diff --git a/ch02.asciidoc b/ch02.asciidoc index 712dddf0..26798126 100644 --- a/ch02.asciidoc +++ b/ch02.asciidoc @@ -240,7 +240,7 @@ A few minutes later, a new block, #277317 is mined by another miner. As this new In the diagram below we can see block #277316, which contains Alice's transaction. Below it are 277,316 blocks (including block #0), linked to each other in a chain of blocks (blockchain) all the way back to block #0, the genesis block. Over time, as the "height" in blocks increases, so does the computation difficulty for each block and the chain as a whole. The blocks mined after the one that contains Alice's transaction act as further assurance, as they pile on more computation in a longer and longer chain. The blocks above count as "confirmations". By convention, any block with more than 6 confirmations is considered irrevocable, as it would require an immense amount of computation to invalidate and re-calculate six blocks. We will examine the process of mining and the way it builds trust in more detail in <>. -[[block-alice]] +[[block-alice1]] .Alice's transaction included in block #277,316 image::images/msbt_0209.png["Alice's transaction included in a block"] @@ -252,7 +252,7 @@ Bob can now spend the output from this and other transactions, by creating his o As Bob spends the payments received from Alice and other customers, he extends the chain of transactions which in turn are added to the global blockchain ledger for all to see and trust. Let's assume that Bob pays his web designer Gopesh in Bangalore for a new web site page. Now the chain of transactions will look like this: -[[block-alice]] +[[block-alice2]] .Alice's transaction as part of a transaction chain from Joe to Gopesh image::images/msbt_0210.png["Alice's transaction as part of a transaction chain"] diff --git a/ch04.asciidoc b/ch04.asciidoc index 3473175f..0e5046b6 100644 --- a/ch04.asciidoc +++ b/ch04.asciidoc @@ -116,7 +116,7 @@ Bitcoin uses a specific elliptic curve and set of mathematical constants, as def [latexmath] ++++ \begin{equation} -{y^2 = (x^3 \+ 7)} \text{over} \(\mathbb{F}_p\) +{y^2 = (x^3 \+ 7)} \text{over} (\mathbb{F}_p) \end{equation} ++++ or @@ -552,7 +552,7 @@ Another method for making keys is _deterministic key generation_. Here you deriv [TIP] ==== -Wallets contain keys, not coins. The coins are stored on the blockchain in the form of transaction-outputs (often noted as _vout_ or _txout_). Each user has a wallet containing keys. Wallets are really keychains containing pairs of private/public keys (See <>). Users sign transactions with the keys, thereby proving they own the transaction outputs (their coins). +Wallets contain keys, not coins. The coins are stored on the blockchain in the form of transaction-outputs (often noted as _vout_ or _txout_). Each user has a wallet containing keys. Wallets are really keychains containing pairs of private/public keys (See <>). Users sign transactions with the keys, thereby proving they own the transaction outputs (their coins). ==== [[random_wallet]] @@ -707,7 +707,7 @@ xpub67xpozcx8pe95XVuZLHXZeG6XWXHpGq6Qv5cmNfi7cS5mtjJ2tgypeQbBs2UAR6KECeeMVKZBPLr ---- -[[public_key_derivation]] +[[public__child_key_derivation]] ===== Public child key derivation As mentioned above, a very useful characteristic of hierarchical deterministic wallets is the ability to derive public child keys from public parent keys, _without_ having the private keys. This gives us two ways to derive a child public key: either from the child private key, or directly from the parent public key. diff --git a/ch06.asciidoc b/ch06.asciidoc index 17adffb7..79e60171 100644 --- a/ch06.asciidoc +++ b/ch06.asciidoc @@ -1,5 +1,4 @@ -[[ch6]] -[[bitcoin_network]] +[[bitcoin_network_ch06]] == The Bitcoin Network === Peer-to-Peer Network Architecture diff --git a/ch07.asciidoc b/ch07.asciidoc index 88f5c7c1..c95ea0f5 100644 --- a/ch07.asciidoc +++ b/ch07.asciidoc @@ -1,4 +1,3 @@ -[[ch7]] [[blockchain]] == The Blockchain @@ -19,7 +18,7 @@ One way to think about the blockchain is like layers in a geological formation, A block is a container data structure that aggregates transactions for inclusion in the public ledger, the blockchain. The block is made of a header, containing metadata, followed by a long list of transactions that make up the bulk of its size. The block header is 80 bytes, whereas the average transaction is at least 250 bytes and the average block contains more than 500 transactions. A complete block, with all transactions, is therefore 1000 times larger than the block header. -[[block_structure]] +[[block_structure1]] .The structure of a block [options="header"] |======= @@ -35,7 +34,7 @@ A block is a container data structure that aggregates transactions for inclusion The block header consists of three sets of block metadata. First, there is a reference to a previous block hash, which connects this block to the previous block in the blockchain. We will examine this in more detail in <>. The second set of metadata, namely the difficulty, timestamp and nonce, relate to the mining competition, as detailed in <>. The third piece of metadata is the Merkle Tree root, a data structure used to efficiently summarize all the transactions in the block. -[[block_header_structure]] +[[block_header_structure_ch07]] .The structure of the block header [options="header"] |======= @@ -226,7 +225,7 @@ Result: d47780c084bad3830bcdaf6eace035e4c6cbf646d103795d22104fb105014ba3 The efficiency of merkle trees becomes obvious as the scale increases. For example, proving that a transaction is part of a block requires: -[[block_structure]] +[[block_structure2]] .Merkle Tree Efficiency [options="header"] |======= diff --git a/ch08.asciidoc b/ch08.asciidoc index b5524ba1..bb12f8ff 100644 --- a/ch08.asciidoc +++ b/ch08.asciidoc @@ -26,7 +26,7 @@ Bitcoins are "minted" during the creation of each block at a fixed and diminishi In November of 2012, the new bitcoin issuance rate was decreased to 25 bitcoin per block and it will decrease again to 12.5 bitcoin at block 420,000, which will be mined sometime in 2016. The rate of new coins decreases like this exponentially over 64 "halvings", until block 13,230,000 (mined approximately in year 2137) when it reaches the minimum currency unit of 1 satoshi. Finally, after 13.44 million blocks, in approximately 2140, all 2,099,999,997,690,000 satoshis, or almost 21 million bitcoin will be issued. Thereafter, blocks will contain no new bitcoin, and miners will be rewarded solely through the transaction fees. -In the example code in <>, we calculate the total amount of bitcoin that will be issued: +In the example code in <>, we calculate the total amount of bitcoin that will be issued: [[max_money]] .A script for calculating how much total bitcoin will be issued @@ -117,7 +117,7 @@ By independently verifying each transaction as it is received and before propaga === Mining Nodes -Some of the nodes on the bitcoin network are specialized nodes called _miners_. In <> we introduced Jing, a computer engineering student in Shanghai, China, who is a bitcoin miner. Jing earns bitcoin by running a "mining rig", which is a specialized computer-hardware system designed to mine bitcoins. Jing's specialized mining hardware is connected to a server running a full bitcoin node. Unlike Jing, some miners mine without a full node as we will see in <>. Like every other full node, Jing's node receives and propagates unconfirmed transactions on the bitcoin network. Jing's node, however, also aggregates these transactions into new blocks. +Some of the nodes on the bitcoin network are specialized nodes called _miners_. In <> we introduced Jing, a computer engineering student in Shanghai, China, who is a bitcoin miner. Jing earns bitcoin by running a "mining rig", which is a specialized computer-hardware system designed to mine bitcoins. Jing's specialized mining hardware is connected to a server running a full bitcoin node. Unlike Jing, some miners mine without a full node as we will see in <>. Like every other full node, Jing's node receives and propagates unconfirmed transactions on the bitcoin network. Jing's node, however, also aggregates these transactions into new blocks. Jing's node is listening for new blocks, propagated on the bitcoin network, as do all nodes. However, the arrival of a new block has special significance for a mining node. The competition among miners effectively ends with the propagation of a new block which acts as an announcement of a winner. To a miner, receiving a new block means someone else won the competition and they lost. However, the end of one round of a competition is also the beginning of the next round. The new block is not just a checkered flag, marking the end of the race, it is also the starting pistol starting the race for the next block. @@ -349,7 +349,7 @@ In block 277,316 we see that the coinbase (see <>), which The first byte, +03+ instructs the script execution engine to push the next 3 bytes onto the script stack (see <>). The next 3 bytes, +0x443b04+, are the block height encoded in little-endian format (backwards, least significant byte first). Reverse the order of the bytes and the result is +0x043b44+ which is 277,316 in decimal. -The next few hexadecimal digits (+03858402062+) are used to encode an extra _nonce_ (See <>), or random value, used to find a suitable Proof-of-Work solution. +The next few hexadecimal digits (+03858402062+) are used to encode an extra _nonce_ (See <>), or random value, used to find a suitable Proof-of-Work solution. The final part of the coinbase data (+2f503253482f+) is the ASCII-encoded string "/P2SH/", which indicates that the mining node that mined this block supports the Pay-to-Script-Hash (P2SH) improvement defined in BIP0016. The introduction of the P2SH capability required a "vote" by miners to endorse either BIP0016 or BIP0017. Those endorsing the BIP0016 implementation were to include "/P2SH/" in their coinbase data. Those endorsing the BIP0017 implementation of P2SH were to include the string "p2sh/CHV" in their coinbase data. The BIP0016 was elected as the winner, and many miners continued including the string "/P2SH/" in their coinbase to indicate support for this feature. @@ -383,7 +383,7 @@ $ ./satoshi-words To construct the block header, the mining node needs to fill in six fields: -[[block_header_structure]] +[[block_header_structure_ch08]] .The structure of the block header [options="header"] |======= @@ -738,7 +738,7 @@ Let's assume for example that a miner in Canada finds a Proof-of-Work solution f As the two blocks propagate, some nodes receive block "red" first and some receive block "green" first. The network splits into two different perspectives of the blockchain, one side topped with a red block, the other with a green block. -[[fork2]] +[[fork3]] .Visualization of a blockchain fork event - Two blocks propagate, splitting the network image::images/msbt_0804.png["globalfork3"] @@ -819,15 +819,14 @@ Pool miners connect to the pool server using a mining protocol such as Stratum ( ===== P2Pool -Managed pools create the possibility of cheating by the pool operator, who might direct the pool effort to double-spend transactions or invalidate blocks (see <<51pct>>). Furthermore, centralized pool servers represent a single-point-of-failure. If the pool server is down or is attacked by Denial-of-Service, the pool miners cannot mine. In 2011, to resolve these issues of centralization, a new pool mining method was proposed and implemented: P2Pool is a peer-to-peer mining pool, without a central operator. +Managed pools create the possibility of cheating by the pool operator, who might direct the pool effort to double-spend transactions or invalidate blocks (see <>). Furthermore, centralized pool servers represent a single-point-of-failure. If the pool server is down or is attacked by Denial-of-Service, the pool miners cannot mine. In 2011, to resolve these issues of centralization, a new pool mining method was proposed and implemented: P2Pool is a peer-to-peer mining pool, without a central operator. P2Pool works by de-centralizing the functions of the pool server, implementing a parallel blockchain-like system called a _sharechain_. A sharechain is a blockchain running at a lower difficulty than the bitcoin blockchain. The sharechain allows pool miners to collaborate in a de-centralized pool, by mining shares on the sharechain at a rate of one share block every 30 seconds. Each of the blocks on the sharechain records a proportionate share reward for the pool miners who contribute work, carrying the shares forward from the previous share block. When one of the share blocks also achieves the difficulty target of the bitcoin network it is propagated and included on the bitcoin blockchain, rewarding all the pool miners who contributed to the all the shares that preceded the winning share block. Essentially, instead of a pool server keeping track of pool miner shares and rewards, the sharechain allows all pool miners to keep track of all shares using a de-centralized consensus mechanism like bitcoin's blockchain consensus mechanism. P2Pool mining is more complex than pool mining, as it requires that the pool miners run a dedicated computer with enough disk space, memory and internet bandwidth to support a full bitcoin node and the p2pool node software. P2Pool miners connect their mining hardware to their local p2pool node, which simulates the functions of a pool server by sending block templates to the mining hardware. On P2Pool, individual pool miners construct their own candidate blocks, aggregating transactions much like solo-miners but then mine collaboratively on the sharechain. P2Pool is a hybrid approach that has the advantage of much more granular payouts than solo mining, but without giving too much control to a pool operator like managed pools. -Recently, participation in P2Pool has increased significantly as mining concentration in mining pools has approached levels that create concerns of a 51% attack (see <<51pct>>). Further development of the P2Pool protocol continues with the expectation of removing the need for running a full node and therefore making de-centralized mining even easier to use. +Recently, participation in P2Pool has increased significantly as mining concentration in mining pools has approached levels that create concerns of a 51% attack (see <>). Further development of the P2Pool protocol continues with the expectation of removing the need for running a full node and therefore making de-centralized mining even easier to use. -[[51pct]] [[consensus_attacks]] === Consensus Attacks