Is Bitcoin Headed for a Break in Fungibility?

Bitcoin Magazine
Is Bitcoin Headed for a Break in Fungibility?

Fungibility is often held as a crucial characteristic of sound money. But what happens when money has a public record of every transaction, and morally questionable trades can be identified? Is bitcoin headed for a break in fungibility?

The debate about whether Bitcoin is fit to be a currency rather than a payment layer between currencies is as alive as it has ever been. Many of these tensions about what Bitcoin is or should be have been aired and discussed during the blocksize debate and are ongoing.

One essential element of a money which has not particularly been illustrated is how bitcoin might be affected by a significant gap in its “fungibility.”

“[Fungibility] is the idea that a 10 dollar note is the same as any other 10 dollar note. So if you receive a note that was involved in a theft 10 transactions go and the police investigated the theft, then they would have no right to take the note away from you,” according to Adam Back, the inventor of Hashcash.

According to Back, this is an old legal concept, often traced to a 17th century court case in Scotland. In that case, a pair of high value notes marked with a unique signature were stolen and later on turned up at a bank. The owner took the case to court in an attempt to have the bank return the notes to him. The courts ruled that “if notes could be returned to a previous owner after a theft, it could erode confidence in a currency,” since your ownership would be at question and you would have to go and check the newspapers or try to make sure your money has not been claimed as stolen.

While the above briefly illuminates the history of fungibility as a key characteristic to money, it still leaves questions about what might actually happen to a currency if such a crack in fungibility appeared. Kristov Atlas, a bitcoin privacy researcher raised some questions about the importance of fungibility in a recent post saying:

The needs for fungibility are somewhat unclear, in my opinion. Privacy advocates have been talking up fungibility for a while without providing a lot of evidence to back it. Perhaps this is why it has made such a dull impression on people.

Fungibility is a particular concern for bitcoin because bitcoin, unlike cash, sea shells or silver coins, has a cryptographically provable history of ownership. If the identity of a particular bitcoin’s previous owners or the nature of the transactions they engaged in was to be revealed and deemed illegal, could this cause a future where new or unspent ‘virgin’ bitcoins are worth much more than old bitcoins orwhere coins associated with Silk Road transactions lose a great deal of their value?

Such a scenario is not far-fetched. There are various blockchain analytics and compliance companies such as Coinalytics and Chainanalysis which claim to be using artificial intelligence algorithms to group addresses and transactions and thus reveal ‘entities’ in the network. It’s not hard to imagine that someday bitcoin payment processors could automatically compare incoming bitcoins to a “dirty coin” database, to determine their legality and or past connection with illegal trade.

To learn more about these questions and concerns, Bitcoin Magazine spoke with J.P. Koning, an economics blogger with a substantial body of work on the history of money.

BM: Do you know any examples in history where the fungibility of a currency broke? How did that play out?

Koning: Many of the problems faced by those who managed medieval monetary system can be traced to deficits in fungibility.

For instance, England’s silver pennies degraded steadily over time through regular wear and tear and also as they were clipp’d and sweated. When the mint issued new full bodied pennies, questions of fungibility emerged. A new penny, after all, had much more silver than a worn penny, and therefore had more intrinsic value. But each were pennies; they both had the same face value. So just as you get good and bad bitcoin, you had good and bad pennies.

The medieval economy dealt with the fungibility problem in a unique way. According to law and custom, merchants accepted all coins at face value. Put differently, they did not differentiate between old and new pennies. Shoppers thus had an incentive to pay with old and degraded pennies rather than use new full-bodied pennies. Why buy a fish with 24 grams of silver when you can pay with just 23 grams? Thus the bad money drove out the good from circulation; this is Gresham’s famous law. For centuries, only the worst pennies circulated in England.

In the case of bitcoin, I’m not sure that law or custom would require merchants to accept all bitcoin at the same rate. If they were to differentiate between the two, you’d most likely get the opposite effect; good money would drive out the bad.”

BM: Are you worried about a scenario where bitcoins with close association with a bitcoin address used on the Silk Road are flagged as being high risk for money laundering? What is the worse that could happen to bitcoin in the above scenario?

Koning: That reminds me of the recent euro crisis, where various types of euros threatened to become non-fungible with others. This summer, for instance, Greek euro deposits certainly lost their equivalence to non-Greek euros.

Koning expanded on this thought in a related article, where he wrote:

One of the deep problems facing the euro over the last three years was fear of euro break up. If Greece decided to leave the euro (or was kicked out), a Greek euro would no longer be equal to a German one. In the mind of the markets, euros had ceased to be homogeneous.

In anticipation of potential break up, a tremendous bank run began in which massive amounts of Italian, Greek, Irish, Spanish, and Portuguese euro deposits were converted into German and Dutch euro deposits. This all occurred on the books of the ECB’s intra-eurosystem clearing mechanism—Target2. While no limits had ever been placed on Target2 balances (or imbalances), fears that Germans might revolt and try to close the Target2 window led to ever faster withdrawals from the GIIPS.

BM: Bitcoin in some ways is very different than cash, particularly because the identification of each coin is tied to a historical public record of every transaction. I wonder if you know of any examples where such a financial asset suffered from a gap in fungibility. Like the stock of a company, or any other ownership token that would have a transparent history of ownership.

Koning: Bills of exchange and chopmarked coins also had a paper trail. In the case of bills of exchange, the moment that the credit worthiness of a certain cosignatory to a bill of exchange was doubted, it would have started to trade at a much larger discount to par.

Analog versus Digital Money

Koning’s historical insights do paint a picture into how the market might evolve as money’s fungibility changes, but bitcoin is unique and may evolve differently than any money before it.

Many of Koning’s examples were related to a break in fungibility for political reasons, such as the euro crisis which saw runs on banks and demand for more trusted government versions of the euro versus the euros in Greek banks. However, Bitcoin’s fungibility might be threatened by its use in dark markets.

It is no secret that bitcoin has been widely used online to purchase goods on dark markets such as the Silk Road. A report by Kyle Soska and Nicolas Christin from Carnegie Mellon University claims that dark markets had a higher daily bitcoin trade volume than BitPay’s reported $435,000 daily average, in 2014.

“In the short four years since the development of the original Silk Road, total volumes have reached up to $650,000 daily (averaged over 30-day windows) and are generally stable around $300,000–$500,000 a day, far exceeding what had been previously reported,” said the report.

Virgin Coins and Bitcoin’s Fungibility

To learn about the demand for newly mined, unspent “virgin” Bitcoins, Bitcoin Magazine spoke with FinTech consultant Bilal Dar. According to Dar, he’s seen “virgin” bitcoin trading at a 20 percent to 30 percent premium to market prices.

The demand for virgin was nothing new … Having virgin coins had many benefits. A full block of 25 coins mined between 2012 to 2016 would have collectible value. Similar is the value for 50 BTC block … there are ways of deferring taxes if you have a coin with no or least amount of history. [Though some of this] would require private key swapping and a ‘substantial’ amount of trust between parties conducting transaction.

So did the value of Virgin coins have anything to do with the possibility of older coins being ‘dirty’? No … It was more of a possibility of ‘perceived value’ … People had a lack of understanding, and in some case genuine use cases.

Today he claims that the demand for virgin coins remains, but the supply has increased dramatically. “You can wait for 2 weeks and batches of freshly minted coin from China would be available,” said Dar.

The Foreseeable Future

The impact of a privacy leak or fungibility weakness in Bitcoin is yet to be discovered. After all, a cryptographically provable history of every transaction is an essential part Bitcoin and the blockchain. The good news is that this topic is in the mind of many Bitcoin core developers and pioneers such as Adam Back, Gregory Maxwell and many others.

In a 2014 presentation, Back explained the functionality of something called Blind RSA transactions dating back to the days of digicash, which according to him, are “cryptographically unlinkable” and “payer anonymous.” Another promising discussion may be something called Confidential Transactions, being developed by several core developers at Blockstream.

And of course, many alternative cryptocurrencies have worked on the issue for years, including DASH, Monero, Cryptonote, and Zerocash. How Bitcoin will adapt to this market environment and whether it will evolve beyond this threat to its fungibility remains to be seen.

The post Is Bitcoin Headed for a Break in Fungibility? appeared first on Bitcoin Magazine.

Enigma, MIT Media Lab’s Blockchain-based Encrypted Data Marketplace, to Launch Beta

In July Bitcoin Magazine reported that researchers and entrepreneurs at the MIT Media Lab had started the development of a new encryption system, dubbed Enigma, based on the blockchain technology. Enigma will enable untrusted and anonymous participants to securely share sensitive information with a third party.

The name “Enigma” is part of the history of cryptography and code-breaking. It was the name of the electro-mechanical encryption system used by Germany before and during World War II, which was broken by a group of notable mathematicians and early computer scientists, including Alan Turing.

Enigma was created by Oz Nathan, a technology entrepreneur formerly associated with the Counter Terror Unit of the Israeli Defense Forces, and Guy Zyskind, a graduate student and research assistant at the MIT Media Lab whose research interests lie at the intersection of data, privacy and Bitcoin. Zyskind’s advisor, Prof. Alex “Sandy” Pentland, is associated with the Enigma team.

The new Enigma is powered by the blockchain.

Enigma is a decentralized cloud platform with guaranteed privacy,” states the Enigma website. “Private data is stored, shared and analyzed without ever being fully revealed to any party. Secure multi-party computation, empowered by the blockchain, is the magical technology behind it.”

In fact, protecting sensitive data is but a part of what Enigma will do. An important and innovative feature of the system is that it will permit analyzing the data stored by the system with external applications while keeping the data itself private and under full control of its owners.

Furthermore, data owners will be able to monetize their data. For example, participants could anonymously sell partial, controlled access to their medical data to pharmaceutical companies that need to run data analysis programs on a wide sample of patients’ data.

“[Enigma] is a peer-to-peer (P2P) network, enabling different parties to jointly store and run computations on data while keeping the data completely private,” states the Enigma whitepaper written by Nathan, Zyskind and Pentland. “Enigma’s computational model is based on a highly optimized version of secure multi-party computation, guaranteed by a verifiable secret-sharing scheme. For storage, Enigma uses a modified distributed hashtable for holding secret-shared data.

An external blockchain is utilized as the controller of the network, manages access control, identities and serves as a tamper-proof log of events. Security deposits and fees incentivize operation, correctness and fairness of the system,” the whitepaper continues. “Similar to Bitcoin, Enigma removes the need for a trusted third party, enabling autonomous control of personal data. For the first time, users are able to share their data with cryptographic guarantees regarding their privacy.”

The Enigma creators won the final round of the Summer Startup Competition organized by the MIT Bitcoin Project in 2014. “The team winning the $5,000 grand prize, Ethos – comprised of MIT Media Lab grad students Amir Lazarovich & Guy Zyskind, along with Bitcoin entrepreneur Oz Nathan – had also won prizes in the two previous rounds,” states the MIT Bitcoin Project’s announcement. “Ethos wowed judges by submitting a working prototype of a decentralized network for storing and sharing personal data, delivering on the ambitious vision they laid out in the first two rounds.”

Bitcoin Magazine reached out to the Enigma creators to find out more about Enigma’s objectives and future plans.

One of our missions with Enigma is to minimize the tradeoff between security and privacy, by enabling people and organizations to share data with each other, while maintaining control over how the data is used, without ever revealing the raw data to anyone,” Nathan told Bitcoin Magazine.

Since July, the Enigma team’s work has been focused on three things:

The implementation of Enigma;
Formally proving the Enigma protocol in an academic paper, which should be published soon;
Talking with potential users to understand what the most interesting use cases are.

“The most interesting use case we’re hearing from potential users is the ability to do data science and machine learning on encrypted data sets. Other use cases include private smart contracts and ‘IoT with privacy’,” Zyskind told Bitcoin Magazine.

The Enigma team will be launching a beta soon. Interested users can join the waiting list to participate in the beta by signing up for at the Enigma website.

The post Enigma, MIT Media Lab’s Blockchain-based Encrypted Data Marketplace, to Launch Beta appeared first on Bitcoin Magazine.