2008年,中本聪发布了比特币白皮书《一种点对点的电子现金系统》,从此开启了区块链技术的新天地,虽然中本聪在2011年后销声匿迹,但白皮书中涵盖了中本聪最希望传递的比特币的世界观,对于每一个区块链入门者都是必读,以下为个人的总结与点评
In 2008, the White Paper of Bitcoin, A Point-to-Point Electronic Cash System, was released, opening a new horizon for block chain technology. Although it disappeared after 2011, the White Paper covered the world view of Bitcoin, which he most wished to transmit, and was read by those who entered every block chain. The following is a personal summary and comment .
1.介绍(Introduction)
1. Introduction
基于信任模型的交易:
Trust model-based transactions:
(1)传统金融中介增加成本
(1) Increased costs of traditional financial intermediaries
(2)支付交易可逆,欺诈不可避免
(2) Payment transactions are reversible and fraud is unavoidable
基于密码学原理:
Based on cryptography:
(1)点对点交易,不存在金融中介
(1) Point-to-point transactions, no financial intermediaries
(2)不可回滚的支付交易,防止欺诈
(2) Non-roll-back payment transactions to prevent fraud
个人点评:本节强调的是目前传统的中心化金融模型有许多不可避免的问题,可以通过密码学保证的分布式账本解决。
Personal : This section emphasizes that the current traditional central financial model has many unavoidable problems that can be solved through the distributional books guaranteed by cryptography.
2.交易(Transactions)
2. Tradings
每一位电子货币所有者通过对前一次交易和货币接受者的公钥(pubilc key)签署一个hash数字签名,然后发送给下一位所有者。
Each e-money owner signs a hash digital signature to the previous transaction and to the recipient's public key (pubilc key) and then sends it to the next owner.
(1)收款人使用付款人的公钥(public key)校验,是否是正确的付款人发送
(1) Payee verifies whether it was sent by the correct payee using the payee's public key (public key)
(2)由于交易中有收款人的公钥,所以只有收款人使用自己的私钥才能解锁并将该货币传递下去
(2) Since the transaction has a payee's public key, only the payee can unlock and pass on the currency using his own private key
但以上过程仍然有问题,无法解决双重支付问题,即货币所有者将同一电子货币签名后发送给多个收款人。
传统金融:通过中介机构判断并确认用户是否进行双重支付
比特币:通过公开宣布货币的所有交易,形成唯一公认的历史交易序列,由系统内所有参与者认同交易
However, the above process remains problematic and does not solve the problem of double payment, i.e. the currency owner signs the same electronic currency and sends it to multiple recipients. 个人点评:通过非对称加密的公私钥,可以解决虚拟货币的归属权问题,但是同一个货币可以由归属人付给多个人,也就是双重支付,仅使用加密在货币体系里是不够的。(这里其实隐含了货币体系必须要有人记账) (a) 3.时间戳服务器(Timestamp server) 3. Time stamp server 对区块形式存在的一组数据实施随机散列(HASH)加上时间戳,将区块连成一个链条,形成区块链 Implementation of a random hash (HSH) plus a time stamp for a set of data that exists in block form, connecting blocks into a chain that forms a block chain 个人点评:本节实际上给出了比特币账本的雏形,也是区块链(Blockchain)名称的来源,每一个区块就是一页账本,他们的顺序是由时间戳来决定,由Hash函数保障账本的真实性。 personal point : actually gives the prototype of the bitcoin account and is the source of the name of the block chain (Blockchain), each block being a page of the account, the order of which is determined by the time stamp, and the Hash function guarantees the authenticity of the account book. 4.工作量证明(Proof-of-Work) 4. Workload certification (Proof-of-Work) 计算一个随机数(Nonce),将随机数与区块头一起计算随机散列值(Hash),该散列值要满足以N个0开头(N为变量,可通过N来控制计算难度,N越大,难度越大),此即为“挖矿”的内部原理。 The calculation of a random number (Nonce), which calculates the random hash value (Hash) with the head of a block, meets the internal principle of “mining”. 工作量证明的用途: Use of workload proof: 个人点评:上一节的模型能保证账本的顺序和真实性,但是无法阻止人为的创造多个账本,而这些账本中只能有一个是被大家认可的,所以必须创造一种共识机制。比特币的共识机制即为工作量证明(POW),即工作量(Hash计算)最大的那个账本是大家公认的正确账本。 The model in the previous section of the personal comment : ensures the sequence and authenticity of books, but it is not possible to prevent artificially created multiple books, only one of which is accepted, so that a consensus mechanism must be created. The consensus mechanism in Bitcoin is the proof of workload (POW), the largest account book (Hash calculation), is the generally accepted correct account book. 5.网络(Network) 5. Network 网络的运行步骤如下: The network operates in the following steps: (1) 新的交易向全网进行广播; (1) New transactions are broadcast on the Internet; (2) 每一个节点都将收到的交易信息纳入一个区块中; (2) The transaction information to be received at each node is incorporated into a block; (3) 每个节点都尝试在自己的区块中找到一个具有足够难度的工作量证明; (3) Each node attempts to find a sufficiently difficult proof of workload in its own block; (4) 当一个节点找到了一个工作量证明,它就向全网进行广播; (4) When a node finds a proof of workload, it broadcasts to the entire network; (5) 当且仅当包含在该区块中的所有交易都是有效的且之前未存在过的,其他节点才认同该区块的有效性; (5) The validity of the block is recognized by the other nodes only when all transactions included in the block are valid and have not previously existed; (6) 其他节点表示他们接受该区块,而表示接受的方法,则是在跟随该区块的末尾,制造新的区块以延长该链条,而将被接受区块的随机散列值视为先于新区快的随机散列值。 (6) Other nodes indicate that they accept the block, whereas the way to do so is by following the end of the block and creating new blocks to extend the chain, and treating the random hash value of the received block as a random hash value faster than that of the new zone. 两个节点如果同时完成了工作量证明,并进行广播,由于网络传输的原因,可能出现两条一样长度(工作量)的链条,该情况要等下一个工作量证明被发现来判断哪一条最长。 If the workload certificates are completed and broadcast simultaneously, two links of the same length (load of work) may emerge as a result of network transmission, a situation that waits for the next workload certificate to be found to determine which of the longest. 个人点评:全网的节点(矿工),将通过努力完成工作量证明来争夺将新区块写入区块链的权利(记账),如果有人先完成并被确认有效,所有节点就会转向争夺下一个区块的写入权。 6.激励(incentive) 6. Incentive (1)通过完成工作量证明,可以获得一定量新的电子货币作为激励 (1) A certain amount of new electronic currency is available as an incentive through the completion of workload certification (2)另外一个激励为交易费,如果比特币(2100万枚)全部已进入流通,激励将完全依靠交易费,使货币免于通货膨胀 (2) Another incentive is transaction costs, which, if all Bitcoins (21 million) are in circulation, will be entirely dependent on transaction costs to protect the currency from inflation 激励系统也有助于鼓励节点保持诚实,如果一个攻击者拥有大量的算力,他利用这些算力进行挖矿收益很可能高于攻击比特币网络。 Incentive systems also serve to encourage nodes to remain honest, and if an attacker has a great deal of arithmetic, it is likely that he will use it to dig for more money than he would attack the Bitcoin network. 个人点评:网络节点(矿工)争夺记账权相应的必须有一定的激励,否则没有人有动力去记账,这种激励就是记账人可以获得一定量的新比特币和交易费。(比特币的产出量为记录一个块50枚比特币,每4年减半,2018年已经经过两次减半,目前为12.5枚) 7.回收硬盘空间 7. Recovery of hard disk space 交易信息构成Merkle树的形态,通过merkle树的原理可知,只需要根节点(root)与路径即可验证交易的正确性,使得用户只需要存储区块头(含有Merkle root),在需要时获取Merkle树路径即可校验一笔交易。 The transaction information forms the form of the Merkle tree, the principles of which are known by the Merkle tree, which requires only root (root) and path to verify the correctness of the transaction, so that the user only needs to store blocks (containing Merkle root) and obtain the Merkle tree path when needed to verify a transaction. 不含全部交易信息的区块头(Block header)仅80字节,区块生成速率约为10分钟一个,每一年只产生数据4.2MB Blockhead (Block header) that does not contain all transaction information is only 80 bytes, blocks are generated at a rate of about 10 minutes and data are generated only 4.2 MB per year 个人点评:比特币的区块头始终只有80字节,却可以包含交易相关信息,即是利用梅克尔树记录交易,在区块头放入梅克尔根(梅克尔树我们在后面章节会详细讨论)。 8.简单的支付确认 8. Simple payment confirmation 在不运行完整网络节点的情况下,也能够对支付进行校验。节点只需保留区块头,通过merkle的分支校验某次交易是否存在即可。 If you do not run a full network node, the payment can also be verified. 个人点评:早期的比特币账本数据量较小,全网节点实际都是全节点(存储账本所有数据),但是中本聪在设计初已经预见到账本容量随着时间持续膨胀,全节点的负担将会越来越重。此时可以使用只保留区块头的方式,利用梅克尔树来验证交易,这样可以大大减少节点的存储占用空间。 9.价值的组合与分割(Combining and Splitting Value) 9. Combining and Splitting Value 每次发起一次交易,输入可以有多个,输出只有两个:一个用于支付,另一个用于找零 Each time a transaction is initiated, more than one input can be entered, with only two outputs: one for payment and the other for change. 个人点评:比特币作为货币,需要具备可灵活分割合并使用的特性,通过输入输出的分割与合并使交易变的非常灵活。 Personal comment: bitcoin as a currency requires flexible features that can be used to split mergers and make transactions very flexible by input output partitioning and consolidation. 10.隐私(Privacy) 10. Privacy 传统模型:金融中介提供一定的隐私保护 Traditional models: financial intermediaries provide some privacy protection 比特币:通过公钥生成的地址,交易虽然在全网广播,但公众能得到的信息仅为某人将一定数量的比特币发给了另外一个人,但无法确认这些人是谁。 Bitcoin: The address generated by the public key, while the transaction is broadcast on the Internet, the information available to the public is that only one person has sent a certain amount of bitcoin to another person, but it is not possible to identify who these persons are. 个人点评:由于比特币的账本是全网公开的,所以隐私保护是一个重要课题,比特币利用公钥Hash作为交易地址来对外表现交易的输入输出过程,这里有两个好处: 11.计算 攻击者即使拥有了巨大的算力,也仅能更改他自己的交易信息,试图拿回他刚付给别人的钱(双重支付)或者拒绝别人的交易信息。无法凭空创造价值或掠夺别人的货币。 Even with a great deal of arithmetic, the attacker can only change his own transactional information, try to recover the money he has just paid (double payment) or reject another person’s transactional information. There is no way to create value or loot another person’s currency. --后面内容涉及较多数学计算,不再详述,有兴趣的自行翻阅白皮书。 This is followed by more mathematical calculations, no further details, and interested self-reading of the White Paper. 个人点评:工作量证明有一个风险,就是有人如果控制了全网大量的算力(如超过51%),实际上他可以控制大部分的记账权,对于比特币网络将产生风险。但是比特币的设计将这种风险产生的后果降到了较低的水平: (1)由于仅有算力,没有私钥,无法随意掠夺别人的货币。 (1) Because there is only arithmetic and no private key, it is not possible to loot another person's currency at will. (2)虽然他可以拒绝别人的交易计入账本,但这种破坏实际并不会对别人造成货币的损失。 (2) While he may reject another person's book of dealings, the damage does not actually result in monetary loss to others. (3)他还可以试图进行双重支付,但如果在大额交易中对方进行多个块(如6个以上)确认来验证交易,仍然很难完成双重支付。并且这种攻击发生会很容易被察觉,比特币社区可以快速做出应对。 (3) He may also attempt to make double payments, but it is still difficult to complete double payments if multiple blocks (e.g., six or more) are identified in a large transaction. Moreover, such an attack can easily be detected, and the Bitcoin community can respond quickly. 综上所述,进行51%算力攻击需要花费巨大的成本,但是获益其实并不大,如果能掌握51%算力,进行攻击的收益可能远不如成为一个诚实节点进行挖矿的收益。当然如果有人以破坏比特币网络为目的,并完成51%算力攻击,势必会对比特币产生影响,但并不可能杀死比特币。 To sum up, 51% of arithmetic attacks are costly, but the benefits are small, and if 51% of arithmeticals are captured, the proceeds of an attack may well be much less than those of an honest node for mining. Of course, if someone aims to destroy Bitcoin’s network and completes 51% of arithmetic attacks, it is bound to affect bitcoins, but it is not possible to kill bitcoins. 白皮书链接:https://github.com/GammaGao/bitcoinwhitepaper/blob/master/bitcoin_en.pdf 作者:Aaron Author: Aaron
Traditional finance: whether or not the user makes a double payment
& nbsp (which implies that the monetary system must be accounted for);
(1)保证区块链(Blockchain)的不可篡改性,由于区块形成了链条,如果要修改区块,必须重新完成之前所有的工作量,所以随着区块链高度越高,越旧的区块越难以篡改。
(2)工作量证明的本质是一CPU一票(与传统的一IP一票不同,攻击者要获得更多的票数需要投入大量的成本),如果大多数的CPU为诚实节点,那么正确的链条将以最快的速度延长。
(1) The immutable nature of the chain of guarantee blocks (Blockchain), as the blocks form a chain, and if the blocks are to be modified, they have to complete all the work before, the higher the chain of blocks, the more difficult it is to tamper with the older blocks.
(2) The workload proves the essence of a CPU (in contrast to the traditional one IP vote, the cost for the attacker to obtain more votes will be substantial), and if most CPUs are honest, the correct chain will be extended as quickly as possible.
& nbsp;
(1)由于公私钥是随机生成的,仅知道公钥Hash并不能知道具体是谁做了交易
(2)某公钥地址的私钥持有人,能随意支配该地址上锁定的货币,但没有人知道谁是真实的私钥持有人
(2) the private key holder of a public key address, who is free to dispose of the locked currency on the address, but no one knows who is the true private key holder
& nbsp;
注册有任何问题请添加 微信:MVIP619 拉你进入群
打开微信扫一扫
添加客服
进入交流群
发表评论