gokulsan/Tezos_Essential_Reference.txt

## Tezos_Essential_Reference.txt
Tezos can instantiate any blockchain based protocol. Its seed protocol specifies a procedure for stakeholders to approve amendments to the proto- col, including amendments to the amendment procedure itself. Upgrades to Tezos are staged through a testing environment to allow stakeholders to recall potentially problematic amendments.

Tezos Transaction Management

A manager operation, such as a transaction, has 3 important parameters: counter, gas and storage limit.
The counter belongs to each account, it increases at each operation signed by that account and enforces some good intuitive properties:

In Tezos there are two kinds of accounts: implicit and originated.
The implicit accounts are the tz1 we have used up to now.
They are created with a transfer operation to the account public key hash. Originated accounts have addresses KT1 and are created with an origination operation.

A Michelson contract is semantically a pure function, mapping a pair (parameter, storage) to a pair (list_of_operations, storage). It can be seen equivalently as an object with a single method, and a single attribute.
The method updates the state (the storage), and submits operations as a side effect.

Tezos Implements a functional module based interface as a shell to the networking layer in a Blockchain.
Tezos demposes a Blockchain into the confluence of three protocols : networking, transaction and consensus protocols

A blockchain protocol is fundamentally a monadic implementation of concurrent mutations of a global state. This is achieved by defining “blocks” as operators acting on this global state. The free monoid of blocks acting on the genesis state forms a tree structure. A global, canonical, state is defined as the minimal leaf for a specified ordering.

Mining algorithms are an emergent property of the network, given the incentives for block creation.
Network shell acts as the interface between the gossip network and the protocol

Context module uses memory caching and disk storage to efficiently provide the apperance of an immutable store.
Tezos starts with a seed protocol

Generating Random Seed

Every block mined carries a hash commitment to a random number chosen by the miner. These numbers must be revealed in the next cycle under penalty of forfeiting the safety bond. This harsh penalty is meant to prevent selective whitholding of the numbers which could be sued to attack the entropy of the seed.

The origination operation may be used to create a new contract, it specifies the code of the contract and the initial content of the contract’s storage. If the handle is already the handle of an existing contract, the origination is rejected

The role of the counter is to prevent replay attacks. A transaction is only valid if the contract’s counter is equal to the transaction’s counter. Once a transaction is applied, the counter increases by one, preventing the transaction from being reused.

The transaction also includes the block hash of a recent block that the client considers valid. If an attacker ever succeeds in forcing a long reorganization with a fork, he will be unable to include such transactions, making the fork obviously fake.

The pair (account_handle, counter) is roughly the equivalent of an unspent output in Bitcoin.

To understand the economics of forks, one must first understand that monetary value is primarily a social consensus. It is tempting to equate a cryptocurrency with its rules and its ledger, but currencies are actually focal points: they draw their value from the common knowledge that they are accepted as money.

An attacker capable of changing social consensus controls the currency for all intents and purposes. The option to stick with the original protocol is widely irrelevant if the value of its tokens is annihilated by a consensus shift.

There is an even deeper problem with proof-of-work, one that is much harder to mitigate than the concentration of mining power: a misalignment of incentives between miners and stakeholders.

Shumpterian Creative Destruction

Proof-of-stake fixes these bad incentives by aligning the incentives of the miners and stakeholders: by very definition, the miners are the stakeholders, and are thus interested in keeping the transaction costs low. At the same time, because proof-of-stake mining is not based on destruction of resources, the trans- action cost (whether direct fees or indirect inflation) are entirely captured by miners, who can cover their operating costs without having to compete through wealth destruction.

Comparison of Smart Contracts in Bitcoin and Ethereum

Though Bitcoin does allow for smart contracts, most of its opcodes have been historically disabled and the possibilities are limited. Ethereum introduced a smart contract system with some critical differences: their scripting language is Turing complete and they substitute stateful accounts to Bitcoin’s unspent outputs.

Downside of Turing Complete Languages for Contracts

A downside of a Turing complete scripting language for the contracts is that the number of steps needed to execute a script is potentially unbounded, a property which is generally uncomputable.

Tezos Smart Contract Approach

Our solution is to cap the maximum number of steps that a program is allowed to run for in a single transaction. Since blocks have a size limit that caps the number of transactions per block, there is also a cap on the number of computation steps per block. This rate limitation foils CPU-usage denial-of- service attacks.
	Tezos can instantiate any blockchain based protocol. Its seed protocol specifies a procedure for stakeholders to approve amendments to the proto- col, including amendments to the amendment procedure itself. Upgrades to Tezos are staged through a testing environment to allow stakeholders to recall potentially problematic amendments.

	Tezos Transaction Management

	A manager operation, such as a transaction, has 3 important parameters: counter, gas and storage limit.
	The counter belongs to each account, it increases at each operation signed by that account and enforces some good intuitive properties:

	In Tezos there are two kinds of accounts: implicit and originated.
	The implicit accounts are the tz1 we have used up to now.
	They are created with a transfer operation to the account public key hash. Originated accounts have addresses KT1 and are created with an origination operation.

	A Michelson contract is semantically a pure function, mapping a pair (parameter, storage) to a pair (list_of_operations, storage). It can be seen equivalently as an object with a single method, and a single attribute.
	The method updates the state (the storage), and submits operations as a side effect.

	Tezos Implements a functional module based interface as a shell to the networking layer in a Blockchain.
	Tezos demposes a Blockchain into the confluence of three protocols : networking, transaction and consensus protocols

	A blockchain protocol is fundamentally a monadic implementation of concurrent mutations of a global state. This is achieved by defining “blocks” as operators acting on this global state. The free monoid of blocks acting on the genesis state forms a tree structure. A global, canonical, state is defined as the minimal leaf for a specified ordering.

	Mining algorithms are an emergent property of the network, given the incentives for block creation.
	Network shell acts as the interface between the gossip network and the protocol

	Context module uses memory caching and disk storage to efficiently provide the apperance of an immutable store.
	Tezos starts with a seed protocol

	Generating Random Seed

	Every block mined carries a hash commitment to a random number chosen by the miner. These numbers must be revealed in the next cycle under penalty of forfeiting the safety bond. This harsh penalty is meant to prevent selective whitholding of the numbers which could be sued to attack the entropy of the seed.

	The origination operation may be used to create a new contract, it specifies the code of the contract and the initial content of the contract’s storage. If the handle is already the handle of an existing contract, the origination is rejected

	The role of the counter is to prevent replay attacks. A transaction is only valid if the contract’s counter is equal to the transaction’s counter. Once a transaction is applied, the counter increases by one, preventing the transaction from being reused.

	The transaction also includes the block hash of a recent block that the client considers valid. If an attacker ever succeeds in forcing a long reorganization with a fork, he will be unable to include such transactions, making the fork obviously fake.

	The pair (account_handle, counter) is roughly the equivalent of an unspent output in Bitcoin.

	To understand the economics of forks, one must first understand that monetary value is primarily a social consensus. It is tempting to equate a cryptocurrency with its rules and its ledger, but currencies are actually focal points: they draw their value from the common knowledge that they are accepted as money.

	An attacker capable of changing social consensus controls the currency for all intents and purposes. The option to stick with the original protocol is widely irrelevant if the value of its tokens is annihilated by a consensus shift.

	There is an even deeper problem with proof-of-work, one that is much harder to mitigate than the concentration of mining power: a misalignment of incentives between miners and stakeholders.

	Shumpterian Creative Destruction

	Proof-of-stake fixes these bad incentives by aligning the incentives of the miners and stakeholders: by very definition, the miners are the stakeholders, and are thus interested in keeping the transaction costs low. At the same time, because proof-of-stake mining is not based on destruction of resources, the trans- action cost (whether direct fees or indirect inflation) are entirely captured by miners, who can cover their operating costs without having to compete through wealth destruction.

	Comparison of Smart Contracts in Bitcoin and Ethereum

	Though Bitcoin does allow for smart contracts, most of its opcodes have been historically disabled and the possibilities are limited. Ethereum introduced a smart contract system with some critical differences: their scripting language is Turing complete and they substitute stateful accounts to Bitcoin’s unspent outputs.

	Downside of Turing Complete Languages for Contracts

	A downside of a Turing complete scripting language for the contracts is that the number of steps needed to execute a script is potentially unbounded, a property which is generally uncomputable.

	Tezos Smart Contract Approach

	Our solution is to cap the maximum number of steps that a program is allowed to run for in a single transaction. Since blocks have a size limit that caps the number of transactions per block, there is also a cap on the number of computation steps per block. This rate limitation foils CPU-usage denial-of- service attacks.