Bitcoin protocol explained

The Bitcoin protocol is the set of rules that govern the functioning of Bitcoin. Its key components and principles are: a peer-to-peer decentralized network with no central oversight; the blockchain technology, a public ledger that records all Bitcoin transactions; mining and proof of work, the process to create new bitcoins and verify transactions; and cryptographic security.

Users broadcast cryptographically signed messages to the network using Bitcoin cryptocurrency wallet software. These messages are proposed transactions, changes to be made in the ledger. Each node has a copy of the ledger's entire transaction history. If a transaction violates the rules of the Bitcoin protocol, it is ignored, as transactions only occur when the entire network reaches a consensus that they should take place. This "full network consensus" is achieved when each node on the network verifies the results of a proof-of-work operation called mining. Mining packages groups of transactions into blocks, and produces a hash code that follows the rules of the Bitcoin protocol. Creating this hash requires expensive energy, but a network node can verify the hash is valid using very little energy. If a miner proposes a block to the network, and its hash is valid, the block and its ledger changes are added to the blockchain, and the network moves on to yet unprocessed transactions. In case there is a dispute, then the longest chain is considered to be correct. A new block is created every 10 minutes, on average.

Changes to the Bitcoin protocol require consensus among the network participants. The Bitcoin protocol has inspired the creation of numerous other digital currencies and blockchain-based technologies, making it a foundational technology in the field of cryptocurrencies.

Blockchain

Blockchain technology is a decentralized and secure digital ledger that records transactions across a network of computers. It ensures transparency, immutability, and tamper resistance, making data manipulation difficult. Blockchain is the underlying technology for cryptocurrencies like Bitcoin and has applications beyond finance, such as supply chain management and smart contracts.[1]

Transactions

The network requires minimal structure to share transactions. An ad hoc decentralized network of volunteers is sufficient. Messages are broadcast on a best-effort basis, and nodes can leave and rejoin the network at will. Upon reconnection, a node downloads and verifies new blocks from other nodes to complete its local copy of the blockchain.[2] [3]

Mining

Bitcoin uses a proof-of-work system or a proof-or-transaction to form a distributed timestamp server as a peer-to-peer network. This work is often called bitcoin mining. During mining, practically all of the computing power of the Bitcoin network is used to solve cryptographic tasks, which is proof of work. Their purpose is to ensure that the generation of valid blocks involves a certain amount of effort so that subsequent modification of the blockchain, such as in the 51% attack scenario, can be practically ruled out. Because of the difficulty, miners form "mining pools" to get payouts despite these high power requirements, costly hardware deployments, and hardware under control. As a result of the Chinese ban on Bitcoin mining in 2021, the United States currently holds the largest share of Bitcoin mining pools.[4] [5]

Requiring a proof of work to accept a new block to the blockchain was Satoshi Nakamoto's key innovation. The mining process involves identifying a block that, when hashed twice with SHA-256, yields a number smaller than the given difficulty target. While the average work required increases in inverse proportion to the difficulty target, a hash can always be verified by executing a single round of double SHA-256.

For the bitcoin timestamp network, a valid proof of work is found by incrementing a nonce until a value is found that gives the block's hash the required number of leading zero bits. Once the hashing has produced a valid result, the block cannot be changed without redoing the work. As later blocks are chained after it, the work to change the block would include redoing the work for each subsequent block. If there is a deviation in consensus then a blockchain fork can occur.

Majority consensus in bitcoin is represented by the longest chain, which required the greatest amount of effort to produce. If a majority of computing power is controlled by honest nodes, the honest chain will grow fastest and outpace any competing chains. To modify a past block, an attacker would have to redo the proof-of-work of that block and all blocks after it and then surpass the work of the honest nodes. The probability of a slower attacker catching up diminishes exponentially as subsequent blocks are added.To compensate for increasing hardware speed and varying interest in running nodes over time, the difficulty of finding a valid hash is adjusted roughly every two weeks. If blocks are generated too quickly, the difficulty increases and more hashes are required to make a block and to generate new bitcoins.

Difficulty and mining pools

Bitcoin mining is a competitive endeavor. An "arms race" has been observed through the various hashing technologies that have been used to mine bitcoins: basic central processing units (CPUs), high-end graphics processing units (GPUs), field-programmable gate arrays (FPGAs) and application-specific integrated circuits (ASICs) all have been used, each reducing the profitability of the less-specialized technology. Bitcoin-specific ASICs are now the primary method of mining bitcoin and have surpassed GPU speed by as much as 300-fold. The difficulty of the mining process is periodically adjusted to the mining power active on the network. As bitcoins have become more difficult to mine, computer hardware manufacturing companies have seen an increase in sales of high-end ASIC products.[6] Computing power is often bundled together or "pooled" to reduce variance in miner income. Individual mining rigs often have to wait for long periods to confirm a block of transactions and receive payment. In a pool, all participating miners get paid every time a participating server solves a block. This payment depends on the amount of work an individual miner contributed to help find that block, and the payment system used by the pool.[7]

Mined bitcoins

By convention, the first transaction in a block is a special transaction that produces new bitcoins owned by the creator of the block. This is the incentive for nodes to support the network. It provides a way to move new bitcoins into circulation. The reward for mining halves every 210,000 blocks. It started at 50 bitcoin, dropped to 25 in late 2012, and to 6.25 bitcoin in 2020. The most recent halving, which occurred on 20 April 2024 at 12:09am UTC (with block number 740,000), reduced the block reward to 3.125 bitcoins.[8] [9] The next halving is expected to occur in 2028, when the block reward will fall to 1.625 bitcoins.[10] [11] This halving process is programmed to continue a maximum of 64 times before new coin creation ceases.[12]

Payment verification

See main article: Online transaction processing. Each miner can choose which transactions are included in or exempted from a block.[13] A greater number of transactions in a block does not equate to greater computational power required to solve that block.[13]

As noted in Nakamoto's whitepaper, it is possible to verify bitcoin payments without running a full network node (simplified payment verification, SPV). A user only needs a copy of the block headers of the longest chain, which are available by querying network nodes until it is apparent that the longest chain has been obtained; then, get the Merkle tree branch linking the transaction to its block. Linking the transaction to a place in the chain demonstrates that a network node has accepted it, and blocks added after it further establish the confirmation.

Protocol features

Security

Various potential attacks on the bitcoin network and its use as a payment system, real or theoretical, have been considered. The bitcoin protocol includes several features that protect it against some of those attacks, such as unauthorized spending, double spending, forging bitcoins, and tampering with the blockchain. Other attacks, such as theft of private keys, require due care by users.[14] [15]

Unauthorized spending

Unauthorized spending is mitigated by bitcoin's implementation of public-private key cryptography. For example, when Alice sends a bitcoin to Bob, Bob becomes the new owner of the bitcoin. Eve, observing the transaction, might want to spend the bitcoin Bob just received, but she cannot sign the transaction without the knowledge of Bob's private key.

Double spending

A specific problem that an internet payment system must solve is double-spending, whereby a user pays the same coin to two or more different recipients. An example of such a problem would be if Eve sent a bitcoin to Alice and later sent the same bitcoin to Bob. The bitcoin network guards against double-spending by recording all bitcoin transfers in a ledger (the blockchain) that is visible to all users, and ensuring for all transferred bitcoins that they have not been previously spent.

Race attack

If Eve offers to pay Alice a bitcoin in exchange for goods and signs a corresponding transaction, it is still possible that she also creates a different transaction at the same time sending the same bitcoin to Bob. By the rules, the network accepts only one of the transactions. This is called a race attack, since there is a race between the recipients to accept the transaction first. Alice can reduce the risk of race attack stipulating that she will not deliver the goods until Eve's payment to Alice appears in the blockchain.[16]

A variant race attack (which has been called a Finney attack by reference to Hal Finney) requires the participation of a miner. Instead of sending both payment requests (to pay Bob and Alice with the same coins) to the network, Eve issues only Alice's payment request to the network, while the accomplice tries to mine a block that includes the payment to Bob instead of Alice. There is a positive probability that the rogue miner will succeed before the network, in which case the payment to Alice will be rejected. As with the plain race attack, Alice can reduce the risk of a Finney attack by waiting for the payment to be included in the blockchain.[17]

History modification

Each block that is added to the blockchain, starting with the block containing a given transaction, is called a confirmation of that transaction. Ideally, merchants and services that receive payment in bitcoin should wait for at least a few confirmations to be distributed over the network before assuming that the payment was done. The more confirmations that the merchant waits for, the more difficult it is for an attacker to successfully reverse the transaction—unless the attacker controls more than half the total network power, in which case it is called a 51% attack, or a majority attack.[18] Although more difficult for attackers of a smaller size, there may be financial incentives that make history modification attacks profitable.[19]

Privacy

Deanonymisation of clients

Deanonymisation is a strategy in data mining in which anonymous data is cross-referenced with other sources of data to re-identify the anonymous data source. Along with transaction graph analysis, which may reveal connections between bitcoin addresses (pseudonyms),[20] there is a possible attack[21] which links a user's pseudonym to its IP address. If the peer is using Tor, the attack includes a method to separate the peer from the Tor network, forcing them to use their real IP address for any further transactions. The cost of the attack on the full bitcoin network was estimated to be under €1500 per month, as of 2014.

See also

References

Works cited

Notes and References

  1. Web site: Hut . Moody . What is Blockchain Technology and How Does it Work . 18 December 2023 .
  2. Web site: Nakamoto . Satoshi . 24 May 2009 . Bitcoin: A Peer-to-Peer Electronic Cash System . dead . https://web.archive.org/web/20100704213649/https://bitcoin.org/bitcoin.pdf . 4 July 2010 . 20 December 2012.
  3. Book: Bitter to Better – how to make Bitcoin a better currency. Financial Cryptography and Data Security. http://crypto.stanford.edu/~xb/fc12/bitcoin.pdf. Springer Publishing. 2012. Barber, Simon . Boyen, Xavier . Shi, Elaine . Elaine Shi . Uzun, Ersin . Lecture Notes in Computer Science. 7397. 399–414. amp . 10.1007/978-3-642-32946-3_29. 978-3-642-32945-6.
  4. Web site: Sigalos . MacKenzie . 2021-06-15 . China is kicking out more than half the world's bitcoin miners – and a whole lot of them could be headed to Texas . 2023-12-05 . CNBC . en.
  5. Web site: Cambridge Bitcoin Electricity Consumption Index (CBECI) . 2023-12-05 . ccaf.io . en.
  6. News: 4 January 2014 . Bitcoin boom benefiting TSMC: report . Taipei Times.
  7. Book: Rosenfeld. Meni. Analysis of Bitcoin Pooled Mining Reward Systems. November 17, 2011. 1112.4980. 2011arXiv1112.4980R.
  8. Web site: Macheel . Tanaya . 2024-04-20 . The Bitcoin network completes the fourth-ever 'halving' of rewards to miners . 2024-04-20 . CNBC . en.
  9. Web site: So, Bitcoin Halving Is Done. What Happened and What's Next? . 2024-04-20 . Investopedia . en.
  10. Web site: Bitcoin Halving 2024: Why It Matters & What to Expect . 6 June 2023 .
  11. Web site: Bitcoin is about to undergo another 'halving' event. Here's why that could send its price soaring .
  12. Book: Antonopoulos . Andreas M . Mastering bitcoin: programming the open blockchain . 1 July 2017 . 2nd . O'Reilly Media . Sebastopol, California, USA . 953432201 . 978-1-4919-5438-6 . 239.
  13. Houy . N. . 2016 . The Bitcoin Mining Game . Ledger . 1 . 53–68 . 10.5195/ledger.2016.13 . 14 January 2017 . free .
  14. Web site: Quantitative Analysis of the Full Bitcoin Transaction Graph . Cryptology ePrint Archive . 18 October 2012 . Ron Dorit . Adi Shamir . 2012.
  15. Web site: Bitcoin: A Primer for Policymakers . George Mason University . Mercatus Center . 2013 . 22 October 2013 . Jerry Brito . Andrea Castillo . amp . 21 September 2013 . https://web.archive.org/web/20130921060724/http://mercatus.org/sites/default/files/Brito_BitcoinPrimer.pdf . dead .
  16. Web site: Bitcoin and the Double-spending Problem . Cornell University . 29 March 2013 . 22 October 2014 . Erik Bonadonna.
  17. Two Bitcoins at the Price of One? Double-Spending Attacks on Fast Payments in Bitcoin . Karame . Ghassan O. . Androulaki . Elli . Capkun . Srdjan . International Association for Cryptologic Research . iacr.org . 2012 . 22 October 2014.
  18. News: Michael J. Casey . Paul Vigna . Short-Term Fixes To Avert "51% Attack" . 30 June 2014 . Money Beat . Wall Street Journal . 16 June 2014.
  19. Book: 2023 IEEE Symposium on Security and Privacy (SP) . Bar-Zur. Roi . Abu-Hanna . Ameer . Eyal . Ittay . Tamar . Aviv . IEEE Computer Society . 2023 . 10.1109/SP46215.2023 . 978-1-6654-9336-9 . 15 May 2023.
  20. Book: Reid . Fergal . Harrigan . Martin . An Analysis of Anonymity in the Bitcoin System . Security and Privacy in Social Networks . 2013 . 197–223. New York, NY . 10.1007/978-1-4614-4139-7_10 . 978-1-4614-4138-0 . 1107.4524 .
  21. Biryukov . Alex . Khovratovich . Dmitry . Pustogarov . Ivan . Deanonymisation of clients in Bitcoin P2P network . ACM Conference on Computer and Communications Security . 2014 . 1405.7418 . 2014arXiv1405.7418B . 9781450329576 . 16 May 2017 . 22 May 2017 . https://web.archive.org/web/20170522151641/http://orbilu.uni.lu/handle/10993/18679 . dead .