https://mirror.xyz/8R5V5ShCLAoJEJYX_YZekXIcpgoBzsedTwtVSxPBd9I

Digital States: Consensus or war

*Cyberpunks begat [Cryptophunks](https://www.cryptophunks.com/) and there’s a war in the metaverse.*

Blockchains are many things, but ultimately they are virtual digital computers that operate on consensus. There is a **digital state**, rules to transition that state, and a consensus mechanism to agree that the state transition rules are being followed correctly. In the ruleset, public-key cryptography is used to enforce an accounting system, namely: only the holder of a secret private-key can spend the funds associated with a public-key by digitally signing a transaction message with said private-key. (Here, “key” means a randomly generated, arbitrary 256-bit binary number, where the public number and private number are inextricably linked through an agreed-upon [algorithm](https://en.wikipedia.org/wiki/Elliptic_Curve_Digital_Signature_Algorithm).) When signing a transaction and broadcasting it to the network of miners, a network fee and miner tip are typically included to (1) disincentivize spamming the network with unnecessary transactions and (2) prioritize one’s transaction among the pool of miners. The miners are responsible for batching these transactions into a file of some size specified by the ruleset (a “block” or “blockfile”), enforcing the rules that govern the transition of the digital state, performing the consensus algorithm, and finally pointing each block to the signature of the block that came before it, forming a chain. Hence: blockchain. As a reward for all this labor, the miners are incentivized with a reward of funds native to the chain.

Simple enough? It might take a few more encounters for these concepts to jell in one’s mind, but the main point is that all the details beyond the above formulation are up-for-grabs. Engineering decisions, such as: What size should the blocks be? What should be the consensus mechanism? Should the ruleset allow for arbitrary [“Turing-complete”](https://en.wikipedia.org/wiki/Turing_completeness) computation, or is that too costly and onerous? And economic ones: What fee mechanism do we impose for users and what reward do we give to miners? Shall the total supply of funds be unlimited or not?

Enter the blockchain wars.

There have been many wars over the years. The first, and most notable was the fight in the Bitcoin community over how many transactions should be included in a block in order to accommodate more transactions and users. Ultimately in August of 2017, the chain split into what is now known as Bitcoin and Bitcoin Cash. One side of the debate started mining new blocks with a new ruleset and the other did not. Each pool of miners mutually did not recognize the other. Like a cell splitting in two: a new chain was born. Also like a cell splitting in two, it is ambiguous which one came first. Users prior to the fork now had spendable funds on both chains. The Internal Revenue Service of the United States later clarified that the funds on the newly created chain [qualified as income](https://www.irs.gov/pub/irs-drop/rr-19-24.pdf). Today, there are now [several forks](https://en.wikipedia.org/wiki/List_of_bitcoin_forks) of both Bitcoin and Bitcoin Cash. The technical details in each of these squabbles are not important, but the lesson is clear: **united, you have consensus, divided you’ve forked.**

## Digital State

Blockchains have digital *states*, in both senses of the word. They have a binary, digital, state encoded by the blockfiles sitting on hard drives around the world. They also are a state in the political sense. There are rules, a mechanism to enforce those rules, and a currency that is collected & distributed for the general welfare of the state and as payment for goods and services. You already know these as laws, the judiciary, and taxation. But, of course, it doesn’t stop there: contracts become smart contracts. Property rights, including [real estate in the metaverse](https://fortune.com/2021/12/03/metaverse-interest-spikes-digital-real-estate-price

Hardware wallets are not the silver bullet for scammers

The vast majority of attacks in Web3 are of the phishing/social engineering variety, not a rootkit worm getting full access to the contents of your hard disk & memory.

Here are a few instances of real-world attacks:

In the following case, the author enters his seed phrase into a form claiming to be an airdrop for Olympus DAO after seeing a notification pop up on Discord:

[https://theirrelevantinvestor.com/2021/11/13/i-got-scammed/](https://theirrelevantinvestor.com/2021/11/13/i-got-scammed/)

Engaging in a screen sharing session with a scammer:

[https://twitter.com/sohrobf/status/1430478533306982408](https://twitter.com/sohrobf/status/1430478533306982408)

Signing a malicious API message:

[https://twitter.com/apiopensea/status/1469335642207367168](https://twitter.com/apiopensea/status/1469335642207367168)

A scammer claims an NFT trading contract doesn’t work, send the victim to a phishing site that looks similar:

[https://twitter.com/squanchita/status/1469194863115583489](https://twitter.com/squanchita/status/1469194863115583489)

A scammer reaches out in a private direct message on Discord, pretending to be an admin:

[https://twitter.com/iamdarkdoritang/status/1468364734286032897](https://twitter.com/iamdarkdoritang/status/1468364734286032897)

Spend a few minutes on any of these threads, and you will inevitably find a well-intentioned reply of the sort: “Next time, use a hardware wallet.”

The problem is that hardware wallets provide a false sense of security. Let us take each case one-by-one:

1. Hardware wallets can have seed phrases, you can still be coaxed into revealing this phrase to a scammer.
2. Perhaps a hardware wallet would stop an immediate screen share divulging your private keys with a single click, but why wouldn’t a scammer convince the victim that their hardware wallet is broken in some way & coax the private keys out through an equivalent method? The victim, in this case, clicked straight through an explicit warning that his private keys would be revealed. A similar scenario could be sending a picture of your hardware wallet with the seed phrase on the display, which is possible in many wallets, or exporting the keys to a Metamask wallet.
3. The last three cases are all the same: Signing a malicious message can happen on any wallet, hardware wallet or not. If you are on a phishing website, there is no hardware wallet that can save you. [Recently, frontends like BadgerDAO have been hacked](https://badger.com/technical-post-mortem), so even double-checking the browser URL isn’t an airtight solution.  If you click ‘confirm’ without thoroughly vetting what contract you are interacting with, it’s still game over.

In all of these cases & many more, a hardware wallet is just a stumbling block for a scammer. We can anticipate more scammers becoming familiar with hardware wallets like Ledger & Trezor, and coaching victims into revealing their seed phrases. Hardware wallets may be able to protect from malware & side-channel attacks, but it’s important to note: **these attacks are extremely sophisticated and rare in 2021**. Malware nowadays is often of the ‘[cryptolocker](https://en.wikipedia.org/wiki/CryptoLocker)’ variety, encrypting your disk and requesting a ransom to decrypt it, not memory-scraping Metamask while unlocked (where we have over 25 years of operating system know-how to stop such an attack from succeeding), or reading the encrypted Metamask database on disk (which would be useless without a password). At the time of this writing, it is not clear to me that there has ever been an operating system root-level attack in the wild to which an ordinary in-browser Metamask wallet would be vulnerable and a hardware wallet would not. Side-channel attacks require the resources of a nation-state, not your average Discord/Telegram scammer. On the other hand, we have at least one case of customer mailing addresses being leaked in the [Ledger hack of 2020](https://cointelegraph.com/news/ledger-data-leak-a-s