Real Bitcoin Double Spends Are Hard, Looking Into Alleged Issue

Published at: Dec. 22, 2019

Bitcoin Cash (BCH) focused firm BitcoinBCH has potentially misled the public into believing that Bitcoin (BTC) double spends can be easily carried out.

On Dec. 18, BitcoinBCH’s CEO Hayden Otto published a video on YouTube allegedly showing how TravelByBit’s Bitcoin Point of Sale (PoS) wallet misleads merchants into believing that they were paid before a transaction is actually concluded. Hayden Otto also runs a competing BCH-based PoS solution called Hula.

Countering the claims

In a recent interview, a TravelByBit representative said that merchants using its service are insured against fraud and will not lose money. The firm’s founder Caleb Yeoh also said that — if many users begin to exploit their system’s design — the firm will drop support for Bitcoin and Bitcoin Cash on-chain transactions in its PoS solution.

Overall, Yeoh admitted that accepting on-chain payments in in-store settings is not practical and requires a compromise between security and convenience. The main reason is that no one will want to wait in line for at least 10 minutes for a transaction to be confirmed before being able to get hold of the product. While accepting unconfirmed transactions is a major security concern, it is the only way to accept Bitcoin or Bitcoin Cash on-chain payments in time-sensitive situations.

Yeoh points to the Lightning Network as a potential solution, noting that it can address the impracticality of waiting for transaction finality when paying with cryptocurrency inside physical stores. He told Cointelegraph that Lightning Network transactions also constitute a significant portion of the payments facilitated by its PoS system:

“If we remove the online travel booking transactions and you look at the number of transactions purely from a retail perspective we, over 47% of transactions around Australia the last 3 months was done over the lightning network.”

Instead of pointing out that unconfirmed transactions — as the name suggests — are not final, the video suggests that the wallet’s flawed design is, in fact, a Bitcoin security flaw that enables double-spends. Hayden Otto, the person in the video, says merchants should “immediately cease accepting Bitcoin and switch to Bitcoin Cash.”

Using the replace by fee Bitcoin feature

In the demonstration, Otto first sends the lowest transaction possible — 1sat/byte — to another wallet that he controls with replace-by-fee (RBF) enabled. As Bitcoin users will know, a transaction with such a low fee will be confirmed and placed in a block on Bitcoin’s blockchain after a notoriously long time, often multiple hours or even over a day if the network is severely congested.

RBF is a function that allows a user to replace a non-final — not yet confirmed on the blockchain — transaction with another one which has a higher fee. This Bitcoin functionality raised criticism because it enables unconfirmed transaction double spends.

Still, those concerns have no basis given that unconfirmed transactions can be double-spent without this feature as well. An in-depth analysis of how this can be done was published in 2015 by the author of the BitTorrent protocol, Bram Cohen. Overall, unconfirmed transactions are not final and should not be accepted as payment.

Bitcoin claims unconfirmed transaction irreversibility

BCH-centric website Bitcoin.com recently reported that Bitcoin Cash removed the RBF feature from its code. The website also claims that — as a consequence — Bitcoin Cash unconfirmed transactions are not safe to use. The article reads:

“The Bitcoin Cash community believes that zero-confirmation transactions are reliable and secure.”

After sending the first low-fee RBF-on transaction in the video, Otto performs a Bitcoin payment to a merchant in a store without RBF. At this point, the merchant’s wallet shows a big green checkmark on the screen, misleading the user into believing that she received the payment.

Because of the wallet’s user interface, the merchant cedes the goods when the transaction is still unconfirmed. Right after, Otto bumps (increases) the transaction fee on the first transaction, ensuring that all the funds are moved to another address he controls before they are sent to the merchant.

This way, the funds do not reach the merchant who accepted the unconfirmed transaction, while Otto ends up holding both the good and the Bitcoin — minus the transaction fees.

Later in the video, Otto says that the ability to reverse Bitcoin transactions is dangerous. This statement erroneously implies that a transaction was reversed. The transaction that was changed was unconfirmed — which makes it non-final — and the protocol acted as it was intended to.

Otto is also suggesting in the video that “Bitcoin Cash fixes this,” referring to unconfirmed transaction double-spends. While Cointelegraph was unable to definitely establish that BCH unconfirmed transactions are also non-final, Yeoh suggested so:

“Nothing stops BCH miners from replacing transactions right now, as it's more of a gentlemen's agreement, but once in a while "RBF-like" double spends do happen on the BCH network. It's important to note RBF is not a protocol consensus feature, it's a node policy that any Bitcoin or Bitcoin cash miner can choose to run and it does not affect the reliability of payments.”

Furthermore, Yeoh pointed out that the hashrate distribution gap between Bitcoin and Bitcoin Cash also influences the security, and plays in Bitcoin’s favour. Overall, he also said that tribalism in cryptocurrency hinders innovation in the space:

“Honestly, I think the community should focus on helping build and grow wider adoption across the various ecosystems and not focus on running attacks on each other’s bitcoin projects. It creates a tit for tat scenario which erodes the entire space as a whole. People should be free to transaction in any crypto they want and help contribute to the ecosystems as builders.”

This is not the first time that the Bitcoin Cash community is accused of spreading misleading information. As Cointelegraph reported in April last year, Bitcoin.com was accused of misleading buyers into purchasing Bitcoin Cash instead of Bitcoin by presenting the crypto assets in an unusual way.

Tags
Adoption
Blockchain
Bitcoin
Altcoin
Cryptocurrencies
Bitcoin Cash
Proof-Of-Stake
Security
Related Posts
Pioneering hardware wallet brings enhanced staking to cold storage
Twelve months ago, the total value of cryptocurrency locked in staking programs was barely more than $1 billion. Today, there is $58 billion locked in decentralized finance, or DeFi. The adoption of DeFi has been a sea change that’s helped push the crypto industry into the mainstream, but it’s hardly the only one. Mainstream institutions including MicroStrategy and Tesla have poured billions of dollars into Bitcoin — and some have been buying the dip — while nonfungible tokens have evolved from CryptoKitties and CypherPunks to an artistic medium pulling in millions in bids for a new generation of digital artists …
Technology / June 8, 2021
PayPal to start letting US customers pay in Bitcoin at global merchants
Online payments giant PayPal will start to accept cryptocurrency as a medium of exchange at its millions of global merchants, the firm’s president and CEO revealed on Tuesday ahead of a formal announcement. News broke regarding PayPal’s rumored decision to accept cryptocurrencies early on March 30. Later in the day, the firm’s CEO, Dan Schulman, confirmed to Reuters that the rumors were true and that an official statement would be released imminently. The new system is expected to feature a crypto checkout service where users can pay for goods and services at approved vendors using their stored coins. The system …
Adoption / March 30, 2021
Largest Swiss Online Retailer Digitec Galaxus Now Accepts Cryptocurrencies
Leading Swiss online retailer Digitec Galaxus has announced that it will now accept cryptocurrencies, according to a press release published on March 19. Per the announcement, the shop is now accepting Bitcoin (BTC), Bitcoin Cash (BCH), Bitcoin SV (BSV), Ethereum (ETH), Ripple (XRP), Binance Coin (BNB), Litecoin (LTC), Tron (TRX), NEO (NEO) and OmiseGO (OMG) for purchases worth over CHF 200 (about $200). The release further claims that the shop hosts around 2.7 million products, ranging from wheat beer to gaming PCs. The new payment method was reportedly jointly developed as part of a pilot project with Swiss payment processor …
Adoption / March 19, 2019
Australia's crypto ecosystem 2020: The spark for a DeFi explosion
For a country of 25 million people, Australia punches well above its weight both economically and in the world of blockchain. Australians have long been enthusiastic adopters of new technology, from cellphones to smart homes, so it’s little surprise they’ve embraced crypto too. Chainalysis ranks Australia 20th out of 154 countries surveyed this year for its "The 2020 Geography of Cryptocurrency Report," citing favorable regulation that legitimizes the technology as driving "steady growth in adoption." Australian crypto educator Alex Saunders, founder of Nuggets News, said the Australian crypto community encompasses everyone from hardcore Bitcoin (BTC) maximalists to well-known Ethereans and …
Adoption / Dec. 20, 2020
Ethereum white paper predicted DeFi but missed NFTs: Vitalik Buterin
Rounding up the last decade, Ethereum co-founder Vitalik Buterin revisited his predictions made over the years, showcasing a knack for being right about abstract ideas than on-production software development issues. Buterin started the Twitter thread by addressing his article dated Jul. 23, 2013 in which he highlighted Bitcoin's (BTC) key benefits — internationality and censorship resistance. Buterin foresaw Bitcoin’s potential in protecting the citizens’ buying power in countries such as Iran, Argentina, China and Africa. However, Buterin also noticed a rise in stablecoin adoption as he saw Argentinian businesses operating in Tether (USDT). He backed up his decade-old ideas around …
Adoption / Jan. 2, 2022