Connect with us

Blockchain

Smart contracts and the DAO implosion

Published

on

The tragic combination of inevitable bugs and immutable code

Last week witnessed a catastrophic event in the Ethereum ecosystem, when The DAO, a smart contract less than two months old, began rapidly leaking funds to an unknown party. Looking at the current set of Ethereum contracts, filled with casinos and self-declared Ponzi schemes, this might not seem like a big deal. That is, until you learn that over 12 million units of ether, the Ethereum cryptocurrency, had been invested in The DAO by almost 20,000 people. That’s around 15% of all the ether in existence, valued at over $250 million on June 17th.

Two days later, The DAO’s assets dipped below $100 million. Two things contributed to this precipitous fall. First, a third of its funds (as denominated in ether) had already been taken. And second, the resulting panic sent the market price of ether crashing down from its peak of over $21 to a more sobering $10.67. (At the time of publication, the price had recovered to around $14.) This second effect was a natural consequence of the first, since much of ether’s recent increase in value was driven by people buying it to invest in The DAO.

The DAO had promised to act as a new type of decentralized crowdsourcing vehicle, like Kickstarter or Indiegogo but without the middleman and regulation. It was designed to let participants pool their cryptocurrency, collectively vote on projects looking for funding, then invest and reap the future rewards. Before catastrophe struck, over 100 projects had already been proposed, most of which were related to Ethereum itself. In addition, The DAO allowed participants to withdraw their uninvested funds at any time, positioning itself as a low risk investment.

Ironically, the individual or group which drained The DAO did so by exploiting subtle errors in this withdrawal mechanism. Like all smart contracts in Ethereum, The DAO is just a piece of computer code, which is “immutably” (i.e. permanently and irreversibly) embedded in the blockchain and executed by every node in response to incoming transactions. And like any self-respecting smart contract, The DAO provides full transparency by making its source code easily accessible online. This means that anybody can independently verify its functionality but also, crucially, look for vulnerabilities. And yet, the immutable nature of blockchains prevents any such problems from being fixed.

At the end of May, several critical issues were highlighted on the outstanding Hacking Distributed blog, alongside a call for a moratorium on project proposals for The DAO. This is what we might call the ‘white hat’ approach, in which exploits are reported for the good of the community. Nonetheless nobody seemed too worried, as the problems related to skewed economic incentives rather than a risk of outright theft. Simultaneously, however, it appears that others were poring over The DAO’s code with greater self-interest – namely, to look for a way to make a ton of money. And on June 17th, someone succeeded.

Draining The DAO

In a general sense, the attack arose from the interaction between vulnerabilities in The DAO’s code and other code which was designed to exploit them. You see, when looked at in isolation, The DAO did not contain any obvious mistakes, and indeed it was only released after an extensive security audit. But with the benefit of hindsight and many more eyes, a significant number of errors have since been found.

I won’t provide a full technical description of the exploit’s mechanism here, since others have already published superb and detailed post mortems (see here, here and here). But I will explain one particular vulnerability that was present, because it has been discovered in many other smart contracts and serves as an instructive example.

Let’s say that a smart contract holds funds on behalf of a number of users, and allows those users to withdraw their funds on request. The logic for the process might look something like this:

  1. Wait for a user to request a withdrawal.
  2. Check if that user’s balance is sufficient.
  3. If so, send the requested quantity to the user’s address.
  4. Check that the payment was successful.
  5. If so, deduct the quantity from the user’s balance.

This all looks eminently sensible, and rather like an ATM which gives you some cash and deducts the appropriate amount from your bank balance.

So how can this simple process go wrong? Well, it turns out that if an Ethereum address belongs to a contract rather than a regular user, then this contract can run some code in response to receiving funds. And this code can, in turn, trigger other pieces of code on the Ethereum blockchain. Crucially, it can even trigger the same piece of code that caused it to be paid in the first place.

This means that, during step 3 above, the receiving address can send a new request for withdrawal, beginning a new process at step 1 before the previous process has completed. Since the user’s balance is only reduced in step 5, a new withdrawal will be approved based on the previous balance, and the same amount will be paid out again. In response to this second payment, the receiving contract can request a third, and then a fourth, and so on until the funds are drained or some other limit is reached. At this point, the user’s balance will finally be reduced by the appropriate amount, entering the negative territory which step 2 was supposed to prevent.

The equivalent would be an ATM which delivers banknotes that trigger a free repeat withdrawal when waved at the screen. The first customer to find out could empty the ATM entirely.

This ability for a piece of code to wind up calling itself is called recursion, and is a very useful technique in general computer programming. However in the case of The DAO, it paved the way for this ruinous exploit. Nonetheless, if this had been the only problem, the attack’s potential would have been contained, because Ethereum applies a limit on how deeply recursion can occur. Unfortunately, several further bugs in The DAO amplified the effects, leading to the eventual loss of tens of millions of dollars.

Of course, if just a few lines of The DAO’s code had been written differently, none of this could have happened. For example, in the 5-step process above, if the user’s balance is reduced before the funds are sent, then recursive calling would be perfectly safe. But sadly, even if its creators’ intentions were pure, The DAO’s actual code was deeply flawed. And computers have a nasty habit of blindly following the instructions they are given, even if a five year old can see that the results don’t make sense. Having been embedded immutably in the Ethereum blockchain, the faulty DAO was granted stewardship over hundreds of millions of dollars by a horde of naïve investors, and then spectacularly went up in flames. The DAO turned out to be a complete and utter shambles, and it can never be fixed.

The trouble with code

Tempting as it might be, I’m not here to haul The DAO’s programmers over the technical coals. Looking at the underlying source code, it seems reasonably well architected, with good function and variable names and clear internal documentation. While none of this proves its quality, there tends to be a high correlation between how code looks and how well it functions, for the same reason that CVs with poor punctuation warn of sloppy employees. In any event I don’t doubt that The DAO’s authors are competent developers – indeed, the fact that it passed an extensive code review suggests that the basic logic was sound.

So if the problem is not the people who worked on this project, or the work they produced, what is it? It is the fact that writing large pieces of bug-free code is extremely hard, if not impossible. I’ve worked with some truly outstanding programmers in my career, the sort who can crank out code at ten times the average developer’s pace, and with ten times fewer defects. And yet, even these remarkable individuals make mistakes which lead to software malfunctions. Donald Knuth, possibly the greatest computer programmer of all time, made a famous promise to provide an exponentially increasing financial reward to each person who found a bug in his TeX typesetting software. And he’s sent out more than a few checks.

To be clear, I’m not talking about silly slip-ups with names like “off-by-one”, “uninitialized variable” and “operator precedence”. These often cause a visible failure the first time a program is run, and can be easily spotted by reviewing the local piece of code in which they reside. And I’m not even talking about security vulnerabilities like “unvalidated inputs”, “SQL injection” and “buffer overflows”, which might not show up in a program’s regular usage, but should nonetheless be front of mind for every experienced developer.

Rather, I’m talking about trickier problems like “race conditions” and “deadlocks”. These arise from conflicts between parallel processes and tend to only show up intermittently, making them hard to detect and reproduce. As a result, they can only be understood by considering a system as a whole and how its constituent parts interact. This is much harder than regular programming, because it requires developers to think beyond the individual piece of code that they’re working on. It’s not unusual for coders to spend several days “debugging” in order to nail one of these problems down. And this is precisely the sort of holistic thinking that was needed to foresee how The DAO might be vulnerable.

With all of these difficulties, one might legitimately wonder why our increasingly code-driven world isn’t crumbling around us. Luckily, most software has three critical factors working in its favor – gradual adoption, regular updates and time.

Here’s how it works: A new software product is created to answer an emerging market need. At first, the market is small, so only a few people know they need the product. And since the product is new, an even smaller number of them will actually find it. These “early adopters” are a brave and hardy bunch who enjoy living on the technological edge, despite the associated risks. So they try out the new product, see some stuff they like, ask for a bunch of things that are missing and, best of all, report any problems encountered. Every good software entrepreneur knows to shower these people with love and assistance, and thank them for every single morsel of feedback they provide. Because while it sucks to hear about a defect in your product, it sucks a lot more not to hear about it.

Ideally, within a month or less, a new version of the product is released, fixing the reported bugs and adding some requested features. The early adopters are happy and more feedback flows in, as the latest version is put through its paces, and round it goes again. As the market grows, the number of people using the product increases. And as the product steadily improves, more and more of these people tell others about it. Even better, the more people that use the product, the more likely it is that someone, somewhere, will create that precise and unlikely situation in which an obscure bug will appear. With a bit of luck, they will let you know, and you will scratch your head in disbelief, ask for more information, eventually find and resolve the problem, and breathe a sigh of relief.

With few exceptions, this is how today’s software development works, because it is the most efficient way to create outstanding products. Of course, a good software team will also develop an extensive internal test suite, to catch as many errors as possible before they reach users, and ensure that new versions don’t break anything that previously worked. But still, most of us also rely on our user bases, because there is simply no way that we can afford to imagine and test every possible way in which our products might be used. And if you think this doesn’t apply to the big guys, you couldn’t be more wrong. How many “automatic updates” have been downloaded to your Windows, Mac or Linux system in the past year? And if you’re using Chrome or Firefox, your web browser now updates itself automatically and silently, an average of once per month.

This iterative process takes considerable time, by which I mean a few years or more. Still, after a product has been in development for long enough, and its user base has grown large enough, and those users have been (unknowingly) testing it in enough different situations, something magic happens. This magic is called “maturity”, and it’s what every software product must strive to achieve. Maturity means that a product works really well for pretty much everybody that uses it, and there are no shortcuts to getting there. But if you get the timing right, your product will mature at around the time that your target market coalesces, i.e. when large numbers of customers are actually willing to stump up and pay for it. And then, as they say, verily shall ye profit.

On immutable code

So here we come to the fundamental problem with smart contracts, as demonstrated so forcefully by The DAO:

By design, smart contracts are immutably embedded in a blockchain, and so cannot be updated. This prevents them from reaching maturity.

In previous posts, I’ve discussed other problems with smart contracts, such as their effect on blockchain performance and the fact that they are less powerful than many people imagine. For these and other reasons, we have not (yet) implemented smart contracts in the MultiChain blockchain platform. But until I witnessed the failure of The DAO, I hadn’t given enough thought to a much more fundamental issue: any non-trivial smart contract is likely to contain defects that cannot be fixed.

For the modern software developer, unfixable code is an out-and-out nightmare, setting the bar higher than most are able to reach. But we do encounter this kind of code in some situations, such as the design of the microprocessors which lie at the heart of every computer and smartphone. This code, written in languages like Verilog and VHDL, defines the physical layout of a silicon chip, which cannot be changed once manufactured. In situations like these, we tend to see several characteristics: (a) the code is written in a language that was designed with safety in mind, (b) large numbers of people work on it for several years, (c) it is subject to extensive automated testing and formal verification, and (d) if the final product is shipped with a defect, the cost of a recall falls squarely on the shoulders of the party responsible (see for example the infamous Pentium bug).

It goes without saying that none of this applies to the creators of The DAO, or indeed any other smart contract. But code immutability isn’t the only challenge for smart contract developers. A number of other factors conspire to make Ethereum considerably more dangerous than most computing environments:

  • As discussed earlier, most contracts reveal their source code, to gain the trust of potential users. This makes bugs easy to find and exploit. While regular code can be fixed when a problem is found, with immutable code only attackers get to benefit.
  • As in most programming languages, one “function” (piece of code) on the blockchain is able to “call” (trigger) another, to create cascading effects. However Ethereum is unusual in enabling direct function calls between the code written by parties who do not know each other and whose interests may collide. This is a perfect recipe for adversarial and unexpected behavior.
  • As mentioned previously, if one Ethereum contract sends funds to another, the latter has the opportunity to execute some code in response. This code can be deliberately designed to cause the send operation to fail, potentially triggering all sorts of further havoc.
  • When one function calls another, and this second function calls a third, a “stack” of calls and sub-calls is created. Keeping track of this stack carries a computational cost, so Ethereum includes a “call stack limit” which restricts how deep it can go. This is fair enough. But if the limit is reached by a particular function call, the Ethereum environment silently skips that call, rather than safely terminating the entire transaction and unwinding its effects. In other words, some code in a smart contract just might not be executed, and this non-execution can be deliberately caused by triggering that contract from a sufficiently deep stack. This strikes me as a truly abominable design choice, breaking the mental model that every software developer is accustomed to. Whoever made this decision probably should be hauled over the coals, though there is thankfully now a suggestion to change it.
  • Ethereum also has a “gas limit”, which prevents abuse in public blockchains by making transactions pay for the computational resources they consume. The sender of a transaction decides how much gas they are willing to spend, and if this runs out before the transaction completes, it is safely aborted. While this is probably the best solution to a difficult problem, it can have unpleasant consequences. Some contracts turn out to need more gas than anticipated, while others cannot be run at all.
  • The public Ethereum network’s cryptocurrency allows defects in smart contracts to send real money to the wrong place, with no easy method of recovery. While Ethereum miners seem to be voting in favor of a “soft fork” to freeze the funds drained from The DAO, this is not a sustainable solution.

To summarize, compared to regular centralized computer systems, Ethereum is a much more tricky environment to code for safely. And yet its principle of immutability serves to prevent buggy software from being updated. In other words, smart contracts are software whose bugs are visible, cannot be fixed, and directly control real people’s money. This, rather obviously, is a highly toxic mix.

Proponents of Ethereum-style smart contracts in private blockchains might be tempted to celebrate The DAO’s demise, but I don’t think this response is merited. With the exception of the last two points above, all of the issues with Ethereum apply equally to permissioned blockchains, which still rely on immutable smart contracts – although in this case the immutability is guaranteed by a group of identified parties rather than anonymous miners. If you want to claim that private blockchains allow buggy smart contracts to be more easily rewound, replaced or ignored, then what you’re really saying is that smart contracts serve no purpose in these blockchains at all. Put simply, if something is not meant to be immutable, it shouldn’t be stored in a blockchain. Instead, stick to good old fashioned legal documents and centralized application logic, using the chain for: (a) immutably storing the data on which that logic depends, and (b) representing the final consensual outcome of applying it. (This design pattern has been named Simple Contracts by others.)

Nonetheless the risks in the public Ethereum network are undoubtedly worse, because badly written smart contracts can rapidly and irreversibly send large amounts of real value (in the form of cryptocurrency) to users whose identity is unknown. Indeed, is there any better way for an evil genius to make a killing than: (a) writing a smart contract which looks right and fair, (b) allowing it to run safely and consistently for several years, (c) waiting for it to accumulate a large sum of money from investors, and then (d) triggering some obscure vulnerability to siphon off those funds. While I’m not suggesting that The DAO’s failure was deliberate, it will surely inspire others to make similar “mistakes”.

If I had to summarize the factors underlying Ethereum’s design, I might use the phrase “inexperienced genius”. Genius, because I believe it is a genuinely brilliant invention, adding two key innovations to the cryptocurrency systems that came before: (a) the Ethereum Virtual Machine which executes smart contracts and its method for assigning cost to computation, and (b) the use of Patricia trees to enable compact proofs of any aspect of a blockchain’s state. And yet, inexperienced as well, because some of Ethereum’s design choices are so obviously terrible, such as the silent-but-violent call stack limit, or the ability of a payment recipient to recursively trigger the code which paid it.

None of this would be a problem if Ethereum was being treated as an experiment, worthy of exploration but with critical issues remaining to be resolved. The equivalent perhaps of bitcoin during its first couple of years, when its total market capitalization didn’t go beyond a few million dollars. Unfortunately, as a result of speculation and inflated expectations, Ethereum hasn’t been given the same opportunity to find its proverbial feet. Instead, at less than one year old, it’s carrying a billion dollars in market value. Ethereum is like a toddler being forced to cook dinner, or an economics freshman chairing the Federal Reserve. I believe it’s time to recognize that the immaturity problem of individual smart contracts also applies to Ethereum as a whole.

Ethereum’s way forward

While I’m yet to see strong use cases for smart contracts in private or permissioned blockchains, I think they probably do have a place in public chains with associated cryptocurrencies. That is, if you accept the basic premise of censorship-free financial systems, which help the financially excluded and ransomware authors in equal measure. Putting this debate aside, there is certainly technical merit in a cryptocurrency which supports arbitrary logic, of the sort that cannot be implemented on “first generation” blockchains like bitcoin. For now at least, Ethereum is the first and only convincing attempt to build such a system, with a ton of money and momentum behind it.

Nonetheless, as a developer ecosystem, Ethereum appears to be fundamentally broken. While The DAO is its most costly and high profile failure, many other contracts are suffering from similar problems. So how can Ethereum clean up its act?

  • Send a clear message that, at least for the next two years, nobody should send any funds to a smart contract unless they are happy to lose them in the name of self-education.
  • Fix some glaring issues with the Ethereum Virtual Machine (“EVM”), namely: (a) removing the call stack limit, (b) providing a way to send ether without triggering code, and (c) allowing contracts to be marked as “non-reentrant”, meaning that their functions cannot be called while they are already in the middle of something.
  • Develop a new programming language for smart contracts, which uses a more restrictive method for expressing computation that is amenable to formal proofs of correctness. Decades of research have already been invested in this field, so there is much existing work to be leveraged. (This won’t require changes to the EVM itself, since the chosen language could still be compiled into regular “bytecode”.)
  • Build up an official set of secure smart contracts and functions, which have been peer-reviewed to death and proven themselves reliable in many different situations. This is akin to the standard libraries that are available for many mature programming languages. (Though at this point it’s tempting to ask: why not just hard-code the functionality of these libraries into the EVM, and enjoy much better performance as a result? Answer: Because Ethereum was specifically designed to move away from blockchains with hard-coded feature sets. But still, it does make you wonder.)

The current option, of manually intervening in response to the failure of specific smart contracts, will not be viable on a larger scale if Ethereum is to maintain its identity as a trustless and decentralized computing platform. Indeed, some make a credible case that this single judgment-based act of governance has already destroyed Ethereum’s reputation. And we should note that The DAO’s terms and conditions explicitly state that nothing “may modify or add any additional obligations or guarantees beyond those set forth in The DAO’s code”. In other words, whoever drained The DAO was acting in accordance with its published terms, and is therefore presumably on the right side of the law.

We must also accept the possibility that, after several more years of good work, Ethereum might still prove too difficult for developers to work with safely. In that case, it will languish as a matchmaking service between anonymous scammers and their foolish marks. But that wouldn’t mean it was a waste of time – at the very least, Ethereum is a fascinating experiment, from which the blockchain community will learn a lot.

In the meantime, for users of private blockchains, I can only repeat what I’ve said before:

If your application doesn’t require smart contracts, then use a simpler blockchain architecture.

Whereas this advice was previously justified in terms of performance, it is now reinforced by the apparent difficulty of getting smart contracts right. And if you’re not sure whether your use case requires smart contracts, feel free to email us with some details, and we’ll be happy to let you know.

Please post any comments on LinkedIn.

Source: https://www.multichain.com/blog/2016/06/smart-contracts-the-dao-implosion/

Blockchain

Bitcoin in uptrend but BTC may never beat gold’s $10T market cap — ex-NYSE head

Thomas Farley, former chief operating officer of the New York Stock Exchange, is “sanguine” about recent price action.

Published

on

Bitcoin (BTC) is on a “lower left to upper right trend” and its volatility should not scare investors, the former head of the New York Stock Exchange says.

In an interview with CNBC on June 23, Thomas Farley revealed long-term convictions about Bitcoin and dismissed concerns over BTC price losses.

Bitcoin: Going up, but not “up only”

Coming a day after CNBC pundit Jim Cramer admitted that he sold his Bitcoin stash, suggesting that BTC/USD was going as low as $10,000, Farley provided some much-needed mainstream bullishness.

“With respect to the recent price moves, I’m kind of sanguine about them — Bitcoin’s a very volatile asset class, in part because it’s a new asset class,” he told the network.

“I have no doubt it’ll go up, it’ll go down over the long term — I still think it’s a lower left to upper right trend and I think we’re going to see that play out over five years.”

With mining upheaval coming from China still on everyone’s lips, popular mainstream criticism of Bitcoin’s energy usage was also swiftly cast aside as a temporary issue.

“I think this kerfuffle is an interesting conversation, but by and large I think it’ll be resolved because I think the blockchain at its core adds to its efficiency and in fact will add to energy efficiency over time,” he continued.

Less convinced on gold. vs. Bitcoin

When it comes to Bitcoin as “digital gold,” however, Farley was more conservative in his predictions.

Now firmly beneath a trillion-dollar market cap, Bitcoin must transform in order to take on store-of-value safe-havens.

Related: Joining the ranks: Bitcoin’s correlation with gold and stocks is growing

“I think the upper bound for now is gold, which is about a $10 trillion market cap,” he added.

“In order for Bitcoin to one day exceed gold, it’ll have to be more of an accepted form of currency — I’m not sure, frankly, if it ever gets there.”

Proponents argue that Bitcoin, by its very nature, faces just a matter of time before eclipsing gold thanks to the latter’s ultimately infinite supply and inability to beat Bitcoin in all aspects of “money.”

The precious metal saw a major sell-off last week after comments on policy from the United States Federal Reserve.

To beat gold, Bitcoin would need to trade at more than $533,000 with the current supply.

PlatoAi. Web3 Reimagined. Data Inteligence Amplifed.
Click here for Free Trial.

Source: https://cointelegraph.com/news/bitcoin-in-uptrend-but-btc-may-never-beat-gold-s-10t-market-cap-ex-nyse-head

Continue Reading

Blockchain

Ally Has Price Boost of 48% – Where to Buy Ally

Ally price (ALY) has seen its trading volume spike by over 436% in the…

The post Ally Has Price Boost of 48% – Where to Buy Ally appeared first on Coin Journal.

Published

on

Ally price (ALY) has seen its trading volume spike by over 436% in the last 24 hours.

Ally, a cryptocurrency-powered secure messaging platform, has seen its price spike by almost 50% in the last 24 hours.

As concerns over privacy and fear of surveillance rises, platforms such as Ally seek to fulfil the demand for trusted means of communication.

Whatsapp, the most popularly used encrypted messaging service, has recently changed its terms of service now it is owned by Facebook, leading some to fear that the social media giant is looking for new ways to monetise Whatsapps’ user data.

Where to buy Ally

eToro

eToro is one of the world’s leading multi-asset trading platforms offering some of the lowest commission and fee rates in the industry. It’s social copy trading features make it a great choice for those getting started.

Register with eToro instantly

Paybis

UK-based Crypto exchange company with FCA license. Global coverage of 180+ countries and unprecedented 48 US states. Buy & sell cryptocurrencies no matter where you are.

Register with Paybis instantly

What makes Ally a potential buy?

In the last year to date, buyers of Ally would be in profit by an enormous 4,021%. To put this in perspective, a $100 investment a year ago would have now grown to be worth thousands of dollars.

Ally claims that it has strong fundamental value, as it is “focused on providing users the most secure and decentralized online communication solution. With private P2P chats, group chats, broadcast channels, ephemeral messaging, and crypto transfers, Ally offers a multitude of features to ensure users have the richest experience possible.

As the first dApp built on Skrumble Network’s public blockchain, Ally is primed to be the go-to communication application for managing crypto communities, discussing sensitive political matters, and exploring a variety of fun and engaging topics.

If backlash against some of the more established messaging services takes off, then Ally could certainly be a project to watch over the coming years if users look to flock to a new platform.

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://coinjournal.net/news/ally-has-price-boost-of-48-where-to-buy-ally/

Continue Reading

Blockchain

Digital Assets AG Launching Stock Tokens on Solana

Digital Assets AG is launching tokenized stocks on the Solana Blockchain, which will be exclusively available though crypto exchange FTX.

The post Digital Assets AG Launching Stock Tokens on Solana appeared first on BeInCrypto.

Published

on

Digital Assets AG is launching tokenized stocks on the Solana Blockchain, which will be exclusively available though crypto exchange FTX.

Sponsored
Sponsored

Digital Assets AG (DAAG) is based in Switzerland and specializes in designing and issuing tokenized financial instruments. It is now bringing its tokenized stock infrastructure to the Solana blockchain. During this initial debut, DAAG will also launch the free-floating security tokens exclusively on crypto exchange FTX. This will allow for the risk-free, compliant transfer of tokenized stocks.

According to Brandon Williams, Corporate Development Lead at DAAG, “operating on Solana will offer a much more efficient, and cost-effective environment for the trading and utilization of tokenized stocks.”

Sponsored
Sponsored

Secondary-market stock token trading

In April, Binance became the first major exchange to offer stock tokens, in partnership with DAAG. Binance inaugurated its stock token offerings with Tesla, but later added MicroStrategy, Microsoft and Apple to its portfolio. However, these stock tokens are limited to being traded on Binance exclusively, with users only able to open or close positions. This restricts their ability to make withdrawals, or transfer cross-chain or to an external party. 

But now, DAAG has also launched free-floating tokenized stocks on Solana. This means that users can now trade these tokens between different centralized and decentralized exchanges built on the Solana blockchain. Sam Bankman-Fried, founder and CEO of FTX said that this could set a new standard and “help facilitate a paradigm shift in the underlying market structure.” 

Regulatory approval

Initially, these stock tokens will be exclusively available on crypto exchange FTX to KYC’d buyers and sellers in permitted jurisdictions. Users will be able to buy, sell and withdraw the 55 free-floating stocks in a 24/7/365 trading cycle. These will include stock tokens for Facebook, Google, Netflix, Nvidia, PayPal, Square and Tesla. Users will also be able to make transfers to secondary markets without restriction, with near-instantaneous settlement and no counterparty risk.

These free-floating tokens are regulatory-approved security tokens that can be used for tokenized stock trading. Each stock token is worth one share of stock, backed by a corresponding share in a portfolio of underlying securities. Previously, there had been some issue with Binance’s stock tokens, about whether they required a securities’ prospectus. However, in this instance the Financial Market Authority (FMA) of Liechtenstein endorsed a securities’ prospectus, making DAAG Tokenized Stocks valid in the European Economic Area (EEA).

Disclaimer

All the information contained on our website is published in good faith and for general information purposes only. Any action the reader takes upon the information found on our website is strictly at their own risk.

Share Article

Nick is a data scientist who teaches economics and communication in Budapest, Hungary, where he received a BA in Political Science and Economics and an MSc in Business Analytics from CEU. He has been writing about cryptocurrency and blockchain technology since 2018, and is intrigued by its potential economic and political usage. He can best be described as an optimistic center-left skeptic.

Follow Author

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://beincrypto.com/digital-assets-ag-launching-stock-tokens-on-solana/

Continue Reading

Blockchain

CryptoPunt Announces World’s First Effort at Truly Decentralized Gambling

The concept of gambling has undergone multiple iterations over the years. What started out as an illegal practice is now considered legal physical and online entertainment in numerous regions. The role of cryptocurrencies in this segment cannot be underestimated, as decentralized gambling is the next step in the evolution to a truly fair ecosystem.

The post CryptoPunt Announces World’s First Effort at Truly Decentralized Gambling appeared first on BeInCrypto.

Published

on

The concept of gambling has undergone multiple iterations over the years. What started out as an illegal practice is now considered legal physical and online entertainment in numerous regions.

Sponsored
Sponsored

The role of cryptocurrencies in this segment cannot be underestimated, as decentralized gambling is the next step in the evolution to a truly fair ecosystem.

Crypto gambling is on the rise

Over the past few years, there have been numerous initiatives to combine the best of online gambling and cryptocurrencies. Digital assets provide pseudonymity, improve accessibility, and are widely accepted among casino and gambling providers. It is a payment method that protects both users and providers alike, operating outside the control of banks and governments. 

Sponsored
Sponsored

Whereas the initial push was focused on centralized platforms accepting cryptocurrency payments, that is no longer the case today. Decentralization is the new norm, although it is not always straightforward to achieve. Decentralized gambling applications have gained some momentum over the years, although they mainly cater to existing cryptocurrency enthusiasts. That approach is successful, but it will do very little to convince the mainstream of this option.

That is a bit strange, as crypto gambling also introduces the concept of provable fairness. Allowing all users to verify the outcome of a wager independently creates an unprecedented sense of empowerment. Removing the need to rely on the service provider to confirm whether an outcome is both fair and crucial. The gambling industry has always had a transparency issue, but that can be resolved by innovative projects such as CryptoPunt.

The potential of CryptoPunt

As a platform focusing on gambling and gaming, CryptoPunt goes well beyond traditional crypto casinos. It will support initial games such as Blackjack, Jackpot, and CoinFlip, whilst continuously adding many more entertaining options whose outcomes are always recorded on-chain, staying true to the crypto ethos of decentralization. All bets are recorded on the Polygon Matic ecosystem, a layer-two solution for the Ethereum blockchain. 

Onboarding new users is essential in the decentralized gambling industry. Making this process as straightforward as possible is crucial, and CryptoPunt checks the right boxes. It requires no traditional registration but rather a connection through a Web3 wallet like MetaMask or Coinbase Wallet, forgoing manual deposits/withdrawals, KYC procedures, and other cumbersome aspects. On that count, this solution is far more approachable than most other gambling options on the market today.

Another crucial benefit of dealing with cryptocurrencies is how it leads to faster deposits and withdrawals. For CryptoPunt users, those transactions are instant. The platform is not responsible for the payments, as it maintains a non-custodial solution. User winnings appear directly in one’s wallet, speeding up the transactions and enhancing the control users can experience.

All of this sounds good on paper, but it wouldn’t be worth much without a convenient user experience. CryptoPunt offers a sleek gaming interface to minimize navigational delays and increase the overall gaming enjoyment. The interface looks very intuitive in its current beta version, yet more touch-ups will be introduced prior to the full release.

The PUN token’s purpose

As is courtesy in the cryptocurrency industry, new platforms will usually have a native token. For CryptoPunt, that token is $PUN, rewarding affiliate marketers with a revenue share from referrals. It also grants access to exclusive promotions and better platform rates. In the future, PUN will be useful for accessing prizes and plenty of other incentives. 

On the referral front, markets earn 0.1% of every bet made by referrals. That offer applies to games against house only. Additionally, there is a reduced house edge for PUN holders, allowing for bigger profits to be pocketed when winning. Community members will be able to increase their holdings through various community-oriented campaigns running on Telegram, social media, and so forth. There is also an in-game chat where holders must hold $PUN to deter scammers approaching them in-chat.

Given the backing by renowned VCs, including VYSYN Ventures, DutchCryptoInvestors, CryptoMarvels, ChinaPolk, BMW Capital, and others, there is a lot of attention on CryptoPunt and its PUN token, with the launch leading up to be a success. Unlike other tokens, $PUN supports both the ERC-20 and BEP-20 token standards, an industry first. With trading to go live on PancakeSwap and Uniswap, there will be broad access to the token and overall liquidity, whilst also allowing inter-chain bridging.

Closing thoughts

It is evident there are numerous ways to decentralize the gambling industry further. Rather than just focusing on the decentralized aspect of the games, CryptoPunt goes one step further by creating a sleek and massively entertaining experience, fit for the current state of the online gambling market. Its non-custodial solution for deposits and withdrawals creates a direct line of communication between players and CryptoPunt, whereas its modular features and focus on user-friendliness can make a big difference when catering to millions of players globally.

Provably fair gambling and gaming will become more commonplace over the coming years. Users need the ability to verify the outcome of wagers without relying on the service provider to share details that may or may not be accurate. The dual-pronged approach through gambling and gaming is a breath of fresh air in the decentralized gambling world, as the model caters to the needs of millions of people rather than just cryptocurrency enthusiasts.

Disclaimer

All the information contained on our website is published in good faith and for general information purposes only. Any action the reader takes upon the information found on our website is strictly at their own risk.

Share Article

The opinion of BeInCrypto staff in a single voice.

Follow Author

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://beincrypto.com/cryptopunt-to-offer-truly-decentralized-gambling/

Continue Reading
Aerospace19 mins ago

FCS Finland launches aircraft engine cooling system

Esports38 mins ago

MTG steps up alternative art in D&D Adventures in the Forgotten Realms

Aviation38 mins ago

Televangelist’s Boeing 747 Unlikely To Ever Leave Pinal Airpark

Aerospace39 mins ago

Leaf Space expands ground station network ahead of busy SpaceX ride-share mission

Esports41 mins ago

How to find MTG Adventures in the Forgotten Realms spoilers

Esports43 mins ago

VALORANT’s Yoru to receive significant buffs in the ‘next couple patches or so’

Esports52 mins ago

All Holowear and Premium Holowear in Pokémon Unite

Aerospace52 mins ago

Satellite propulsion supplier Orbion raises $20 million in Series B funding

Esports56 mins ago

Nongshim RedForce take down T1 in longest game of 2021 LCK Summer Split

Aerospace57 mins ago

SpaceX postpones second Transporter rideshare launch

Energy1 hour ago

Global Electric Motor Market Review and Forecast: ABB, Siemens, Hitachi and Toshiba Dominate

Fintech1 hour ago

5 use cases for the booming open banking market

Esports1 hour ago

How to Get Argus in WoW Shadowlands

Esports1 hour ago

Is Akshan the Next League of Legends Champion?

Esports1 hour ago

TFT Birthday Cakespirit: How to Get

Blockchain1 hour ago

Bitcoin in uptrend but BTC may never beat gold’s $10T market cap — ex-NYSE head

Quantum2 hours ago

Classical and quantum speed limits

Aerospace2 hours ago

PPG completes two production trials at Boeing paint facility

Blockchain2 hours ago

Ally Has Price Boost of 48% – Where to Buy Ally

Quantum2 hours ago

Quantum-accelerated multilevel Monte Carlo methods for stochastic differential equations in mathematical finance

HRTech2 hours ago

ONGC launches a women’s leadership development programme

Energy2 hours ago

Insights on the Hot Tub Chemicals for Residential Application Global Market to 2027 – by Product and Geography

Aerospace2 hours ago

Space Perspective performs first balloon test flight, begins ticket sales

AR/VR2 hours ago

Google and Jio collaborate on ‘ultra-affordable’ JioPhone Next

Aviation2 hours ago

Ready To Go: Icelandic Startup PLAY Operates Its First Flight

Aerospace2 hours ago

Turkish Aerospace joins Boeing premier bidder programme

Quantum2 hours ago

Hierarchy of quantum operations in manipulating coherence and entanglement

Energy2 hours ago

Společnost Solis za své měniče získala celosvětové uznání a ocenění pro nejlepší společnost fotovoltaického průmyslu pro rok 2021 v 8 zemích na 5 kontinentech

Big Data2 hours ago

In-Warehouse Machine Learning and the Modern Data Science Stack

Aviation2 hours ago

Crew On Ethiopian Airlines Flights Are Now Fully Vaccinated

Trending