The Pillar and the Pond

Written by beautyon_ | Published 2017/04/21
Tech Story Tags: bitcoin | blockchain | azteco | cathedral-and-bazaar | pillar-and-pool

TLDRvia the TL;DR App

The Bitcoin Murmuration.

A big Bitcoin exchange has just run into a problem with their bank making it impossible for customers to deposit or withdraw dollars. This sabotage is a symptom of a bigger problem; the design of Bitcoin businesses. TL;DR: “A swarm of bees is safer and more dangerous outside the hive. It is better to have 5,000,000 users using CoPay than it is to have 5,000,000 users in Coinbase.”

What is “The Pillar and Pond Problem”? Inspired by Eric Raymond’s famous piece, It is a way of describing the advantages and disadvantages of different business architectures in Bitcoin. For example, if you have 5,000,000 users in a database with user names, passwords, KYC/AML documents, fiat balances and Bitcoin balances as MySQL entries, you are in a Pillar Configuration:

  1. All the users are siloed in your pillar.
  2. You have one bank interface to serve your customers
  3. You are on one hardware platform, at one network address
  4. There is one place to attack the owners.

In the Pond Configuration, things are very different…

  1. All the users are not on a single platform.
  2. Each user has their own bank relationship.
  3. Every user is on their own hardware, at many network addresses.
  4. There is no single place to attack the users.
  5. A business owner has no long term user care, custody or contract.

A column is immovable. It stands very tall. It is heavy — made of stone. It is a landmark, a target that can be seen for miles. A column can be fenced off and pulled down or blown up with dynamite. A pond on the other hand, is flat, and s_pread out_ over miles. A missile shot into it makes a splash that is quickly covered over and smoothed by water. A pond cannot be pulled down or blown up; it is already at the lowest possible level in its constituents; the free molecule — the single user.

The pillar is inherently weak.

Here are examples of services that are more or less in Pond Configurations:

  1. Bitsquare https://bitsquare.io/
  2. LocalBitcoins https://localbitcoins.com/
  3. HodlHodl https://hodlhodl.com/
  4. Samurai Wallet https://samouraiwallet.com/
  5. Bisq https://bisq.network/
  6. Electrum https://electrum.org/
  7. And others https://bitcoin.org/en/choose-your-wallet

Very flat. Nothing to knock down. Each molecule is a Bitcoin user. Find a particular one and stop her. If you can.

But what about Azteco? Is it a Pond or Pillar service?

It’s neither.

Azteco doesn't hold customer funds and doesn't have users. It is simply a way to distribute Bitcoin. There are no user accounts. As soon as you redeem your voucher, you have no relationship with Azteco…until you buy another voucher. And another. It’s a rolling, disposable service, that doesn't tie you down, restrict you or require your long term trust.

By removing “signed up” users, companies that are structured as flat Ponds have many advantages. They have a smaller attack surface, less burdensome administrative headaches, and are more agile. There is less to explain, keep tidy and manage; the cost of all of these problems is pushed on to other services, which if they are designed correctly, make the problems disappear entirely from the user network.

Pillars have big SPOF (Single Point of Failure) problems that they can’t make go away; they are built into the assumptions and business model.

This diagram could be superimposed on any “Pillar Bitcoin” company from Coinbase down. That company is under a very nasty attack, where all of its user data has been unconstitutionally demanded. That attack is possible because Coinbase is a Pillar; a single, “SPOF” monolithic service.

Completely redundant system without SPOFs.(Note: Assumes Generator and Grid sources are each rated at N, Each UPS is rated at N and “A/C” and “Electrical” are in themselves completely fault tolerant systems

This is a much better architecture. The system is entirely redundant, made of separate pieces. If any box (user or service) fails, the system carries on without interruption. In BitTorrent, it’s even better, and remember, this has been enough to prevent anyone stopping the vast majority from sharing files for over a decade, despite needing central search portals to find magnet links that hash the torrent locations.

Not a BitTorrent diagram, but very pretty.

And in a fully decentralized network, The picture is even better, because there is no 2D line (underlying single owner services) that you can traverse and attack. An ideal Bitcoin would be like a Murmuration of Starlings. All the birds are connected by a protocol bound in nature, that cannot be changed. You can shoot a shotgun at it, and a hole will appear where the shot enters. It cannot be stopped, only observed. And marvelled at.

It’s a sky pond.

They Can’t Win

Eventually, the bank problem will be gone forever, but in order to get there, you can’t use a Pillar to break the system; only a pond can dissolve it. New pieces of software like Bitsquare and the very interesting HodlHodl by Roman Snitko are the future in the long term. Eventually a very resilient system of many redundant parts, more resilient than the BitTorrent ecosystem will emerge from the market, and everyone will live with it, and embrace it, just like they embrace the Internet, and accept it as a fact of life.

Finally, it should be clear to everyone that the ideal, if you are running a Bitcoin business, is to have total control over every part of your service, and to never rely on any third party for anything but the basics, like operating systems, ISPs and hardware. Any service you can get from an API, like Bitcoin network connectivity should be done “in house”, with your own software instances and equipment. As soon as you rely on someone else, the Pillarization Process begins.

Here are some off the cuff rules of thumb. Flatten and spread out. Reduce complexity. Absolutely reject all identity other than what Bitcoin provides by default. Think UNIX. Reduce footprint. Increase speed. Make it disposable. Conform to the nature of the tools; completely reject “Bitcoin Skeuomorphism — making services that mimic banks and other institutions.

And then…we win.

If you like the content and feel so obliged to send some love via BTC donations you can do so at the address below:↴

Published by HackerNoon on 2017/04/21
ABOUTHow hackers start their afternoons. We publish tech stories and build publishing software.

READEntirely free library read by hundreds of millions to learn anything about any technology.

WRITEHackerNoon elevates quality technology writing far and wide across the interwebs.

PARTNERHackerNoon works directly with tech companies to place ads by content relevancy