trading function in the BiYong App. BiYong is a social application focused on the Chinese market. BiYong has more than 5 million users in total. We are the only partner for BiYong in Group trading. Users can trade within the social chatting app together as a collective. I want to share some benefits for Group Trading. https://preview.redd.it/4ephtzbcv8p51.png?width=753&format=png&auto=webp&s=191ca9c7e4d294159347d549b6ecd8cdb66ebbfe This is how Group Trading typically works. https://preview.redd.it/50opietbv8p51.png?width=753&format=png&auto=webp&s=aaddfb7071da6cb75f249927bbd8ae3591b39793 XT.com is launching a DEX. We will launch DEX in quarter four this year. The product is still developing, so I cannot share more about it. We are glad to share it when it's ready. Crypto future 1.Do you think the crypto winter is over? With everything going on in the world currently, it is difficult to predict the future. I believe we are now in a bull market cycle, but things can change very quickly. We see different lengths of bear markets in the space as it grows. We must all pay attention to the trends and proceed accordingly. 2.Do you believe in the DeFi’s potential to make mass adoption closer? Why do you think it is so popular today? The rise of DeFi has been incredible this year. Projects like LINK, UNI, YFI caught the attention of millions. The technology for real use cases has been implemented, and there is a real opportunity to get in on the ground floor for eager investors. With the recent airdrop from Uniswap with their new token, UNI has only driven interest within the DeFi space. I believe it will take time, but DeFi is here to stay regardless if the market decides to cycle again. We can see DeFi Locked Value in the past three years in the following pic. It's popular and here to stay. https://preview.redd.it/utk4j4aav8p51.png?width=753&format=png&auto=webp&s=6a9d785c7e854ecc258c2c75f2458b5eceff20ac 3.What could you advise your users? What are the main risks in trading and investing today? I advise anyone trading or investing in crypto to be smart. The crypto market is a very volatile place. Using good risk management is critical to ensure the security of their funds. Do not put all your eggs and one basket and only invest what you are willing to lose would be my recommendation, especially when it comes to altcoins. I think that Bitcoin and Etheruem are the best low-risk long term investment options. So I suggest you can divide your investment into 3 sections. For example, 40% in BTC and ETH, 30% for Top 50 altcoins, and 30% for HIGH risk projects if you are willing to take the risk. We can see the risk from this picture. https://preview.redd.it/8j9hvng5v8p51.png?width=753&format=png&auto=webp&s=e2ea47fa1cae0940e80048405d064d7726e6c6dc 4. What are your and your company long-term plans? Where will you be in 5 years? Regarding the market, XT will continue to grow as we expand to more world markets like Europe, SE Asian, South Asian, and South America. For compliance, we already had our MSB license approved in the US and will apply for more in different markets in the future. On the business side, we will still focus on mining and the exchange. Of course, our CEX and DEX will be our primary focus in the years to come. About Hacken Hacken is a premier cybersecurity consulting company with an essential focus on cryptocurrency exchanges and blockchain security. Website： https://hacken.io/ About XT.COM XT.COM is the world's first social infused exchange. Users can chat in communities while knowing the market trend to invest. In XT communities, users explore valuable coins together. XT.COM is building towards garnering loyalty and bring new potential for the development of the entire blockchain industry. To achieve better development, it is necessary to break the tradition with a fresh model. XT Exchange not only empowers the blockchain industry but leads the industry with its innovation.
How To End The Cryptocurrency Exchange "Wild West" Without Crippling Innovation
In case you haven't noticed the consultation paper, staff notice, and report on Quadriga, regulators are now clamping down on Canadian cryptocurrency exchanges. The OSC and other regulatory bodies are still interested in industry feedback. They have not put forward any official regulation yet. Below are some ideas/insights and a proposed framework.
Typical securities frameworks will cost Canadians millions of dollars (ie Sarbanes-Oxley estimated at $5m USD/yr per firm). Implementation costs of this proposal are significantly cheaper.
Canadians can maintain a diverse set of exchanges, multiple viable business models are still fully supported, and innovation is encouraged while keeping Canadians safe.
Many of you have limited time to read the full proposal, so here are the highlights:
Effective standards to prevent both internal and external theft. Exchange operators are trained and certified, and have a legal responsibility to users.
Regular Transparent Audits
Provides visibility to Canadians that their funds are fully backed on the exchange, while protecting privacy and sensitive platform information.
Establishment of basic insurance standards/strategy, to expand over time. Removing risk to exchange users of any hot wallet theft.
Background and Justifications
Cold Storage Custody/Management After reviewing close to 100 cases, all thefts tend to break down into more or less the same set of problems: • Funds stored online or in a smart contract, • Access controlled by one person or one system, • 51% attacks (rare), • Funds sent to the wrong address (also rare), or • Some combination of the above. For the first two cases, practical solutions exist and are widely implemented on exchanges already. Offline multi-signature solutions are already industry standard. No cases studied found an external theft or exit scam involving an offline multi-signature wallet implementation. Security can be further improved through minimum numbers of signatories, background checks, providing autonomy and legal protections to each signatory, establishing best practices, and a training/certification program. The last two transaction risks occur more rarely, and have never resulted in a loss affecting the actual users of the exchange. In all cases to date where operators made the mistake, they've been fully covered by the exchange platforms. • 51% attacks generally only occur on blockchains with less security. The most prominent cases have been Bitcoin Gold and Ethereum Classic. The simple solution is to enforce deposit limits and block delays such that a 51% attack is not cost-effective. • The risk of transactions to incorrect addresses can be eliminated by a simple test transaction policy on large transactions. By sending a small amount of funds prior to any large withdrawals/transfers as a standard practice, the accuracy of the wallet address can be validated. The proposal covers all loss cases and goes beyond, while avoiding significant additional costs, risks, and limitations which may be associated with other frameworks like SOC II. On The Subject of Third Party Custodians Many Canadian platforms are currently experimenting with third party custody. From the standpoint of the exchange operator, they can liberate themselves from some responsibility of custody, passing that off to someone else. For regulators, it puts crypto in similar categorization to oil, gold, and other commodities, with some common standards. Platform users would likely feel greater confidence if the custodian was a brand they recognized. If the custodian was knowledgeable and had a decent team that employed multi-sig, they could keep assets safe from internal theft. With the right protections in place, this could be a great solution for many exchanges, particularly those that lack the relevant experience or human resources for their own custody systems. However, this system is vulnerable to anyone able to impersonate the exchange operators. You may have a situation where different employees who don't know each other that well are interacting between different companies (both the custodian and all their customers which presumably isn't just one exchange). A case study of what can go wrong in this type of environment might be Bitpay, where the CEO was tricked out of 5000 bitcoins over 3 separate payments by a series of emails sent legitimately from a breached computer of another company CEO. It's also still vulnerable to the platform being compromised, as in the really large $70M Bitfinex hack, where the third party Bitgo held one key in a multi-sig wallet. The hacker simply authorized the withdrawal using the same credentials as Bitfinex (requesting Bitgo to sign multiple withdrawal transactions). This succeeded even with the use of multi-sig and two heavily security-focused companies, due to the lack of human oversight (basically, hot wallet). Of course, you can learn from these cases and improve the security, but so can hackers improve their deception and at the end of the day, both of these would have been stopped by the much simpler solution of a qualified team who knew each other and employed multi-sig with properly protected keys. It's pretty hard to beat a human being who knows the business and the typical customer behaviour (or even knows their customers personally) at spotting fraud, and the proposed multi-sig means any hacker has to get through the scrutiny of 3 (or more) separate people, all of whom would have proper training including historical case studies. There are strong arguments both for and against using use of third party custodians. The proposal sets mandatory minimum custody standards would apply regardless if the cold wallet signatories are exchange operators, independent custodians, or a mix of both. On The Subject Of Insurance ShakePay has taken the first steps into this new realm (congratulations). There is no question that crypto users could be better protected by the right insurance policies, and it certainly feels better to transact with insured platforms. The steps required to obtain insurance generally place attention in valuable security areas, and in this case included a review from CipherTrace. One of the key solutions in traditional finance comes from insurance from entities such as the CDIC. However, historically, there wasn't found any actual insurance payout to any cryptocurrency exchange, and there are notable cases where insurance has not paid. With Bitpay, for example, the insurance agent refused because the issue happened to the third party CEO's computer instead of anything to do with Bitpay itself. With the Youbit exchange in South Korea, their insurance claim was denied, and the exchange ultimately ended up instead going bankrupt with all user's funds lost. To quote Matt Johnson in the original Lloyd's article: “You can create an insurance policy that protects no one – you know there are so many caveats to the policy that it’s not super protective.” ShakePay's insurance was only reported to cover their cold storage, and “physical theft of the media where the private keys are held”. Physical theft has never, in the history of cryptocurrency exchange cases reviewed, been reported as the cause of loss. From the limited information of the article, ShakePay made it clear their funds are in the hands of a single US custodian, and at least part of their security strategy is to "decline to confirm the custodian’s name on the record". While this prevents scrutiny of the custodian, it's pretty silly to speculate that a reasonably competent hacking group couldn't determine who the custodian is. A far more common infiltration strategy historically would be social engineering, which has succeeded repeatedly. A hacker could trick their way into ShakePay's systems and request a fraudulent withdrawal, impersonate ShakePay and request the custodian to move funds, or socially engineer their way into the custodian to initiate the withdrawal of multiple accounts (a payout much larger than ShakePay) exploiting the standard procedures (for example, fraudulently initiating or override the wallet addresses of a real transfer). In each case, nothing was physically stolen and the loss is therefore not covered by insurance. In order for any insurance to be effective, clear policies have to be established about what needs to be covered. Anything short of that gives Canadians false confidence that they are protected when they aren't in any meaningful way. At this time, the third party insurance market does not appear to provide adequate options or coverage, and effort is necessary to standardize custody standards, which is a likely first step in ultimately setting up an insurance framework. A better solution compared to third party insurance providers might be for Canadian exchange operators to create their own collective insurance fund, or a specific federal organization similar to the CDIC. Such an organization would have a greater interest or obligation in paying out actual cases, and that would be it's purpose rather than maximizing it's own profit. This would be similar to the SAFU which Binance has launched, except it would cover multiple exchanges. There is little question whether the SAFU would pay out given a breach of Binance, and a similar argument could be made for a insurance fund managed by a collective of exchange operators or a government organization. While a third party insurance provider has the strong market incentive to provide the absolute minimum coverage and no market incentive to payout, an entity managed by exchange operators would have incentive to protect the reputation of exchange operators/the industry, and the government should have the interest of protecting Canadians. On The Subject of Fractional Reserve There is a long history of fractional reserve failures, from the first banks in ancient times, through the great depression (where hundreds of fractional reserve banks failed), right through to the 2008 banking collapse referenced in the first bitcoin block. The fractional reserve system allows banks to multiply the money supply far beyond the actual cash (or other assets) in existence, backed only by a system of debt obligations of others. Safely supporting a fractional reserve system is a topic of far greater complexity than can be addressed by a simple policy, and when it comes to cryptocurrency, there is presently no entity reasonably able to bail anyone out in the event of failure. Therefore, this framework is addressed around entities that aim to maintain 100% backing of funds. There may be some firms that desire but have failed to maintain 100% backing. In this case, there are multiple solutions, including outside investment, merging with other exchanges, or enforcing a gradual restoration plan. All of these solutions are typically far better than shutting down the exchange, and there are multiple cases where they've been used successfully in the past. Proof of Reserves/Transparency/Accountability Canadians need to have visibility into the backing on an ongoing basis. The best solution for crypto-assets is a Proof of Reserve. Such ideas go back all the way to 2013, before even Mt. Gox. However, no Canadian exchange has yet implemented such a system, and only a few international exchanges (CoinFloor in the UK being an example) have. Many firms like Kraken, BitBuy, and now ShakePay use the Proof of Reserve term to refer to lesser proofs which do not actually cryptographically prove the full backing of all user assets on the blockchain. In order for a Proof of Reserve to be effective, it must actually be a complete proof, and it needs to be understood by the public that is expected to use it. Many firms have expressed reservations about the level of transparency required in a complete Proof of Reserve (for example Kraken here). While a complete Proof of Reserves should be encouraged, and there are some solutions in the works (ie TxQuick), this is unlikely to be suitable universally for all exchange operators and users. Given the limitations, and that firms also manage fiat assets, a more traditional audit process makes more sense. Some Canadian exchanges (CoinSquare, CoinBerry) have already subjected themselves to annual audits. However, these results are not presently shared publicly, and there is no guarantee over the process including all user assets or the integrity and independence of the auditor. The auditor has been typically not known, and in some cases, the identity of the auditor is protected by a NDA. Only in one case (BitBuy) was an actual report generated and publicly shared. There has been no attempt made to validate that user accounts provided during these audits have been complete or accurate. A fraudulent fractional exchange, or one which had suffered a breach they were unwilling to publicly accept (see CoinBene), could easily maintain a second set of books for auditors or simply exclude key accounts to pass an individual audit. The proposed solution would see a reporting standard which includes at a minimum - percentage of backing for each asset relative to account balances and the nature of how those assets are stored, with ownership proven by the auditor. The auditor would also publicly provide a "hash list", which they independently generate from the accounts provided by the exchange. Every exchange user can then check their information against this public "hash list". A hash is a one-way form of encryption, which fully protects the private information, yet allows anyone who knows that information already to validate that it was included. Less experienced users can take advantage of public tools to calculate the hash from their information (provided by the exchange), and thus have certainty that the auditor received their full balance information. Easy instructions can be provided. Auditors should be impartial, their identities and process public, and they should be rotated so that the same auditor is never used twice in a row. Balancing the cost of auditing against the needs for regular updates, a 6 month cycle likely makes the most sense. Hot Wallet Management The best solution for hot wallets is not to use them. CoinBerry reportedly uses multi-sig on all withdrawals, and Bitmex is an international example known for their structure devoid of hot wallets. However, many platforms and customers desire fast withdrawal processes, and human validation has a cost of time and delay in this process. A model of self-insurance or separate funds for hot wallets may be used in these cases. Under this model, a platform still has 100% of their client balance in cold storage and holds additional funds in hot wallets for quick withdrawal. Thus, the risk of those hot wallets is 100% on exchange operators and not affecting the exchange users. Since most platforms typically only have 1%-5% in hot wallets at any given time, it shouldn't be unreasonable to build/maintain these additional reserves over time using exchange fees or additional investment. Larger withdrawals would still be handled at regular intervals from the cold storage. Hot wallet risks have historically posed a large risk and there is no established standard to guarantee secure hot wallets. When the government of South Korea dispatched security inspections to multiple exchanges, the results were still that 3 of them got hacked after the inspections. If standards develop such that an organization in the market is willing to insure the hot wallets, this could provide an acceptable alternative. Another option may be for multiple exchange operators to pool funds aside for a hot wallet insurance fund. Comprehensive coverage standards must be established and maintained for all hot wallet balances to make sure Canadians are adequately protected.
Current Draft Proposal
(1) Proper multi-signature cold wallet storage. (a) Each private key is the personal and legal responsibility of one person - the “signatory”. Signatories have special rights and responsibilities to protect user assets. Signatories are trained and certified through a course covering (1) past hacking and fraud cases, (2) proper and secure key generation, and (3) proper safekeeping of private keys. All private keys must be generated and stored 100% offline by the signatory. If even one private keys is ever breached or suspected to be breached, the wallet must be regenerated and all funds relocated to a new wallet. (b) All signatories must be separate background-checked individuals free of past criminal conviction. Canadians should have a right to know who holds their funds. All signing of transactions must take place with all signatories on Canadian soil or on the soil of a country with a solid legal system which agrees to uphold and support these rules (from an established white-list of countries which expands over time). (c) 3-5 independent signatures are required for any withdrawal. There must be 1-3 spare signatories, and a maximum of 7 total signatories. The following are all valid combinations: 3of4, 3of5, 3of6, 4of5, 4of6, 4of7, 5of6, or 5of7. (d) A security audit should be conducted to validate the cold wallet is set up correctly and provide any additional pertinent information. The primary purpose is to ensure that all signatories are acting independently and using best practices for private key storage. A report summarizing all steps taken and who did the audit will be made public. Canadians must be able to validate the right measures are in place to protect their funds. (e) There is a simple approval process if signatories wish to visit any country outside Canada, with a potential whitelist of exempt countries. At most 2 signatories can be outside of aligned jurisdiction at any given time. All exchanges would be required to keep a compliant cold wallet for Canadian funds and have a Canadian office if they wish to serve Canadian customers. (2) Regular and transparent solvency audits. (a) An audit must be conducted at founding, after 3 months of operation, and at least once every 6 months to compare customer balances against all stored cryptocurrency and fiat balances. The auditor must be known, independent, and never the same twice in a row. (b) An audit report will be published featuring the steps conducted in a readable format. This should be made available to all Canadians on the exchange website and on a government website. The report must include what percentage of each customer asset is backed on the exchange, and how those funds are stored. (c) The auditor will independently produce a hash of each customer's identifying information and balance as they perform the audit. This will be made publicly available on the exchange and government website, along with simplified instructions that each customer can use to verify that their balance was included in the audit process. (d) The audit needs to include a proof of ownership for any cryptocurrency wallets included. A satoshi test (spending a small amount) or partially signed transaction both qualify. (e) Any platform without 100% reserves should be assessed on a regular basis by a government or industry watchdog. This entity should work to prevent any further drop, support any private investor to come in, or facilitate a merger so that 100% backing can be obtained as soon as possible. (3) Protections for hot wallets and transactions. (a) A standardized list of approved coins and procedures will be established to constitute valid cold storage wallets. Where a multi-sig process is not natively available, efforts will be undertaken to establish a suitable and stable smart contract standard. This list will be expanded and improved over time. Coins and procedures not on the list are considered hot wallets. (b) Hot wallets can be backed by additional funds in cold storage or an acceptable third-party insurance provider with a comprehensive coverage policy. (c) Exchanges are required to cover the full balance of all user funds as denominated in the same currency, or double the balance as denominated in bitcoin or CAD using an established trading rate. If the balance is ever insufficient due to market movements, the firm must rectify this within 24 hours by moving assets to cold storage or increasing insurance coverage. (d) Any large transactions (above a set threshold) from cold storage to any new wallet addresses (not previously transacted with) must be tested with a smaller transaction first. Deposits of cryptocurrency must be limited to prevent economic 51% attacks. Any issues are to be covered by the exchange. (e) Exchange platforms must provide suitable authentication for users, including making available approved forms of two-factor authentication. SMS-based authentication is not to be supported. Withdrawals must be blocked for 48 hours in the event of any account password change. Disputes on the negligence of exchanges should be governed by case law.
Continued review of existing OSC feedback is still underway. More feedback and opinions on the framework and ideas as presented here are extremely valuable. The above is a draft and not finalized. The process of further developing and bringing a suitable framework to protect Canadians will require the support of exchange operators, legal experts, and many others in the community. The costs of not doing such are tremendous. A large and convoluted framework, one based on flawed ideas or implementation, or one which fails to properly safeguard Canadians is not just extremely expensive and risky for all Canadians, severely limiting to the credibility and reputation of the industry, but an existential risk to many exchanges. The responsibility falls to all of us to provide our insight and make our opinions heard on this critical matter. Please take the time to give your thoughts.
Was Epstein behind an anonymous team that created Satoshi Nakamoto?
"The behavior of termites, together with ants and bees, is a precursor to trust because they have an extraordinary ability to form relationships and sophisticated social structures based on mutual altruism even though individually they are fundamentally dumb. Money itself is a derivative of trust. If we can figure out how termites come together, then we may be able to better understand the underlying principles of market behavior -- and make big money." —Jeffrey Epstein, Letter to Martin Nowak (evolutionary game theory scientist), 2002. https://nymag.com/nymetro/news/people/n_7912/index.html ——————————————————— “I have this idea of a future with virtual peer to peer banking. A kind of decentralized and secured system. Gone would be the times that governments and banks can track and interfere with our money transfers. Or even interfere with the total amount of money on earth. My envisioned sytem would have a fixed total amount of money. But each money unit (say virtual coin) is divisable indefinitely. So a kind of deflation would replace inflation. The total value of the money in the world would be a fixed number. It poses no problem for liquidity, because the currency can be divided anytime. However maybe people will not spend their money much, because it's value will increase often. Other problems raise in the areas of security, malicious use, and how to come towards such system from current systems? These are just ideas, I like to hear comments or about net resources on this subject.” —X, UK finance forum, 2002. https://archive.ph/T7ZBD ——————————————————— “My studies are not complete as I am working on the intersection between evolutionary dynamics, social statistical mechanics, game theory, computational biology and synthetic biology in an attempt to discover the mathematical underpinnings of competition verses cooperation. Included in this is an attempt to formularize the efficiencies of social prosthetic systems. First attempts have been to analogize it to heat and energy transfers across variable resistance nodal networks. I'm further attempting to find a derivation of “power” (Why does everybody want it?) in an ecological social system that would include variables for reputation, trust or awe and the inherent strategically diverse tactics of deception.” —Jeffrey Epstein, application to secure Visiting Fellowship position at Harvard. 2006. https://assets.documentcloud.org/documents/6880926/HarvardEpsteinReport.pdf ——————————————————— “A purely peer-to-peer version of electronic cash would allow online payments to be sent directly from one party to another without going through a financial institution. Digital signatures provide part of the solution, but the main benefits are lost if a trusted third party is still required to prevent double-spending. We propose a solution to the double-spending problem using a peer-to-peer network. The network timestamps transactions by hashing them into an ongoing chain of hash-based proof-of-work, forming a record that cannot be changed without redoing the proof-of-work. The longest chain not only serves as proof of the sequence of events witnessed, but proof that it came from the largest pool of CPU power. As long as a majority of CPU power is controlled by nodes that are not cooperating to attack the network, they'll generate the longest chain and outpace attackers. The network itself requires minimal structure. Messages are broadcast on a best effort basis, and nodes can leave and rejoin the network at will, accepting the longest proof-of-work chain as proof of what happened while they were gone. Commerce on the Internet has come to rely almost exclusively on financial institutions serving as trusted third parties to process electronic payments. While the system works well enough for most transactions, it still suffers from the inherent weaknesses of the trust based model. Completely non-reversible transactions are not really possible, since financial institutions cannot avoid mediating disputes. The cost of mediation increases transaction costs, limiting the minimum practical transaction size and cutting off the possibility for small casual transactions, and there is a broader cost in the loss of ability to make non-reversible payments for non- reversible services. With the possibility of reversal, the need for trust spreads. Merchants must be wary of their customers, hassling them for more information than they would otherwise need. A certain percentage of fraud is accepted as unavoidable. These costs and payment uncertainties can be avoided in person by using physical currency, but no mechanism exists to make payments over a communications channel without a trusted party.” —Satoshi Nakamoto, Bitcoin Whitepaper, 2008. https://bitcoin.org/bitcoin.pdf —————————other relevant links: 2017: Epstein publicly endorsed Bitcoin as a store of value, publically funded many bitcoin “maximalist” projects HODLr since when? 2013: Links and instructions on accessing Cheese Pizza embedded on the bitcoin blockchain on blk00052 Ultimate deadman’s switch? 2013: Death of Dave Kleinman, PALM BEACH COUNTY POLICE Computer Forensics Expert and reputed encrypter of Satoshi’s 1 million Bitcoin Investigating said deadman’s switch or Epstein’s encrypted CP/blackmail confiscated by Palm Beach County police? 2003-2008: Paul Calder LeRoux “Solotsi”, #1 Bitcoin programmer candidate sets up dozens of shell companies for money laundering, drug trafficking, weapons trafficking, mining/logging enterprises, paying off assassinations. He is the founder of E4M/TrueCrypt—only encryption unbreakable by NSA according to Snowden. He is also proported to be the bastard grandson of a US senator. He lobbied Mugabe with the help of Ari Ben-Menashe of Israeli intelligence once. He came under satoshi speculation after being mentioned in a footnote of redacted Wright vs Kleinman Estate case, coincidentally being litigated by Virginia Guiffry’s law firm. August 2019: Computer-Generated Deep Fake AI Satoshi Nakamoto? No further confirmation of this guy has appeared, either as a real person or as further proof he is Satoshi. Seems to be hiding behind mysterious shell company. *my post got removed from bitcoin for being off-topic and deleted from Epstein probably for mentioning pizzagate, can it find a home here? Edit: added Jeffrey’s Visiting Fellowship statement from the Harvard Report
This review is not sponsored! Neither it is an ad. How to choose a mining pool? How to avoid stale shares? The pros and cons of different services.
What is a cryptocurrency mining pool?
A “mining pool" is a server that distributes the task of calculating the block signature between all connected participants. The contribution of each of them is evaluated using the so-called “shares”, which are potential candidates for receiving a signature. As soon as one of the “shares” hits the target, the pool announces the readiness of the block and distributes the reward. However, if you participate in the pool, then you will have to share the profit with all the participants in the pool, but for the majority, this usually is the most profitable option.
Which pool is better for mining?
The best mining pools should meet the following criteria:
Minimum commission for using their services (mining and funds withdrawal);
24/7 availability to monitor all the steps of mining;
Honesty, reliability and a long time of existence (among the owners of pools some scammers steal part of the power of miners and dissolve into oblivion with the funds earned by miners);
The high computing power of the pool makes it more likely that blocks will be found regularly (with low pool power, all work may be wasted due to the low probability of finding blocks);
A small ping) from the user's mining equipment to the pool servers to ensure timely receipt of tasks from the pool and minimize the number of stale shares;
If the mining power is small, it is worth paying attention to the minimum payout threshold so that you do not have to wait for it for a long time.
Key selection criteria
To select a good pool for each specific cryptocurrency, you need to carefully study all the information available about it on its website and on the forums. To reduce the number of stale shares, it is better to mine on the pool closest to the miner. You can choose the fastest mining pool by studying the information about the processing speed of the share in the mining program or by pinging the time it takes for the signal to pass from the miner's computer to the servers of the pool.
Leads you to a comprehensive understanding of Forbes
https://preview.redd.it/1dra1br1xu351.png?width=740&format=png&auto=webp&s=925b38326cb8aa4f4b2863670ada61005ee72c4c What is the hottest blockchain project in 2020? Besides GFS, GFS is still GFS in my mind! GFS currency - the only token of Forbes cross chain blockchain! Forbes is the latest generation of blockchain, which can be said to be a new blockchain mode, or it is not a pure blockchain project. As we all know, in the era of blockchain 1.0, the bitcoin of Nakamoto brings decentralized distributed bookkeeping book, which enables human beings to have just assets for the first time; in the era of 2.0, the Ethereum smart contract created by V God makes the blockchain have divergent applications; in the era of 3.0, innovation public chains such as EOS make the application of blockchain easier to land. It will open Forbes in the era of blockchain 4.0 and create a distributed financial era of "ten thousand chain interconnection". My feeling is that Forbes is going to overthrow the traditional Internet and the classic blockchain, and reshape a financial world built directly on the blockchain. The most classic sentence on the Internet is: change your life, but it has nothing to do with you. In this way, Forbes uses the philosophy of blockchain and further technology to redo blockchain and bring blockchain to a new dimension. Today's bitcoin looks like a monument and a myth, but Forbes is using its cross chain technology and financial deployment to gently reinterpret the blockchain. Next, I will expand what you are concerned about and what I see in the form of Q & A: 1. Is it investment or speculation to participate in Forbes? Although we do not exclude speculation, there is no doubt that participating in Forbes is one of the best investment behaviors in 2020, no less than investing in bitcoin in 2013 and Ethereum in 2016. Forbes is a pure technology project, with no messy black box operation. As Forbes early deployed the ore field to facilitate the construction of cross chain system, early users can rent the Forbes BTC miner loaded with self-developed bitcoin ASIC chips by way of mortgage, with the strongest configuration on the ground. Moreover, in the process of mining, the early nodes do not even need to pay a penny, only mortgage deposit can deploy the physical miner. The income obtained can also participate in the early stage node plan carried out by Dao organization, and part of the income can be converted into GFS through Forbes wallet. And the deposit is not a routine, all the mortgage deposits will be locked in the chain. With the shortening of the lease term, each day will be returned to the user's wallet through the "deposit smart contract", without any centralized individual and organization participation in the whole process. In this way, it is equivalent to zero risk investment! After all, Forbes, with its cryptology and open source spirit, is inherently powerful. What Forbes wants to change is the life of centralization! And then there's no more. Jane is not simple. 2. Why do you like Forbes? Very simple, blockchain 4.0 First of all, let's not talk about anything. Forbes has solved a problem - mining hegemony. In the past, blockchain seems that nodes can enter and leave freely, but in fact, it needs a huge threshold to become nodes and obtain mining rewards. Whether it's bitcoin, you need to buy very expensive and complex mining equipment (ASIC miner), or EOS, Tron and other POS projects, and you need to hold a large number of coins to be elected as nodes. All in all, most of the current blockchain systems need very high mining costs, which in essence violates the principle of zhongbencong's blockchain design. The powerful thing about Forbes is that it creatively constructs dpoc as a consensus mechanism of trunk chain (main chain). Dpoc is a kind of common understanding of POC. There is no big deployment threshold for mining with hard disk miner. As a result of the consensus between Forbes blockchain Multi Chain Design and dpoc, all mining machines that do not have the relay chain node selected can pack the interaction information between the parallel chain and the relay chain, and can also obtain the block reward. In essence, such a design realizes Zhongben Cong's idea that everyone can dig. Let alone Forbes to build a mine pool, to build the strongest mining machine that can dig out the Forbes token GFS. With this in mind, which blockchain product can match. Layout of Forbes The vision of Forbes: to build the most universal distributed financial system in the world, driven by Forbes, the most widely used cross chain system in the world. I saw two key words: cross chain, distributed Finance Cross chain is the most urgent problem in current blockchain ecology. In the past 10 years, various blockchain systems have been deepening in security and performance, but no progress has been made in chain and chain scalability. As you can see, the chain and the chain is an island. Can EOS players and wave players break the bond? In the human financial life, transaction, loan, personal credit, supply chain finance, stock, commodity... They are directly full of interaction and connection. It can be said that human beings are dealing with all kinds of transactions all the time. Can the isolated blockchain really solve the problem? Forbes is born to be a global distributed financial system and truly a financial ecosystem. Imagine what a change it would be if you could smoothly carry out blockchain financial activities with foreign small partners. This pattern is too big for me to say. But please believe that if this is done, it can be described as a complete disaster. https://preview.redd.it/ee15vfv8xu351.png?width=1450&format=png&auto=webp&s=b36e2aa2548e0320b127d30e67d28511a666b30b 3. Is it better to mine or invite new people? Since this is my experience interpretation, I think: invite, boldly invite new people. Every time you invite one, you add a certain amount of calculation power. It's good to mine in Buddhism, but if you can participate in the birth of a great project, you can get more profits. Why not? Let's take a different perspective: now that you recognize Forbes, you recognize its value. Or you're not going to dig, are you! So, why can't we add more yards! Since we are trying to change our destiny, this is the highest lever. If it does, which lever can be bigger than Forbes! So, invest money or energy, and do what you can. 4. Do I want to join the Forbes pool project? Do you want to do it. They all recognize the value, so they can download the application directly. My original intention: First of all, GFS coin is a new mining model - POC hard disk mining that "everyone can dig, everyone can benefit". It avoids pow (proof of work workload) which is a large power consumption mode. In the initial stage of the main network online, Forbes opened the mine pool plan, leasing the mine machine at zero cost, becoming the earliest node of blockchain 4.0 representing the project, and obtaining the maximum benefit. Why not? You know, GFS production is also halved in four years. To dig now is to dig bitcoin before 2013, without cost. Secondly, in this stage, we can also increase the number of invited nodes. After the completion of the mining pool plan, we can only rely on hard indicators to increase the computing power. Now we can also rely on our efforts to get more profits. Therefore, in the face of equal opportunities for all, this is a great opportunity to take the initiative. Still hesitant? 5. Blockchain is my knowledge blind area. What can I do if I don't understand cross chain knowledge? First of all, you have to ask you, this is the excuse you don't want to get wealth? Not only Forbes is your knowledge blind area, but blockchain is a knowledge blind area for ordinary people. However, you should know that in 2020, the State advocates blockchain, the central bank DCEP has been put into trial operation, and blockchain has been applied in many aspects. Are you still in your blind spot? Of course, it's not good to pull the national flag. Let's talk about something practical. Opportunity always appears in new things. Ask, what's the matter with you, a solidified model? You have money or connections. I believe that choice is more important than effort. A road, if we choose the wrong direction at the beginning, the harder we work, the farther away we are from our goal. Therefore, the knowledge blind spot is not my problem, but whether you have a heart willing to contact new things! Among the miners I know, there is a 67 year old elder brother who has been a soldier, a factory, a traditional businessman and a cell phone. Do you still have his blind spot? 6. Will Forbes succeed? To be honest, I don't know. But I know that it is the blockchain project that I hope to reach the most in 2020. For details, please refer to the second question, why I like Forbes. If you really question Forbes, you can choose to only participate in the "miner Alliance Plan" and choose to mine at zero cost. No matter how the Forbes project progresses, you can get the benefit of mining without cost. Why not? Besides, when the Forbes project is really implemented, you can decide whether to invest in GFS. I'm sure you will have your own judgment at that time. 7. What is the most important thing to dig GFS? Insist, insist, or insist. We must make full use of our efforts in the earliest planning activities of the mine pool. After all, mining at zero cost + inviting to increase the calculation power and increase the support in the wet season. At this stage, we must dig more coins and exchange more for GFS. Maybe the reward coins you dig out in three months can't be found in a year after you try to buy hard disk mining machines for nodes. https://preview.redd.it/wi81roocxu351.png?width=750&format=png&auto=webp&s=0cd677f420071cfad942e426d4b415165915c2d0 8. There are so many people who rent mining machines first. Do I have a chance? People die more than people, and goods are thrown away more than goods. Don't compare with others, just be yourself. God said, I can fulfill your one wish, but I will give you twice as many neighbors. You will choose 10 million positive choices, Or one less arm in the dark? Mining is like this. Those old miners are your neighbors. Dare to own 10 million good, do not think about neighbors than you 10 million. Is that right? And when there are 10000 GFS, do you still want someone to have 100 more than you? 9. How much is GFS worth? To be honest, I don't know. The number of GFS is 21 million bitcoin, and the price of bitcoin is about 60000 yuan. The GFS main network has just been launched. In some markets, its price has increased more than 10 times in five days, far exceeding the price of bitcoin before the half reduction. The miners who rent mining machines in advance are blessed. As for the future, with the start of the implementation of blockchain financial facilities this year, GFS must be just the beginning. Where is the top? We witnessed it together. 10. Which do I want, kusd or usdt? For now, it doesn't matter which one you use. Although usdt has a lot of potential risks, there are still many people using it. However, we all know that it will have a thunderstorm sooner or later. As a cross chain gold stable currency, when cross chain finance begins to integrate into public life, kusd will show its power, which is better than issuing a usdt once in a chain. Moreover, more than 95% of the value of each kusd is based on gold, which can be exchanged by major gold exchanges in the world. The stability of gold. Have you seen it clearly in this epidemic? This is beyond the dollar.
What is the most popular blockchain project in 2020？ There is no doubt that it is the strongest cross-chain — Forbes . https://preview.redd.it/ilkbp22f1wz41.png?width=870&format=png&auto=webp&s=4fc2a8a12e71d0f84403c917b0c140c696ac7dab Forbes is the latest generation of blockchain, so it can be said that it is a brand new blockchain model, or it is no longer just a blockchain project. As we all know, in the era of blockchain 1.0, Satoshi Nakamoto's Bitcoin brought decentralized distributed bookkeeping, which enabled humans to have equity assets for the first time. In the era of 2.0, the ethereum smart contract created by V god has enabled the divergent application of blockchain; In the 3.0 era, the innovative public chain such as EOS makes it easier to implement block chain applications. Forbes, which will usher in the era of blockchain 4.0, will create a distributed financial era of "10,000 chain interconnection". It gives me the impression that Forbes wants to demolish the traditional Internet and the classic blockchain and reshape a financial world built directly on the blockchain. The Internet's most classic phrase is: change your life, but it has nothing to do with you. Forbes is doing just that, redoing blockchain with the philosophy of blockchain and further technology, taking blockchain to a whole new dimension. Today's bitcoin looks like a monument and a myth, but Forbes is gently reinterpreting the blockchain with its cross-link technology and financial deployment. Getting involved with Forbes is one of the best investments in 2020, just like investing in bitcoin in 2013 and ethereum in 2016. Forbes is a purely technical project, not a backroom operation. Since Forbes early deployed pool mines to facilitate the construction of the cross-chain system, early users could rent the ForbesBTC mining machine loaded with self-developed bitcoin ASIC chip by means of mortgage, with the strongest configuration on the surface. And in the process of mining, the early nodes don't even have to pay a penny, and they can deploy the physical miners just by pledging a deposit. The proceeds can also be converted into GFS through the Forbes wallet by participating in the DAO organization's early-stage node plan. And deposit is by no means a routine, all mortgage deposit, will be locked in the chain. With the shortening of the lease period, every day will be returned to the user's wallet through the "smart deposit contract", without any centralized individual or organization participating in the whole process. After all, Forbes, with its cryptography and open-source software ethos, is inherently strong. What Forbes wants to change is the centralized life! Forbes, however, is strong in its creative construction of the DPOC as a trunk chain consensus mechanism. DPOC is a kind of common understanding of POC. It USES hard disk mining machine to dig ore, and there is no big deployment threshold. However, due to the consensus of Forbes blockchain multi-chain design and DPOC, all mining machines that are not selected as relay chain nodes can pack the parallel chain and relay chain to interact with each other, and they can also get block rewards. Such a design essentially realizes satoshi nakamoto's vision of "digging for everyone." Not to mention Forbes's construction of pool mines to create the strongest mining machines with one machine and two machines. Based on this, can you recall which blockchain product can be compared? Forbes vision: to build the most universal distributed financial system in the world, driven by Forbes, the most widely used cross-link system in the world. I see two key words: cross-chain, distributed finance Cross-chain is the most urgent problem to be solved in the current block chain ecology. Over the past decade, various blockchain systems have evolved in terms of security and performance, but not in terms of chain and chain ductility. As you can see, chains are isolated islands. Can those who play EOS and those who play wave field have the same language? In human financial life, transactions, loans, personal credit, supply chain finance, stocks, commodities... They are directly interactive and connected. It can be said that human beings are dealing with all kinds of transactions all the time. Can the isolated island block chain really solve the problem? Forbes is a global distributed financial system and a real financial ecosystem. Imagine what a revolution it would be if you could smoothly conduct blockchain financial activities with foreign partners. This pattern is too big, I don't know. But believe me, this one, if it works, can be described as transformative. https://preview.redd.it/xqdr4xch1wz41.png?width=270&format=png&auto=webp&s=8c6f2fe27ed0c394e9c05e95876f3fbde8482eef I honestly don't know how much GFS is worth. The number of GFS is the number of bitcoins, 21 million bitcoins. The current price of bitcoins is about 60,000 yuan each. The GFS main network has just launched, and in some markets, its price has risen fivefold in five days, well above the price of bitcoin before it halved. As for the future, with the arrival of blockchain financial facilities this year, GFS must be just beginning. At the top? We witness together.
Hi Bitcoiners! I’m back with the 31st monthly Bitcoin news recap. For those unfamiliar, each day I pick out the most popularelevant/interesting stories in Bitcoin and save them. At the end of the month I release them in one batch, to give you a quick (but not necessarily the best) overview of what happened in bitcoin over the past month. You can see recaps of the previous months on Bitcoinsnippets.com A recap of Bitcoin in July 2019 Adoption
Was Epstein behind an anonymous team that created Satoshi Nakamoto?
Was Epstein behind an anonymous team that created Satoshi Nakamoto? "The behavior of termites, together with ants and bees, is a precursor to trust because they have an extraordinary ability to form relationships and sophisticated social structures based on mutual altruism even though individually they are fundamentally dumb. Money itself is a derivative of trust. If we can figure out how termites come together, then we may be able to better understand the underlying principles of market behavior -- and make big money." —Jeffrey Epstein, Letter to Martin Nowak (evolutionary game theory scientist), 2002. https://nymag.com/nymetro/news/people/n_7912/index.html ——————————————————— “I have this idea of a future with virtual peer to peer banking. A kind of decentralized and secured system. Gone would be the times that governments and banks can track and interfere with our money transfers. Or even interfere with the total amount of money on earth. My envisioned sytem would have a fixed total amount of money. But each money unit (say virtual coin) is divisable indefinitely. So a kind of deflation would replace inflation. The total value of the money in the world would be a fixed number. It poses no problem for liquidity, because the currency can be divided anytime. However maybe people will not spend their money much, because it's value will increase often. Other problems raise in the areas of security, malicious use, and how to come towards such system from current systems? These are just ideas, I like to hear comments or about net resources on this subject.” —X, UK finance forum, 2002. https://archive.ph/T7ZBD ——————————————————— “A purely peer-to-peer version of electronic cash would allow online payments to be sent directly from one party to another without going through a financial institution. Digital signatures provide part of the solution, but the main benefits are lost if a trusted third party is still required to prevent double-spending. We propose a solution to the double-spending problem using a peer-to-peer network. The network timestamps transactions by hashing them into an ongoing chain of hash-based proof-of-work, forming a record that cannot be changed without redoing the proof-of-work. The longest chain not only serves as proof of the sequence of events witnessed, but proof that it came from the largest pool of CPU power. As long as a majority of CPU power is controlled by nodes that are not cooperating to attack the network, they'll generate the longest chain and outpace attackers. The network itself requires minimal structure. Messages are broadcast on a best effort basis, and nodes can leave and rejoin the network at will, accepting the longest proof-of-work chain as proof of what happened while they were gone. Commerce on the Internet has come to rely almost exclusively on financial institutions serving as trusted third parties to process electronic payments. While the system works well enough for most transactions, it still suffers from the inherent weaknesses of the trust based model. Completely non-reversible transactions are not really possible, since financial institutions cannot avoid mediating disputes. The cost of mediation increases transaction costs, limiting the minimum practical transaction size and cutting off the possibility for small casual transactions, and there is a broader cost in the loss of ability to make non-reversible payments for non- reversible services. With the possibility of reversal, the need for trust spreads. Merchants must be wary of their customers, hassling them for more information than they would otherwise need. A certain percentage of fraud is accepted as unavoidable. These costs and payment uncertainties can be avoided in person by using physical currency, but no mechanism exists to make payments over a communications channel without a trusted party.” —Satoshi Nakamoto, Bitcoin Whitepaper, 2008. https://bitcoin.org/bitcoin.pdf —————————other relevant links: 2017: Epstein publicly endorsed Bitcoin as a store of value, publically funded many bitcoin “maximalist” projects HODLr since when? 2013: Links and instructions on accessing Cheese Pizza embedded on the bitcoin blockchain on blk00052 Ultimate deadman’s switch? 2013: Death of Dave Kleinman, PALM BEACH COUNTY POLICE Computer Forensics Expert and reputed encrypter of Satoshi’s 1 million Bitcoin Investigating said deadman’s switch or Epstein’s encrypted CP confiscated by police? 2003-2008: Paul Calder LeRoux “Solotsi”, #1 Bitcoin programmer candidate sets up DOZENS OF SHELL COMPANIES for money laundering, drug trafficking, weapons trafficking, mining/logging enterprises, paying off assassinations. He is the founder of E4M/TrueCrypt—only encryption unbreakable by NSA according to Snowden. He is also proported to be the bastard grandson of a US senator. He lobbied Mugabe with the help of Ari Ben-Menashe of Israeli intelligence once. He came under satoshi speculation after being mentioned in a footnote of redacted Wright vs Kleinman Estate case, coincidentally being litigated by Virginia Guiffry’s law firm. August 2019: Computer-Generated Deep Fake AI Satoshi Nakamoto? No further confirmation of this guy has appeared, either as a real person or as further proof he is Satoshi. Seems to be hiding behind mysterious shell company. *my post got removed from bitcoin for being off-topic and deleted from Epstein probably for mentioning pizzagate, can it find a home here?
Multicurrency Wallet DEXs will be the standard of the 2020s. The present status quo is an absolute joke.
Before I begin, I'd like to ask you a question. Why are so many of the most established people in crypto among the most closed-minded when it comes to talking about new ideas? Why is the crypto space more concerned with what a clown from Australia is lying about or petty figurehead drama than the hard work and effort of the good and lesser-known among them? Let's talk about altcoins for a minute. It'd be a very tough job to count every single alt that's come in on a hypetrain and died in obscurity. If I were to guess that 95% of them failed, I wouldn't be surprised to hear that it was a conservative estimate and that the number is even higher. Indeed, it would be much easier to count the exceptions to the rule. To name a few - ETH, LTC, XMR, and (quite amusingly) DOGE. Should the stubbornly high failure rate of alts justify writing them all off as garbage? Businesses have an incredibly high failure rate too. It would be foolish - outright silly, even - to say that the grocery store is a fraud and a scam because the aqua-saxophone jazzercise laundromat failed to live up to it's expectations. Maybe not, because this is exactly the way the crypto space is right now. That line of thinking is the de facto standard in the cryptocurrency space right now - "guilty (of being a shitcoin) until proven innocent (by some central authority figure or big exchange who can validate it for us so we don't have to do it ourselves)". To be fair, there was an aggressive torrent of these "goofy laundromats" in 2017 and people are either hungover or shell-shocked from all the broken pipedreams and costly fiction. You'd think that the titans of this industry, particularly those who care more about the cypherpunk essence of Bitcoin than how rich they can get off of it, would be more receptive to the legitimate projects that are working in obscurity to harden the crypto space and it's infrastructure. Unfortunately, that does not seem to be the case. All too many seem to think that everything that needed to be built has already been built. Considering that all the Bitcoin titans are somewhat newly-minted, the irony is remarkable. No one used to take Bitcoin seriously. The further back in time you go, the more it took lonely effort and independent research to truly grasp its ideas. This is still the case today. Most have heard of it but have no idea what it is or why it's important. Many who are fervently in PMs or traditional investments like stocks and bonds continue to deride it, even though it will go down as the best performing asset of the 2010s by far. Others are a little more aggressive and, despite a lack of knowledge, call it anything from a scam to "rat poison squared". Like anything else, it's foolish to make bold claims atop little to no education. You'd think that treatment would make Bitcoin maximalists do some reflecting. Instead, a sizable number of them decided to emulate the ones who beat up on Bitcoin when it was small and irrelevant. "All you need is Bitcoin. Everything else is trash. I know what I'm talking about because I bought the top of the 2013 bubble and I'm probably immune to future dumps for life". Now let's talk about where cryptocurrency infrastructure falls short. Bitcoin still retains the same cypherpunk essence that it's always had. The same can be said for Bitcoin wallets. They're secure. They allow for anonymous transactions. They run on an immutable blockchain. There is no central authority between a key-holder and their funds. Enter the exchanges. In a way, they were a necessary evil. Without them, adoption would be severely throttled. With them, Bitcoin is compromised. For many, the privacy and anonymity that BTC is supposed to offers has been tossed out. It was the only way it could be retrofitted into a tightly-controlled system that demands KYC. While this has helped to spread adoption, Bitcoin has become more and more traceable. Quite ironically, many of these same exchanges that adopted KYC policies to "ensure accountability from their customers" had no trouble exit scamming. They come and go. The old one gets hacked, or it exit scams, or proves itself to be corrupt and suspicious. A new one comes. This time it will be different. Then the cycle repeats itself. Mt. Gox. Bitfinex. Polo. Bittrex. Binance. They all had their time in the Sun. These exchanges are in many ways the antithesis of the cypherpunk manifesto - vulnerable honeypots directly controlled by a centralized figurehead. Unsurprisingly, they cause a lot of unneeded trouble and give Bitcoin a ton of bad publicity. Example:
Me: "What do you think of Bitcoin?" Co-worker: "Didn't that thing get hacked last week?" Me: "Bitcoin didn't, but a place where it was exchanged was." Co-worker: "I don't trust it. It's only a matter of time til they find out how to type in some numbers to make more show up on a screen blah blah blah."
You've all likely met someone like this and brushed them off as closed-mined, but they're exactly the type of person this industry needs to convince to further adoption. It will be next to impossible to do so with the way things are right now. In order for Bitcoin to survive, it needs exchanges that are built to the same code that it was. The solution, therefore, is to "port" the cypherpunk essence of Bitcoin to the exchanges. Immutability. Anonymity. Privacy. No central authority of figurehead. With all that said, let's talk about DEXs. I started a thread on here a few months back when Binance announced that they were giving Americans the boot. I got a ton of answers. It shows that, among the hardcore at least, there is a desire to go in a new direction. Loopring, IDEX, and Bisq were among the more popular choices. It's a step in the right direction. However, these DEXs are still rather inaccessible - especially to outsiders. Performance wise, they're on the slower side of things. Due to these setbacks, they suffer from low volume. This is where some recent developments in multicurrency wallets with embedded DEXs from lesser-known projects will come out of obscurity and catch everyone by surprise. Among them - I'd like to mention Stakenet Wallet and KMD's Atomic DEX. Both of them, now seemingly weeks away from launch, will allow for atomic swaps between a wide variety of coins directly from a private wallet. Stakenet goes a step further by offering atomic swaps running atop Lightning Network. Why does this matter? These two platforms will be to exchanges what the inception of Bitcoin was to currency. Finally, after almost 9 years, Bitcoin not only has an exchange that truly honors its essence, but it's starting to see healthy competition between them. To elaborate further on why this is very important.. No KYC. No accounts. No sending Bitcoin to an exchange and waiting around for it to show up. No downloading multiple wallets. No exchange figureheads. No withdrawal freezes. In Stakenet's case, the decentralized MN network that runs it's DEX will also act as a massive LN payment processor (routing, watchtowers) that provides a ton of liquidity for it while allowing Bitcoin to scale. "Lightning swaps" will provide every LN-based coin the ability to be instantly swapped to purchase anything in BTC. Stakenet will also feature a DEX aggregator that will pool together the orderbooks of numerous DEXs into one easily-accessible spot, boosting traffic to the many DEXs that are harder to reach and furthering their adoption along. Simply download a wallet like you would any other app and you're ready to get started. It's so much easier and more convenient. I don't see how or why CEXs and all their ilk (figurehead drama, geoblocking, exchange hacks, wash trading, currency manipulation, exit scams, etc) could remain relevant in the environment to come. Regulation will not save us. Decentralization will. As long as one person learned something from this, it was all worth it. I welcome the opinions of everyone in this space.
HUOBI – THE EXCHANGE BUILT FOR THE FUTURE - A HONEST REVIEW BY AN USER
HUOBI – THE EXCHANGE BUILT FOR THE FUTURE A HONEST REVIEW BY AN USER https://preview.redd.it/3il28cidztt41.png?width=313&format=png&auto=webp&s=b7c7ccafde202532977305d9be044ba9c7f88e42 Leon Li founded Huobi in 2013, a former computer engineer at Oracle. Huobi Global is a digital asset and crypto currency exchange headquartered in Singapore. Huobi also has local exchanges in South Korea, Japan, and through its strategic partner, the United States. The Huobi Group, the parent company of Huobi Global, has received venture capital finance from prominent Beijing based ZhenFund and American VC firm Sequoia Capital. The Huobi Global exchange serves traders in 130 countries. Through Huobi Global, traders can access almost 200 crypto and stable coin assets. Huobi users can download trading clients on both mobile and desktop devices. Huobi has traded over US$1.2 trillion in digital assets, and at one time it was the world’s leading exchange by volume, capturing 50% of all global trading volume. In terms of security, Huobi has adopted a decentralized exchange structure, which helps to resist DDOS attacks. However, Huobi has implemented the ‘Huobi Security Reserve, in which Huobi has set aside 20,000 BTC reserved for users who have lost funds either due to hacks, or exchange failures. Ease of use The UI is clean, user-friendly and perfectly designed with all the basic requirements for a crypto-trader. The charting software is provided by Tradingview, which is exactly what you want. https://preview.redd.it/nm2fr51mztt41.png?width=602&format=png&auto=webp&s=16c406a4eec33a1c28d2bcb5330bee6b043fc359 Huobi OTC Huobi’s OTC exchange is a good initiative. The Huobi OTC exchange allows users to trade funds peer-to-peer which doesn’t affect the market price of the underlying asset. The OTC trading-desk, with transfer options like bank-transfers, PayPal, WU, Paytm, UPI, IMPS, Alipay & many others, is an easy to use payment gateway. With a secure exchange to diversify your investment, right next door, too with effective list of Buy and Sell options for BTC, ETH, USDT and EOS coins. https://preview.redd.it/66c2zr2oztt41.png?width=602&format=png&auto=webp&s=41899be5c02791f9f5323b957ad13d092b5275f7 Huobi Lite Huobi Lite App provides a convenient channel for everyone to buy cryptocurrencies at the best prices. Tailor-made for beginners, traders, and users. We can download the App directly from the respective iOS Store or Google Play Store. Alternatively, we may access via the link: https://lite.huobi.com/download https://preview.redd.it/tw8p8cmpztt41.png?width=260&format=png&auto=webp&s=88f4d4d45b8b287d452f02547adfd187f2b09977 On Huobi Lite, you can buy Bitcoin with your local currencies, credit card, or exchange cryptocurrencies tokens, with zero fees at competitive prices. Huobi Lite currently supports MYR / HKD / VND / USD (Credit Card deposit only), with more to come in the future. Huobi Derivative Market (Huobi DM) Margin Trading Huobi Global launched Huobi Derivative Market (Huobi DM) exchange to selected countries. It provides margin trading, with very low daily loan interest rates of 0.1%. Margin Trading allows users to increase their investment exposure given a limited base principal to enjoy multiple returns. 3-Steps taken in Margin Trading:
Request for Loan
Trade on Margin (Long/Short)
Repay Margin Loan and Interest
With the introduction of Cross Margin on Huobi, users will have to explicitly input the respective margin type before executing the above 3 steps. Balances on the Cross Margin balance does not show on the Isolated Margin balance. Huobi Futures Huobi Futures is a kind of digital currency derivatives. Users can make a profit from the rising/falling of digital currencies prices by going long or selling short based on their own judgment. The Huobi Futures Contract adopts spread delivery. When the contract expires, all open positions will be closed at the index-based last-hour arithmetic average price, instead of physical delivery. BTC/ETH/EOS/LTC/XRP/BCH/TRX/BSV/ETC Contracts are available on Huobi DM. Contracts are priced in USD, with corresponding digital currency (BTC/ETH/EOS/LTC/XRP/BCH/TRX respectively) as margin to open positions, and PnL is also settled in corresponding digital currency. Weekly, bi-weekly and quarterly contracts are available in Huobi DM. Weekly contracts will be settled on imminent Friday; Bi-weekly contracts will be settled on next Friday; Quarterly contracts will be settled on the last Friday of March, June, September and December. Choices of leverage: 1x, 5x, 10x, 20x Huobi Perpetual Swap Huobi introduced Perpetual Swaps on March 27, 2020 (GMT+8). Huobi Perpetual swap is a kind of digital currency derivatives. Users can make a profit from the rising/falling of digital currencies prices by going long or selling short based on their own judgment. Similar to a margin spot market, its price is close to the price of the underlying reference index. The main mechanism for anchoring spot prices is the cost of funds. Perpetual swap have no delivery date. Users can always hold it. Perpetual swap are settled every 8 hours. After each settlement, the realized profit/loss and unrealized profits/losses are transferred to the user account balance. Partial Liquidation Huobi Futures adopted partial liquidation to help position holders reduce liquidation risk. Users with large positions and high leverage bear high risk. Huobi Futures releases partial liquidation with the aim to lower possible losses due to high price volatility thus giving users better trading experience. Under partial liquidation mechanism, when liquidation is triggered, instead of liquidating all positions at once, the system reduces positions gradually till a grade whose margin ratio is great than 0. Full liquidation will only occur when the margin ratio of tier 1 upper limit net position still fails to be great than 0. Trading Fees The Huobi exchange has a fair trading fee structure. Every asset traded via Huobi Global is subject to a 0.2% trade fee, for both market makers and takers. Further, Huobi Global has introduced a tiered fee system which offers competitively lower fees for high volume traders. VIP membership gives access to various fee reductions and other benefits. Huobi Prime Huobi Prime, the Launchpad platform which we can call Direct Premium Offering (DPO), does share some similarities with initial exchange offerings (IEO) like Binance Launchpad, but it is unique as it is not a fundraising platform, and any coins purchased on the platform are immediately deposited into the users’ wallets and tradable on Huobi Global. Huobi Prime offers its users early access to the coins of premium projects, which can be bought using its native crypto currency, the Huobi Token. To avoid dumping, Huobi has implemented an innovative idea of a period of tiered price limits. Huobi FastTrack Huobit FastTrack, rebranded from Huobi Prime Lite, is a new listing model. Wherein, all participants will have a direct say in what projects are listed on Huobi Global and when. In addition, winning voters will get access to quality tokens at below market rates. The program also provides much needed exposure and a straightforward listing process. Huobi Wallet https://preview.redd.it/6iux5zotztt41.png?width=602&format=png&auto=webp&s=fef6f6d6813ec82a70df28b160fe18ba2237daba Huobi Wallet is the official mobile wallet of Huobi Group, a leading global digital asset financial service provider. It is a multi-chain asset management tool that provides native support for various types of blockchains and all of the ERC20 tokens. So far Huobi Wallet supports BTC, BCH, LTC, ETH, ETC, USDT and all ERC20 tokens. Huobi wallet is the first wallet to expand support to cover seven stablecoins including, Paxos Standard Token (PAX), TrueUSD (TUSD), USD Coin (USDC), Gemini Dollar (GUSD), Dai (DAI), Stasis EURS (EURS), and Tether (USDT). Huobi Wallet is built based on the core principle of security-first. The wallet gives back its users, complete control of their private keys. In simple terms, You own your assets. The wallet is backed up with mnemonics, so in future when you want to import your wallet, it’s just simple few clicks. Currently, the wallet is compatible with both iOS and Android devices and you can download both from here (www.huobiwallet.com/en) Huobi Chain Huobi launched Huobi Chain’s Testnet (“the Testnet”) on February 29th 2020 (GMT+8). Huobi Chain is China’s autonomous cum compliant-ready blockchain platform, and is committed to providing a global, blockchain-based, digital asset infrastructure. Huobi Chain is committed to providing a high-performance, blockchain-based, global digital asset infrastructure. Once the Mainnet goes live, Huobi Chain will announce HT- related events: e.g. pledge HT to be a Super Node, etc. HT Lock & Mine (Huobi Pool) Huobi launched HT Lock and Mine operations on 25th July 2019 (GMT+8). Users who lock HT tokens receive daily HPT rewards. Specific reward quantity will depend on lock option period selected, quantity locked and Huobi Pool’ s mining hash power and daily float. DPOS Rewards: All Huobi Global users with more than 1,000HPT holdings in their HBG account will receive DPOS mining rewards. Currently, token reward received under DPOS mining include EOS, TRX, CMT, ONG, IOST, ATOM, IRIS, LAMB。 Huobi Support Users of the Huobi exchange can access 24/7 live chat and Huobi help center. Those facing issues can also open a support ticket to have their issue resolved by an expert representative immediately. The Huobi Group has a very active YouTube channel, featuring Huobi Talk, where it posts user tutorials, detailed guides, and crypto currency information for traders. What I like the most about Huobi
An established platform that’s been operating since 2013, which is a long time in the crypto world.
Highly secured with decentralized exchange structure, which helps to resist DDOS attacks. Huobi has never suffered a large hack.
Huobi Security Reserve of 20000 BTC to compensate users’ loss of funds.
Dedicated, fast and 24/7 customer support.
Regulated in major jurisdictions.
User interface is very smooth and clean.
Over 230 crypto assets are available.
User education program is good initiative.
Separate trading desk for institution and firm size users.
Very transparent about its operations, listings and projects.
Huobi Wallet is secured and very easy to operate.
Huobi mobile app is smooth and very easy to use.
Has taken serious steps towards avoiding wash trading.
Impressive array of trading pairs.
Has given more important on community participation, like voting for listing, mining pool, Huobi Knights program etc.
I like Huobi Prime because of following reasons: -
(a) Purchased tokens are immediately deposited into user’s accounts, (b) As projects launch exclusively through Huobi Prime from day one, all users get assets at the best price. (c) Tiered price limits on the platform protect both investors and projects from immediate dump.
Huobi screen projects and launches which are only the best. I don’t have to worry about poor or scammy projects.
Burning of HT is a great move and it would benefit long term holders.
So What Exactly Is a Bitcoin Anyhow? Total Breakdown of Bitcoin
There's digital money, and after that there's Bitcoin. The extremely geeky Bitcoin is a mathematically-derived currency that promises to change the method people utilize money. Bitcoins are not real coins-they're strings of code secured with military-grade encryption-and people that use them to deal items as well as solutions are tough to trace. In addition to confidential drug dealers, Ashton Kutcher as well as the Winklevoss doubles have actually reportedly jumped on the bandwagon. There's something to be said regarding utilizing currency that isn't regulated by the government or financial institutions, doesn't come with the normal deal costs and is impossible to imitation. Bitcoin likewise promises to be disaster-proof, since you can not damage numbers similarly that you can damage gold books or fiat money. nuv mining What is Bitcoin? Bitcoin is an electronic money produced in 2009 by a designer hiding under the pseudonym of Satoshi Nakamoto (supposedly a Japanese individual that has best command of American English). Bitcoin is decentralized, meaning it is not controlled by a central authority like a banks, country, federal government or person. It is peer-to-peer as well as open-source, dispersed throughout the net from computer to computer, without demand for middlemen. Contrasted to U.S. bucks, Bitcoin is essentially untraceable, making it attractive to libertarians worried of federal government meddling and also citizens of the underworld. You can use it to spend for acquisitions online as well as off, from controlled substances on the Silk Road to legit restaurant meals. nuvmining Where to Obtain Bitcoins You can get Bitcoins from buddies, on-line free gifts or by acquiring them with actual money from Bitcoin exchanges. Using actual cash to purchase Bitcoins defeats the whole function of anonymity, however, since you might require to add your bank account to a third party site. You can also purchase Bitcoins utilizing your cellphone or with money deposit establishments. New Bitcoins are developed by "mining." Mining is done automatically by computers or servers-it's not real-world mining where you need to dig underground to uncover commodities, but the idea is similar. You have to exert initiative to collect gold, and you (or your device) likewise have to spend time as well as sources to confirm as well as tape Bitcoin purchases. One of the coolest features of Bitcoin is that it gets its value not from real-world items, but from codes. Bitcoins are pulled out of the ether by equipments (as well as individuals that run them) for fixing complex mathematical problems associated with the present variety of Bitcoins These bulky and pricey supercomputers featured powerful security capabilities (as well as apparently draw electrical power like no one's company). In a typical purchase, purchaser A from area X pays seller B some Bitcoins online. Miners after that race to validate and encrypt the transaction, logging Bitcoin codes in a central server. Whomever fixes the problem initially gets the Bitcoins Concerning 25 new Bitcoins are produced for every 10-minute block, but that number can enhance or lower depending on how much time the network runs. Just How to Utilize Bitcoins. As soon as you obtain your hands on some Bitcoins, you require to store them in an on-line budget via a computer system program or a third-party web site. You become part of the Bitcoin network as soon as you produce your virtual purse. To send Bitcoins to one more individual or pay for on-line purchases, obtain that person/seller's identification number and also transfer Bitcoins online. Processing takes concerning a few minutes to a hr, as Bitcoin miners across the globe verify the deal. Just How to Earn Money on Bitcoins. If you're still skeptical, one Bitcoin is currently worth about $90 (as of 18 April 2013), with hourly variations that can make a day trader dizzy. Unpredictable as it is, more and more people are starting to bleed the phenomenon for all it is worth-while it lasts. How to obtain your piece of the online gold rush? Some methods: Sell Bitcoin mining computers, market your Bitcoins at crazy rates on ebay.com as well as hypothesize on Bitcoin markets. You can additionally begin mining. Any person can mine Bitcoins, yet unless you can pay for a reliable arrangement, it will take an average COMPUTER a year or even more to address formulas. Lots of people sign up with swimming pools of various other miners that integrate their computer power for faster code-cracking.
F2Pool is one of the largest Chinese Bitcoin pool, launched in the year 2013. It is better known as Discus Fish mining pool in the world of Bitcoin mining. Apart from Bitcoin, Litecoin, Ethereum, and Zcash are mined here. The difficulty level in mining is based the hash power, as the site uses stratum mining protocol and vardiff. The site comes with an English interface and is simple and ... Best Bitcoin Paying Sites for 2020. Roll for Free Bitcoin Every Hour, You will get chance to win $200 in one roll. Best Paying site ever since 2013. Minimum Withdraw : 0.0003 btc: Options : Direct: Payment receive : Instant : Make money every minute you spend on this site, they have no minimum withdraw paying instantly without any fees. Earning on BeeBitcoin has no limits, you can open and ... The Bitcoin.com mining pool has the lowest share reject rate (0.15%) we've ever seen. Other pools have over 0.30% rejected shares. Furthermore, the Bitcoin.com pool has a super responsive and reliable support team. Alexander Levin CEO of Asicseer.com. Mining.bitcoin.com has the highest payouts across the industry. Reliable and honest service. Libo Zhao CEO of YouDu. Cloud mining. Mine ... F2Pool is another mining pool that is based in China, and it was established back in 2013. In addition to Bitcoin, it also supports the mining of Litecoin, Ethereum, and Zcash. The platform implements stratum mining protocol and vardiff, meaning that the mining difficulty is based on the hash rate. The GUI is clean and easy to navigate, making it one of the best mining pools for beginners ... Bitcoin Mining Pool Best Bitcoin Miner . When you start using bitcoin mining pools, you always need a bitcoin address as well as a bitcoin wallet that are required for this purpose.The platform that is available for the cryptocurrencies mining is well known as slushpool where it is estimated that how much power the individual miners are consuming.
HOW TO REGISTER ON EOBOT AND BEGIN MINING BITCOIN AND ALTCOINS FREE
What Is BitCoin HD Video: http://youtu.be/QXhbyaIcc4Q Bitcoin is form of money. bitcoin mining what is bitcoin bitcoin explained bitcoin bitcoin mining tutor... For more info concerning bitcoin paper wallet, please visit site here: http://www.cryptocoinwalletcards.com/ Tags: asic bitcoin miner, asic bitcoin miner ava... 1) If you enjoyed this, I'd welcome a tip here: 185By4a1Lt2HnKLAKR5EmidZMYgp5DDSaj 2) Mining Pool Reward Methods, lecture by: Meni Rosenfeld of Bitcoil.co.il... Eobot Bitcoin Cloud Mining and the best way to mine Eobot is the easiest, Earn Money Online -Free Bitcoin Mining, Cloud mining and Bitcoin mining made easy, ... Agenda: Livestream for how mining pools work. What is a mining pool, how's it work, what is pool luck? What are the various payout types and how do they work? How do we know the pool isn’t cheating?