Difference between revisions of "Why Your Business Should Use a Full Node to Accept Bitcoin"

From Bitcoin Wiki
Jump to: navigation, search
(First version of page)
 
(Verification and Stopping Counterfeits: added screenshot of a lightweight client showing a fake transaction)
 
(7 intermediate revisions by the same user not shown)
Line 1: Line 1:
If you're running a business that accepts bitcoin, you should use a full node wallet in your backend to accept bitcoin. Using a centralized web API like blockchain.info or blockr.io, or using a payment processor like Bitpay, BitGo or Coinbase.com has significant downsides that you should be aware of.
+
If you're running a business that accepts bitcoin, you should use a [[full node]] wallet in your backend to accept bitcoin. If using a centralized web API like blockchain.info or blockr.io instead, or using a payment processor like Bitpay, BitGo or Coinbase.com, then there are significant downsides that you should be aware of.
  
=Uptime=
+
 
 +
== Verification and Stopping Counterfeits ==
 +
 
 +
[[File:Petertodd-screenshot-mit2016-talk-gullible-lite-clients.png|500px|thumb|alt=Petertodd alt text.|An example of a lightweight client happily accepting a fake transaction. If the attacker had some hashpower then this transaction could be made to have [[confirmation|confirmations]] too.]]
 +
 
 +
This is the most important reason, although it's a little complicated to understand.
 +
 
 +
If your business took cash banknotes or gold coins as payment, you wouldn't accept them without carefully verifying that the banknotes were genuine and that the gold was real. The same is true with bitcoin, payments must be genuine or else your business might be left out of pocket.
 +
 
 +
For a bitcoin to be genuine, it must follow all the rules of the bitcoin network. Rules like:
 +
 
 +
* Nobody ever spent coins without holding the private key.
 +
* Nobody spent the same coins twice.
 +
* Nobody ever created money out of nothing (except for miners, and only according to a well-defined schedule).
 +
* Nobody violated any of the other tricky rules that are needed to keep the system in check (difficulty, proof of work, DoS protection, ...).
 +
 
 +
Only a [[full node]] under your control give you certainty that all these rules of Bitcoin are followed, which therefore checks that your incoming payments are genuine. There are small scale attacks possible where your business may be left holding fake bitcoins that have no value and disappear soon after.
 +
 
 +
But if an bad actor were ever to attack Bitcoin in this way, it would likely be an attack on the entire currency rather than your single business. So if Bitcoin is valuable to you, and you want to see it survive then it is essential to use a [[full node]] for your business' transactions, not a payment processor or lightweight wallet.
 +
 
 +
==Uptime==
  
 
When a centralized web API like blockchain.info goes down, any business payment processor relying on them will go down too.
 
When a centralized web API like blockchain.info goes down, any business payment processor relying on them will go down too.
  
A full node is part of a peer-to-peer network, which has very strong properties of resilience and uptime. The p2p network will never go down unless bitcoin itself dies.
+
A [[full node]] is part of a peer-to-peer network, which has very strong properties of resilience and uptime. The p2p network will never go down unless bitcoin itself dies.
  
Bittorrent, a similar p2p network to Bitcoin, is known for its unrivaled uptimes.
+
Bittorrent, a similar p2p network to Bitcoin, is known for its unrivaled and impressive uptimes.
  
 
[https://torrentfreak.com/oldest-torrent-is-still-being-shared-after-4419-days-160124/ World’s Oldest Torrent Is Still Being Shared After 4,419 Days]
 
[https://torrentfreak.com/oldest-torrent-is-still-being-shared-after-4419-days-160124/ World’s Oldest Torrent Is Still Being Shared After 4,419 Days]
Line 21: Line 41:
 
https://www.google.co.uk/search?q=site%3Abitcointalk.org+blockchain.info+down&oq=site%3Abitcointalk.org+blockchain.info+down
 
https://www.google.co.uk/search?q=site%3Abitcointalk.org+blockchain.info+down&oq=site%3Abitcointalk.org+blockchain.info+down
  
=Censorship Resistance=
+
==Censorship Resistance==
  
 
Often businesses use bitcoin in sectors that are frowned-upon or outright blocked. One of the very early uses of bitcoin was by Wikileaks to accept donations after Paypal and Visa imposed a worldwide blockade. Many online poker sites in the US are also blockaded by banks and payment processors and so use bitcoin instead.
 
Often businesses use bitcoin in sectors that are frowned-upon or outright blocked. One of the very early uses of bitcoin was by Wikileaks to accept donations after Paypal and Visa imposed a worldwide blockade. Many online poker sites in the US are also blockaded by banks and payment processors and so use bitcoin instead.
Line 32: Line 52:
  
 
{{Quote|text=“From Sunday June 19th 2016 we are no longer allowed to accept payments via PayPal,” states the company Blog. “PayPal has demanded that we monitor data traffic as well as all our customers’ files for illegal content. They have also asked us to provide them with detailed statistics about the files types of our customers sync and share“ “Since complying with this demand would violate German / European data protection laws (and also be morally wrong in our opinion) we have declined to comply with this demand.”}}
 
{{Quote|text=“From Sunday June 19th 2016 we are no longer allowed to accept payments via PayPal,” states the company Blog. “PayPal has demanded that we monitor data traffic as well as all our customers’ files for illegal content. They have also asked us to provide them with detailed statistics about the files types of our customers sync and share“ “Since complying with this demand would violate German / European data protection laws (and also be morally wrong in our opinion) we have declined to comply with this demand.”}}
 +
 +
On another occasion, the Bitpay payment processor shut down its business relationship with torservers.net, however the non-profit continued to accept bitcoin directly and was not affected.
 +
 +
[https://twitter.com/torservers/status/824940412007751680 Twitter announcement by torservers.net]
 +
 +
{{Quote|text=Unfortunately, it has come to our attention that your business presents a higher risk for us and therefore we will no longer be able to service you. More specifically, we have seen a number of higher risk transactions during our routine monitoring program and this has led to the decision to close your account.}}
  
 
If your business fits this profile, switching out one centralized payment method (Bank Transfer, Visa, Paypal) for another (Bitpay, Coinbase.com, blockchain.info) does nothing to stop your payments being shut down.
 
If your business fits this profile, switching out one centralized payment method (Bank Transfer, Visa, Paypal) for another (Bitpay, Coinbase.com, blockchain.info) does nothing to stop your payments being shut down.
  
A Bitcoin full node is the most censorship-resistant way of using bitcoin. By connecting directly to the p2p network, nothing can stop you from receiving or sending payments.
+
A Bitcoin [[full node]] is the most censorship-resistant way of using bitcoin. By connecting directly to the p2p network, nothing can stop you from receiving or sending payments.
  
=Privacy=
+
==Privacy==
  
 
If you use a centralized web API or payment processor, that institution will know what all your bitcoin addresses are. It will know what your business's entire cash flow and income is.
 
If you use a centralized web API or payment processor, that institution will know what all your bitcoin addresses are. It will know what your business's entire cash flow and income is.
Line 47: Line 73:
 
{{Quote|text=In 2012, KAT started accepting Bitcoin donations, and U.S. officials say records received from Coinbase revealed the Bitcoin donation address was maintained by the exchanges services. The Coinbase account was registered to Artem Vaulin located in Kharkiv, Ukraine. The affidavit reports that $72,767 USD in bitcoin had entered the owner’s donation wallet.}}
 
{{Quote|text=In 2012, KAT started accepting Bitcoin donations, and U.S. officials say records received from Coinbase revealed the Bitcoin donation address was maintained by the exchanges services. The Coinbase account was registered to Artem Vaulin located in Kharkiv, Ukraine. The affidavit reports that $72,767 USD in bitcoin had entered the owner’s donation wallet.}}
  
A bitcoin full node does not reveal to any third-party server which addresses are in it's wallet. It downloads the entire blockchain history from the p2p network, and therefore preserves your privacy in this respect.
+
A bitcoin [[full node]] does not reveal to any third-party server which addresses are in it's wallet. It downloads the entire blockchain history from the p2p network, and therefore preserves your privacy in this respect.
 
 
 
 
=Counterfeit Prevention and Consensus Verification=
 
 
 
This is probably the most important reason, although it's a little complicated to understand.
 
 
 
If your business took cash banknotes or gold coins as payment, you wouldn't accept them without carefully verifying that the banknotes were genuine and that the gold was real. The same is true with bitcoin, payments must be genuine or else your business might be left out of pocket.
 
 
 
For a bitcoin to be genuine, it must follow all the rules of the bitcoin network. Rules like:
 
 
 
* Nobody ever spent coins without holding the private key.
 
* Nobody spent the same coins twice.
 
* Nobody ever created money out of nothing (except for miners, and only according to a well-defined schedule).
 
* Nobody violated any of the other tricky rules that are needed to keep the system in check (difficulty, proof of work, DoS protection, ...).
 
 
 
Only a full node under your control give you certainty that all these rules of Bitcoin are followed, which therefore checks that your incoming payments are genuine. There are small scale attacks possible where your business may be left holding fake bitcoins that have no value and disappear soon after.
 
  
But if an bad actor were ever to attack Bitcoin in this way, it would likely be an attack on the entire currency rather than your single business. So if Bitcoin is valuable to you, and you want to see it survive then it is essential to use a full node for your business' transactions, not a payment processor or lightweight wallet.
+
==Further Reading==
  
=Further Reading=
+
[https://www.reddit.com/r/Bitcoin/comments/81h1oy/the_merchants_guide_to_accepting_bitcoin_directly/ The Merchants Guide to accepting Bitcoin directly with no intermediates through BTCPay]
  
 
[[Full_node#Economic_strength]]
 
[[Full_node#Economic_strength]]
Line 75: Line 85:
 
[https://www.reddit.com/r/Bitcoin/comments/57xy6d/why_your_business_should_use_a_full_node_to/ Reddit comments]
 
[https://www.reddit.com/r/Bitcoin/comments/57xy6d/why_your_business_should_use_a_full_node_to/ Reddit comments]
  
[[Category:Technical]]
+
[[Category:Educational]]

Latest revision as of 15:13, 16 March 2018

If you're running a business that accepts bitcoin, you should use a full node wallet in your backend to accept bitcoin. If using a centralized web API like blockchain.info or blockr.io instead, or using a payment processor like Bitpay, BitGo or Coinbase.com, then there are significant downsides that you should be aware of.


Verification and Stopping Counterfeits

Petertodd alt text.
An example of a lightweight client happily accepting a fake transaction. If the attacker had some hashpower then this transaction could be made to have confirmations too.

This is the most important reason, although it's a little complicated to understand.

If your business took cash banknotes or gold coins as payment, you wouldn't accept them without carefully verifying that the banknotes were genuine and that the gold was real. The same is true with bitcoin, payments must be genuine or else your business might be left out of pocket.

For a bitcoin to be genuine, it must follow all the rules of the bitcoin network. Rules like:

  • Nobody ever spent coins without holding the private key.
  • Nobody spent the same coins twice.
  • Nobody ever created money out of nothing (except for miners, and only according to a well-defined schedule).
  • Nobody violated any of the other tricky rules that are needed to keep the system in check (difficulty, proof of work, DoS protection, ...).

Only a full node under your control give you certainty that all these rules of Bitcoin are followed, which therefore checks that your incoming payments are genuine. There are small scale attacks possible where your business may be left holding fake bitcoins that have no value and disappear soon after.

But if an bad actor were ever to attack Bitcoin in this way, it would likely be an attack on the entire currency rather than your single business. So if Bitcoin is valuable to you, and you want to see it survive then it is essential to use a full node for your business' transactions, not a payment processor or lightweight wallet.

Uptime

When a centralized web API like blockchain.info goes down, any business payment processor relying on them will go down too.

A full node is part of a peer-to-peer network, which has very strong properties of resilience and uptime. The p2p network will never go down unless bitcoin itself dies.

Bittorrent, a similar p2p network to Bitcoin, is known for its unrivaled and impressive uptimes.

World’s Oldest Torrent Is Still Being Shared After 4,419 Days

The torrent file of The Matrix ASCII was created more than 12 years ago (4,419 days) on December 20, 2003. Even though the original site is no longer online, it still has 8 active seeders at the time of writing.
There are also people actively downloading the file, most likely after they found a copy of the release on one of the torrent sites where it remains available. To the best of our knowledge, this means that The Matrix ASCII is the oldest torrent that’s still being actively shared..

On the other hand, web APIs like blockchain.info that have a single point of failure go down all the time.

https://www.reddit.com/r/Bitcoin/search?q=blockchain.info+down&restrict_sr=on

https://www.google.co.uk/search?q=site%3Abitcointalk.org+blockchain.info+down&oq=site%3Abitcointalk.org+blockchain.info+down

Censorship Resistance

Often businesses use bitcoin in sectors that are frowned-upon or outright blocked. One of the very early uses of bitcoin was by Wikileaks to accept donations after Paypal and Visa imposed a worldwide blockade. Many online poker sites in the US are also blockaded by banks and payment processors and so use bitcoin instead.

In one case a payment processor attempted to strongarm a business into spying on their users.

Seafile accepts bitcoin after Paypal shenanigans

Seafile is a high-performance, fully-encrypted, open source file storage and syncing solution. The service competes directly with Dropbox and other major cloud service providers.
“From Sunday June 19th 2016 we are no longer allowed to accept payments via PayPal,” states the company Blog. “PayPal has demanded that we monitor data traffic as well as all our customers’ files for illegal content. They have also asked us to provide them with detailed statistics about the files types of our customers sync and share“ “Since complying with this demand would violate German / European data protection laws (and also be morally wrong in our opinion) we have declined to comply with this demand.”

On another occasion, the Bitpay payment processor shut down its business relationship with torservers.net, however the non-profit continued to accept bitcoin directly and was not affected.

Twitter announcement by torservers.net

Unfortunately, it has come to our attention that your business presents a higher risk for us and therefore we will no longer be able to service you. More specifically, we have seen a number of higher risk transactions during our routine monitoring program and this has led to the decision to close your account.

If your business fits this profile, switching out one centralized payment method (Bank Transfer, Visa, Paypal) for another (Bitpay, Coinbase.com, blockchain.info) does nothing to stop your payments being shut down.

A Bitcoin full node is the most censorship-resistant way of using bitcoin. By connecting directly to the p2p network, nothing can stop you from receiving or sending payments.

Privacy

If you use a centralized web API or payment processor, that institution will know what all your bitcoin addresses are. It will know what your business's entire cash flow and income is.

On July 20th 2016, the owner of the torrent site KickAssTorrents was arrested and the website shut down. One contributory factor was that the owner accepted bitcoin donations using Coinbase.com's payment processor.

Coinbase Helps FBI Shut Down KickAssTorrents

In 2012, KAT started accepting Bitcoin donations, and U.S. officials say records received from Coinbase revealed the Bitcoin donation address was maintained by the exchanges services. The Coinbase account was registered to Artem Vaulin located in Kharkiv, Ukraine. The affidavit reports that $72,767 USD in bitcoin had entered the owner’s donation wallet.

A bitcoin full node does not reveal to any third-party server which addresses are in it's wallet. It downloads the entire blockchain history from the p2p network, and therefore preserves your privacy in this respect.

Further Reading

The Merchants Guide to accepting Bitcoin directly with no intermediates through BTCPay

Full_node#Economic_strength

Full Validation

Reddit comments