Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Blockchain Basic

Blockchain Basic

Sota Watanabe

July 15, 2018
Tweet

More Decks by Sota Watanabe

Other Decks in Technology

Transcript

  1. 2 Quick Introduction ໊લɿ౉ล૑ଠ େֶɿܚጯٛक़େֶܦࡁֶ෦3೥ ৬ྺɿChronicled SoftBank Internship (6Χ݄ʣ NPO.ETIC

    Internship (3Χ݄ʣ ϩγΞΠϯλʔϯγοϓʢ1.5Χ݄ʣ ΠϯυӦۀ׆ಈ (1.5Χ݄ʣ ࠷ۙɿTwitterͱMediumʹྗΛೖΕ͍ͯ·͢ɻ Twitter (@souta__watanabe) ɹɹɹ ̍൪ڵຯ͋Δͷ͸ϒϩοΫνΣʔϯ͕ ɹɹɹ ࣾձʹ΋ͨΒ͢ΠϯύΫτΛϚΫϩతʹ ɹɹɹ ݟΔ͜ͱͰ͢ɻ
  2. 5 Contents 1 ατγɾφΧϞτͱͦΕ͔Β Blockchainͱͦͷࢥ૝ 2 Ͳ͏ಈ͍͍ͯΔͷ͔ʁ Blockchainͷ࢓૊Έ 3 ੈؒͷظ଴஋ͱͷဃ཭

    Blockchainͷ໰୊఺ 4 ৭ʑͳBlockchain Ϗδωεతͳࢹ఺ 5 ࠷ޙʹ ݸਓతͳࢥ૝ͱ࣮ݱ͍ͨࣾ͠ձ P7 P54 P21 P81 P92
  3. 8 “The technology most likely to change the next decade

    of business is not the social web, big data, the cloud, robotics, or even artificial intelligence. It’s the blockchain, the technology behind digital currencies like Bitcoin.” )BSWBSE#VTJOFTT3FWJFX%PO5BQTDPU “The progress of mankind is marked by the rise of new technologies and the human ingenuity they unlock. In distributed ledger technology, we may be witnessing one of those potential explosions of creative potential that catalyse exceptional levels of innovation. The technology could prove to have the capacity to deliver a new kind of trust to a wide range of services. As we have seen open data revolutionise the citizen’s relationship with the state, so may the visibility in these technologies reform our financial markets, supply chains, consumer and business-to-business services, and publicly-held registers.”  ɹɹɹɹɹɹɹɹɹɹɹɹɹɹɹɹɹɹɹ"SFQPSUCZUIF6,(PWFSONFOU$IJFG4DJFOUJGJD"EWJTFS Blockchain΁ͷظ଴
  4. 13 Genesis Blockͷҙຯ https://blockchain.info/ 04ffff001d0104455468652054696d65732030332f4a616e2f323030392043 68616e63656c6c6f72206f6e206272696e6b206f66207365636f6e6420626 1696c6f757420666f722062616e6b73 (σίʔυࡁΈ) �� EThe

    Times 03/Jan/2009 Chancellor on brink of second bailout for banks “Chancellor on brink of second bailout for banks” ࡒ຿େਉ2౓໨ͷۜߦٹࡁ͔ʁ ͱ͍͏จࣈ͕ຒΊࠐ·Ε͍ͯΔɻ
  5. 14 27 transaction 24 block 20 transactions 17 nodes 17

    attacker 16 chain 15 blocks 14 network 14 honest 14 Hash 13 Block 11 proof-of-work 10 probability 9 timestamp 9 system 9 Owner 9 CPU 8 trusted 8 only 8 next 7 proof 7 majority 7 coins 7 chain, 7 Prev 7 Nonce 7 Merkle 6 working 6 work6 6 value 6 time 6 sender 6 number 6 node 6 make 6 long 6 double 6 block, 6 Nodes 6 Key 6.trust # Word 47 times transaction(s) 30 times block(,) 28times honest + trust(ed) 23 times chain(,) 23 times node(,) 5IJTQBQFSJTBCPVUlUSVTUzBOElUSBOTBDUJPOz 14 ϓϩάϥϛϯάݴޠPythonΛ༻͍࿦จΛ෼ੳ͠·ͨ͠ɻ෼ੳͷ݁Ռɺ࿦จதʹʮtrustʯͱʮtransactionʯ͕ଟ༻͞Ε͍ͯΔͱ͍͏݁ՌΛಘ·ͨ͠ɻ # Word ατγɾφΧϞτͷ࿦จ෼ੳ
  6. 16 Bitoin͕ղ͖͔ͨͬͨ໰͍ʢԾઆʣ A peer to peer version of electronic cash

    would allow online payments to be sent directly from one party to another without going through a financial institution. ࣗ෼ͷ͓ۚΛ୭ʹ΋ࢭΊΒΕΔ͜ͱແࣗ͘෼ͷ޷͖ͳλΠϛϯάͰ ૹۚ͢Δʹ͸Ͳ͏͢Ε͹Α͍͔ʁ
  7. 19 ᶃվ͟Μ͕ۃΊͯࠔ೉Ͱ͋Δɻ ᶄ࣮࣭θϩɾμ΢ϯλΠϜͳγεςϜɻ ᶅ҆ՁʹߏஙՄೳɻ ᶃʹؔͯ͠͸ͳͥվ͟Μ͕ࠔ೉͔ͱ͍͏ͱ2ͭͷಛ௃͕͋Δɻ ̍ͭ໨͸ʮ෼ࢄతʯͳ؅ཧγεςϜ͔ͩΒɻ ͜ͷΑ͏ͳγεςϜΛҰൠతʹP2Pͱ͍͏ɻʢPeer to Peer) ैདྷɺ͓ۚͷऔҾ͸ۜߦͳͲͷୈ̏ऀػ͕ؔ஥հ͢Δ͜ͱʹ

    Αͬͯ৴པੑΛ୲อ͖͕ͯͨ͠ɺ ϒϩοΫνΣʔϯͰ͸શͯͷ ཤྺΛօͰڞ༗͢Δ͜ͱʹΑͬͯ৴པੑΛ୲อ͍ͯ͠Δɻ ͜ΕʹΑͬͯୈ̏ऀػ͕ؔඞཁͳ͘ͳΔͱҰൠతʹݴΘΕ͍ͯΔɻ ̎ͭ໨͸ʮ֤औҾཤྺ͸ॱ൪ʹϒϩοΫʹऩೲ͞Ε͍֤ͯͯϒϩο Ϋ͕௚લͷϒϩοΫͱͭͳ͕͍ͬͯΔͨΊʹվ͟Μ͕ࠔ೉ʯ ྫ͑͹ɺσʔλ͕อ؅͞Ε͍ͯΔ̍ͭͷϒϩοΫͷσʔλΛվ͟Μ ͢ΔͱɺνΣʔϯͰܨ͕͍ͬͯΔલɺޙΖͷσʔλͱͷ੔߹ੑ͕औΕ ͳ͘ͳΔͷͰվ͟ΜΛͨ͠Βॠ࣌ʹݟ͔ͭΔɻ ϒϩοΫνΣʔϯͷಛ௃ ֵ৽ੑ ܦࡁ׆ಈͷج൫͸औҾͩͬͨɻྺ࢙తʹ͍··ͰऔҾ૬खͷ৴པੑ ͷ୲อͷҝʹඇৗʹଟ͘ͷίετ͕͔͔͖ͬͯͨɻ ৴པੑ୲อͷ࢓૊Έͷྫ ɾ֨෇͚ɺձܭ؂ࠪ ɹɾެূਓ ɹɾొه ɹɾதԝۜߦ ͔͠͠ɺϒϩοΫνΣʔϯΛར༻͢Δ͜ͱͰࢀՃऀಉ͕࢜ ૬ޓʹڠྗɾ؂ࢹ͢ΔγεςϜ͕੒ΓཱͭͷͰ ࣾձγεςϜΛҡ࣋͢ΔҝʹଟେͳίετΛ෷ͬͯ ߏங͖ͯͨ͠தԝूݖతͳୈ3ऀػ͕ؔෆཁʹͳΔɻ ϒϩοΫνΣʔϯͱ͸ʁ
  8. 20 3छྨͷϒϩοΫνΣʔϯ ύϒϦοΫ ίϯιʔγΞϜ ϓϥΠϕʔτ ϚΠχϯάϊʔυ ੍ݶͳ͠ ੍ݶՄೳ ੍ݶՄೳ ϒϩοΫνΣʔϯӾཡ

    Φʔϓϯ ੍ݶՄೳ ੍ݶՄೳ ϒϩοΫੜ੒ PoW΍PoSͳͲͷ೉қ ౓ͷߴ͍࢓૊Έ͕ඞཁ ೚ҙʢϒϩοΫੜ੒ओମ Λݶఆͤ͞Δ৔߹͕ଟ ͍ʣ ೚ҙ ϚΠχϯάใु ඞਢ ೚ҙ ೚ҙ Ϣʔεέʔε Bitcoin, EthereumͳͲ αϓϥΠνΣʔϯͳͲ اۀ಺σʔλ؅ཧͳͲ ͜ͷ3ͭͷ෼͚ํʹ͸ॾઆ͋ΔͷͰɺ஫ҙ͕ඞཁɻ
  9. 26 Former block’s hash value Former block’s hash value Former

    block’s hash value Nonce Nonce Nonce Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction •  A block is including transactions in a certain period of time. •  A block is including the former block’s hash value. Therefore, it looks like a chain structure. •  The hash is recomputed for each value until a hash containing the required number of zero bits is found. (set by “the difficulty”) The Structure of Blocks
  10. 31 ϒϩοΫͷߏ଄ Former block’s hash value Nonce Transaction Transaction Transaction

    Transaction 1MόΠτͷϒϩοΫʹ4000݅ఔ౓ͷ औҾΛ࣮ݱͰ͖Δɻ ϒϩοΫͷੜ੒ใु͕12.5BTCʢ1200ສԁʣ ͱ͢Δͱɺ1݅͋ͨΓͷऔҾʹ3,000ԁ ͔͔͍ͬͯΔ͜ͱʹͳΔɻ ʢߴ͍Ͱ͢ΑͶwʁʣ ແ͔Βੜ͡Δ௨՟ൃߦӹͰิర͍ͯ͠Δɻ
  11. 33 Former block’s hash value Former block’s hash value Nonce

    Nonce Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction νΣʔϯͷͭͳ͗ํ SHA256ͱ͍͏ϋογϡؔ਺Λ༻͍͍ͯΔɻ ౉ล૑ଠ 010100001001010010010110………… 256ܻͷ0 or 1 SHA256 ౉ล૑ଠ 010100001001010010010110………. 256ܻͷ0 or 1 1111010100100100100111000………. 256ܻͷ0 or 1 ಉ͡஋ ☓ ෆՄٯ ࣮ࡍʹ͸μϒϧϋογϡ ͕࢖ΘΕΔɻ
  12. 34 ☓ ☓ ˎReference : Nonce 34 •  The nonce

    in a Bitcoin is a 32bit (4byte). •  In terms of Bitcoin, the difficulty of finding “nonce” is set. It is about 10 minutes. Hash Hash Hash Nonce : A Nance : C Nance : B Other data : bbbbbbbbbbbb Other data : bbbbbbbbbbbb Other data : bbbbbbbbbbbb 21333508fdw9cujsighwehɾɾɾ 000000000000000012ec2h93ɾɾ 0000012dwvf344brthhh64ɾɾɾ 10 min
  13. 35 ϋογϡ஋ 35 01010100101011110111010000010111111………… 0 or 1ͷ256ܻ 16ਐ๏ͷ64ܻ (͜Ε͸ϒϩοΫ#1000000ͷϋογϡ஋) 000000000003ba27aa200b1cecaad478d2b00432346c3f1f3986da1afd33e506

    ͜ͷ0ͷ਺Λ “difficulty” ͱݴ͏ɻ ௚ײతʹ෼͔Δ͕ɺઌ಄͔Β࿈ଓ͢Δ0ͷ਺͕ଟ͘ͳΕ͹ͳΔ΄Ͳ ৚݅Λຬͨ͢஋Λݟ͚ͭΔͷ͕೉͘͠ͳΔɻ ฏۉ10෼Ͱݟ͔ͭΔΑ͏ʹࣗಈௐ੔͞ΕΔɻͳͷͰɺϚΠχϯάύϫʔ ͕େ͖͘ͳΕ͹ͳΔ΄Ͳdifficulty΋ߴ͘ͳΔɻ #1000000ͷϒϩοΫɻ0͕11ݸɻ #100ͷϒϩοΫɻ0͕8ݸɻ #500000ͷϒϩοΫɻ0͕18ݸɻ ౰࣌͸ଟ෼0͕9 or 10ݸҎ্Ͱ͋Ε͹ΦοέΠɻ
  14. 36 ʲ+αʳϋογϡ஋Λ୳ٻͯ͠ΈΔ 36 1. ଱িಥੑ X Y H(X) = H(Y)

    ୭΋ɹX != Y ͔ͭ H(X) = H(Y)ͱͳΔΑ͏ͳ XͱYͷ૊Έ߹ΘͤΛݟ͚ͭΔ͜ͱ͕Ͱ͖ͳ͍ɻ ͜͜Ͱॏཁͳͷ͸ɺXͱYͷ૊Έ߹Θ͕ͤʮଘࡏ͠ͳ͍ʯ Ͱ͸ͳ͘ɺʮ୭΋ݟ͚ͭΔ͜ͱ͕Ͱ͖ͳ͍ʯͱ͍ͯ͠Δ఺ Possible Inputs Possible outputs Πϯϓοτ૯ྔ͕Ξ΢τϓοτ૯ྔΑΓ΋େ͖͍ ͨΊিಥ͸ଘࡏ͢Δɻ
  15. 39 ిࢠॺ໊ͷϓϩηε ૹ৴ऀ ड৴ऀ ࢀߟɿϒϩοΫνΣʔϯͷ࢓૊Έͱཧ࿦ ᶃΩʔϖΞͷ࡞੒ ૹ৴ऀͷൿີ伴 ૹ৴ऀͷެ։伴 ૹ৴ऀͷެ։伴 ᶄެ։伴ͷૹ෇

    ᶅిࢠॺ໊ͷ࡞੒ ిࢠσʔλʢݪຊʣ ిࢠॺ໊ ݪຊ→ిࢠॺ໊͸ૹ৴ऀͷ ൿີ伴Λݩʹ࡞੒͞ΕΔɻ ᶆిࢠσʔλͱిࢠॺ໊ͷૹ෇ ిࢠσʔλʢݪຊʣ ిࢠॺ໊ ᶇిࢠॺ໊ͷ෮߸Խ ిࢠσʔλʢ෮߸݁Ռʣ ᶈൺֱ ϒϩοΫνΣʔϯͰ͸֤τϥϯβΫγϣϯʹ1ͭͣͭిࢠॺ໊ͱެ։伴͕෇༩͞Ε͍ͯΔɻ
  16. 44 ৭ʑͳίϯηϯαεΞϧΰϦζϜ PoW (Proof of Work) PoS (Proof of Stake)

    PoI (Proof of Importance) PBFT ατγφΧϞτʹΑΓߟҊ͞ΕΔɻ ϏοτίΠϯϒϩοΫνΣʔϯͰ࠾༻͞Ε͍ͯΔɻ ϚΠχϯάʹΑΔܭࢉྔʹΑΔূ໌͕͞Ε͍ͯΔɻ 51%໰୊ɺϑΝΠͳΓςΟʔ໰୊ɺੑೳݶքɺ ϒϩοΫͷ༰ྔͳͲͷ໰୊఺Λ๊͍͑ͯΔɻ ΠʔαϦΞϜϒϩοΫνΣʔϯʹಋೖ༧ఆ ʢ2018/02/13ݱࡏʣɻ௨՟ͷอ༗ྔʹΑͬͯϒϩο Ϋ࡞੒ऀͷ༏ઌ౓͕ҟͳΔɻݫີʹ͍͏ͱɺอ༗௨ ՟ྔʹैͬͯϋογϡͷܭࢉ೉қ౓͕มΘΔɻ PoWΑΓ΋ిྗফඅ͕গͳ͘ͳΔͷ͕ྑ͍ॴɻ HyperLedger FablicͰ࠾༻͞Ε͍ͯΔɻϑΝΠφϦ ςΟʔͷෆ࣮֬ੑΛղফ͍ͯ͠ΔɻࢀՃऀͷҰਓ͕ ࣗ෼ΛؚΉશࢀՃऀʹཁٻΛૹΓɺͦͷཁٻͷղ౴ ݁Ռ͔Βଟ਺ܾʹΑͬͯϒϩοΫΛ֬ఆͤ͞Δɻ ίϯιʔγΞϜ޲͚ɻϊʔυ͕εέʔϧ͠ͳ͍ɻ NEMͰ࠾༻͞Ε͍ͯΔɻ௨՟อ༗ྔ͚ͩͰ͸ͳ͘ औҾྔͱऔҾͨ͠ਓ΋౿·͑ͯใु͕༩͑ΒΕΔ ࢓૊ΈɻωϜͷωοτϫʔΫΛ࢖͏ਓʹݖݶ͕ ༩͑ΒΕΔ࢓૊Έɻ
  17. 45 PoW (Workflow Systemᶃ) Participants : A, B, C, D,

    E, F, G Miners : α, β, γ, δ, ε A B C D E F α β γ ε δ Blockchain
  18. 46 PoW (Workflow Systemᶄ) A send 10BTC to C, C

    send 5BTC to F, E send 8BTC to D A→C, C→F, E→ D A B C D E F α β γ ε δ
  19. 47 PoW (Workflow Systemᶅ) A B C D E F

    α β γ ε δ The transactions are broadcasted to participants and miners at the same time. Transactions like A→C, C→F, E→D are also the same.
  20. 48 PoW (Workflow Systemᶆ) A B C D E F

    α β γ ε δ The miners which received transactions confirm signatures and start to find Nance.
  21. 49 PoW (Workflow Systemᶇ) A B C D E F

    α β γ ε δ The one who finds Nonce will make a new block and broadcast it to all participants and miners.
  22. 50 PoW (Workflow Systemᶈ) A B C D E F

    α β γ ε δ Miners which received the block confirm it and add it to own blocks.
  23. 51 τϥϯβΫγϣϯͷ࢓૊Έ Source : mastering bitcoin Alice͕Bobʹ0.0150BTCૹۚ͢ΔࡍʹɺTo Bob : 0.0150ɺTo

    Alice : 0.0845BTC Λૹ͍ۚͯ͠ΔɻAlice to Alice΋ϒϩοΫνΣʔϯ্ʹهࡌ͞ΕΔɻ ΞυϨε͕Ұॹ
  24. 55 ݱ࣌఺Ͱͷ Blockchainͷ ໰୊఺ͱղܾࡦ 1 ϑΝΠφϦςΟʔ ࣮࣌ؒੑ 2 ZK-SNARKS͸͋Δ͚Ͳ ൿಗੑ

    3 Segwit ͱ Segwit2X εέʔϥϏϦςΟʔ 4 ͦͷଞ 5 ΤΫϦϓε߈ܸͱ͔γϏϧ߈ܸͱ͔ ΠϯηϯςΟϒઃܭɾΨόφϯε
  25. 56 ࣮࣌ؒੑ 1.  ΫϥΠΞϯτɾαʔόʔܕͷγεςϜͷ༻ʹɺҰ੪ʹಉ͡৘ใΛ ڞ༗͢Δ͜ͱ͕Ͱ͖ͳ͍ɻP2PωοτϫʔΫ্Ͱϝοηʔδͷૹ৴ Λ܁Γฦ͚ͩ͢Ͱ͸ɺ৘ใ͕શϊʔυʹߦ͖౉Δ·Ͱʹ͕࣌ؒ ֻ͔ͬͯ͠·͏ɻ 2.  ϑΝΠφϦςΟʔཱ͕֬͠ͳ͍ɻʢPoSͳͲͰ͸վળ͕ݟΒΕΔɻʣ ͨͩ͠ɺͦΕΛߟྀͯ͠ϏδωεϞσϧΛߟ͑Δ͜ͱ͸༗ޮɻ

    ϦΞϧλΠϜੑΛ΋ͱΊΒΕΔྖҬͰ͸·ͩԠ༻͕೉͍͠ɻ A→B A→BͷऔҾ͸ԿΛ΋ͬͯ׬ྃͨ͠ʢ΋͏෴Δ͜ͱ͸ͳ͍ʣͱ͍͑Δͷ͔ʁ 6ݸϒϩοΫ͕ଓ͚͹վ͟Μ͸ʢ΄΅ʣෆՄೳͱݴΘΕ͍ͯΔ͕ͦΕ·Ͱʹ60෼΋·ͨͳ͚Ε͹͍͚ͳ͍ʁ
  26. 57 ˎReference : Finality Invalid Invalid • The majority decision

    is represented by the longest chain, which has the greatest proof-of-work effort invested in it. • Nodes always consider the longest chain to be the correct one and will keep working on extending it. Satoshi Nakamoto (2008)
  27. 59 ൿಗੑ 2छྨͷൿಗੑ 1. ʮΞΧ΢ϯτʯͱʮݸਓʯ͕ʢ͋͑ͯʣඥ෇͍͍ͯͳ͍͜ͱʹΑͬͯى͜Δ໰୊ɻ MoneroͳͲ͸ҋऔҾʹ࢖ΘΕΔ͜ͱ͕͓͓͍Β͍͠ɻΠΪϦεͷݚڀػؔʹΑΔͱ ϏοτίΠϯͷҋऔҾ͸શମͷ0.61%ʹ͔͠ຬͨͳ͍ɻ “According to the study,

    the total percentage of identified “dirty bitcoins” going into conversion services was relatively small. Only 0.61 percent of the money entering conversion services during the four years analyzed were verifiably from illicit sources, with the highest proportion (1.07 percent) seen in 2013. 2. Aͱ͍͏ΞΧ΢ϯτ͔ΒBͱ͍͏ΞΧ΢ϯτʹ͍͘Βૹ͍ۚͯ͠Δ͔͕෼͔ͬͯ ͠·͏ͱ͍͏໰୊ɻͦΕࣗମʹ໰୊͸ͳ͍͕ɺૹֹۚΛ஌ΒΕͨ͘ͳ͍Ϣʔβʔ΋ ͍ΔɻʢZK-SNARKsͳͲͷղܾࡦ΋͋Δɻʣ Source : https://coincenter.org/link/a-new-study-finds-less-than-1-of-bitcoin-transactions-to-exchanges-are-illicit?utm_ content=bufferad122&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer
  28. 66 εέʔϥϏϦςΟʔղܾࡦ ΦϑνΣʔϯͷղܾࡦ͸ɺLightning Network΍Raiden NetworkͳͲͰఏڙ͞Ε͍ͯΔɻ ΦϑνΣʔϯͱ͸ͳʹ͔ʁ ຊདྷϒϩοΫνΣʔϯ্ͷऔҾΛϒϩοΫνΣʔϯ֎Ͱߦ͏͜ͱɻ 2ͭͷύλʔϯ Մೳੑ 1.

    औҾॴ͕ఏڙ͢ΔΦϑνΣʔϯɻ͋͘·ͰϓϥοτϑΥʔϜʹ ґଘ͍ͯ͠Δɻ 2. Lightning Network΍Raiden NetworkɻΦϯνΣʔϯ্͔Β νϟωϧΛ։͖ɺͦͷνϟωϧ಺Ͱૹड৴Λߦ͏ɻ ΦϯνΣʔϯͰͷඵؒ7τϥϯβΫγϣϯͷ ʢΠʔαϦΞϜ͸13औҾʣΛΦϑνΣʔϯΛհ͢Δ ͜ͱͰτϥϯβΫγϣϯੑೳΛܶతʹ޲্ͤ͞Δɻ Lightning NetworkͱRaiden Network Lightning Network͸ϏοτίΠϯϒϩοΫνΣʔϯͰɺ Raiden Network͸ΠʔαϦΞϜϒϩοΫνΣʔϯͰ ࣮૷͞Εʢ͍ͯʣΔɻ
  29. 67 4. ΠϯηϯςΟϒઃܭɾΨόφϯε ˎ Reference :51% Attack 67 @Berkeley Blockchain

    Usually, a Miner joins a pool which is a team of other miners and cooperates to mine. Miner’s share •  Currently, there are no pools which get more than 50%. •  Miners are mainly from China and the other countries which the electronic bills are so low.
  30. 72 BitcoinҎ֎ͷϒϩοΫνΣʔϯج൫ ໊শ ։ൃݩ ಺༰ Bitcoin Core Bitcoin Foundation ϏοτίΠϯͷϦϑΝϨϯε࣮૷ɻ

    Ethereum Ethereum Foundation DappsͷߏஙϓϥοτϑΥʔϜɻSolidityͰίϯτϥΫτ Λهࡌ͢Δɻ HyperLedger Fablic HyperLedger Project Linux FoundationओಋɻύϑΥʔϚϯε΍৴པੑͷ޲্ ͷҝʹಠࣗͷίϯηϯαεΞϧΰϦζϜ΍ϝϯόγοϓ ؅ཧΛߦ͏ɻ Corda R3 CEV R3ओಋͷۚ༥ػؔ޲͚ͷ෼ࢄܕ୆ாɻ Chain Open Standard 1 Chain.inc ୹࣌ؒͰऔҾΛ׬ྃͤ͞ΔΞϧΰϦζϜͳͲΤϯλʔϓ ϥΠζ޲͚ɻ mijin ςοΫϏϡʔϩ ϓϥΠϕʔτܕϒϩοΫνΣʔϯͰτϥϯβΫγϣϯॲ ཧͷߴ଎ԽΛ࣮ݱɻࢀՃऀ͸ڐՄ੍ͰPoSΛ࠾༻ɻ Orb1 Orb ϑΝΠφϦςΟʔʹڧΈɻதԝूݖͱ෼ࢄܕΛ༥߹ͤ͞ ͍ͯΔɻ Eris Eris Industries Ethreum͔Β೿ੜɻύʔϛογϣϯܕͷϒϩοΫνΣʔ ϯΛࢤ޲ɻ
  31. Bitcoinͱͷҧ͍ 75 ΠʔαϦΞϜʹ͸Externally Owned AccountʢEOAʣͱίϯτϥΫτΞΧ΢ϯτ͕͋Δɻ ΞΧ΢ϯτɺGasɺEVMʢEthereum Virtual Machineʣɺstatuesͱ͍͏֓೦͕༗Δɻ ΞΧ΢ϯτ Gas

    EVM Status ΠʔαϦΞϜͷτϥϯβΫγϣϯΛ࣮ߦ͢ΔͨΊͷख਺ྉɻ ΠʔαϦΞϜωοτϫʔΫ্Ͱಈ͘Ծ૝ϚγϯɻEVM্Ͱ͸solidityΛEVM༻ͷόΠτίʔυʹ ௚ͯ͠τϥϯβΫγϣϯΛ࣮ߦ͍ͯ͠Δɻ τϥϯβΫγϣϯ͕ى͖Δલ͸ɺ࢝·Γͷঢ়ଶʢgenesis state)Ͱ͋Γɺ৽ͨͳτϥϯβΫγϣϯͷੜ੒͝ͱʹঢ়ଶ1ɺঢ়ଶ2ɺɺɺͱมԽ͍ͯ͘͠ͷͰ͢
  32. 76 ΞΧ΢ϯτ ΠʔαϦΞϜʹ͸Externally Owned AccountʢEOAʣͱίϯτϥΫτΞΧ΢ϯτ͕͋Δɻ EOA Externally Owned Account͸Ϣʔβʔͷൿີ伴ʹ Αͬͯ؅ཧ͞ΕͨΞΧ΢ϯτɻ

    Ϣʔβʔ͸EOAΛ௨ͯ͠ΠʔαϦΞϜ ωοτϫʔΫͱ௨৴Λߦ͏ɻίʔυ͸࣋ͨͳ͍ɻ ίϯτϥΫτΞΧ΢ϯτ ίϯτϥΫτΞΧ΢ϯτ͸ίʔυΛ࣋ͭɻίϯτϥΫτ ΞΧ΢ϯτ͸Ϣʔβʔ͕࣋ͭ͜ͱ͸Ͱ͖ͣɺΠʔαϦΞϜ ্Ͱ؅ཧ͞ΕΔɻ EOA͸ൿີ伴Λ࢖ͬͯॺ໊Λ͢Δ͜ͱͰɺτϥϯβΫγϣϯΛ࡞੒͢Δ͜ͱ͕Ͱ͖ΔɻEOA͔ΒEOAɺEOA͔Β ίϯτϥΫτʹτϥϯβΫγϣϯΛ࡞Δ͜ͱ͕Ͱ͖ΔɻEOA͔ΒEOA΁ͷτϥϯβΫγϣϯ͸ૹۚͳͲϏοτίΠϯ ͱಉ༷ɻEOA͔ΒίϯτϥΫτΞΧ΢ϯτ΁ͷτϥϯβΫγϣϯ͸ίϯτϥΫτ͕΋͍ͬͯΔίʔυΛ࣮ߦ͢Δɻ ʢ஫ʣίϯτϥΫτΞΧ΢ϯτࣗମ͸τϥϯβΫγϣϯΛ࡞Δ͜ͱ͕Ͱ͖ͳ͍ɻͨͩ͠ɺEOA͔Βͷࢦࣔ࣍ୈͰ ίϯτϥΫτΞΧ΢ϯτ͔ΒίϯτϥΫτΞΧ΢ϯτʹτϥϯβΫγϣϯΛੜ੒͢Δ͜ͱ͕Ͱ͖Δɻ
  33. 79 ZK-SNARKs ZK-SNARKs͸ΠʔαϦΞϜϒϩοΫνΣʔϯͷ ϓϥΠόγʔͷ໰୊ʹؔ͢Δղܾࡦ ZK-SNARKsͱ͸ͳʹ͔ʁ Ͳ͏͍͏࣌ʹ࢖͑Δͷ͔ʁ εϚʔτίϯτϥΫτ্ͷݸਓ৘ใ΍ اۀൿີΛϒϩοΫνΣʔϯ্ͷެ։͢Δ͚Ͳ ൿಗԽ͍ͨ࣌͠ ChronicledͷMediLedgerʢҩྍܥʣϓϩδΣΫτ

    Ͱ͸ɺෳ਺ͷ੡ༀձࣾͷαϓϥΠνΣʔϯΛ ϒϩοΫνΣʔϯͰ؅ཧ͢Δ࣌ʹɺ ڝ߹ʹରͯ͠ༀ඼ͷ಺༰ΛൿಗԽ͍ͨ͠ͷͰ ͜ͷٕज़Λ࢖͍ͬͯΔɻ Կ͕Ͱ͖ΔΑ͏ʹͳΔͷ͔ʁ ҰൠతͳτϥϯβΫγϣϯͰ͸ɺA͔ΒBʹ10BTCͱ͍͏ Α͏ͳτϥϯβΫγϣϯͷ಺༰Λୈࡾऀ͕֬ೝ͢Δ͜ͱ͕ Ͱ͖ΔɻZK-SNARKsΛ࢖͏ͱɺૹ৴ऀɺड৴ऀɺૹֹۚۚ ΛൿಗԽ͢Δ͜ͱ͕Ͱ͖Δ͕ɺτϥϯβΫγϣϯʹෆਖ਼͕ ͳ͍͜ͱ͸ୈࡾऀ͕֬ೝͰ͖Δɻ Zero Knowledge – Succinct Non-interactive ARgument of Knowledge ৄࡉ͸͜ͷهࣄ͕Φεεϝ https://zoom-blc.com/what-is-ethereum-zk-snark
  34. 80 ZK-SNARKs ͳΜ͔ڭ͑ͯ΋ΒͬͨSNARKsͷྺ࢙ The first construction of a zero knowledge

    succinct argument dates back to a paper of Joe Kilian from 1992. After that, a paper of Silvio Micali in 1994 showed how to make the proof non-interactive via cryptographic hash functions. While Micali did not study zero knowledge in his paper, the community views his construction, in hindsight, as the first "zk-SNARK”. However modern constructions of zk-SNARKs did not arise until 20 years later. In a paper with co-authors and I in 2012, we coined the term "SNARK" and "zk-SNARK" and showed various alternative constructions to the classical constructions (our motivations mostly had to do with the cryptographic assumptions inherent to constructing SNARKs). Research on SNARKs since 2012 has boomed, with works studying either theoretical aspects (existence, asymptotics) or practical ones (efficient implementations, reducing high-level program representations to low-level representations "understood" by these proof systems). If I had two name two landmark papers that are direct precursors of most of today's practical SNARKs would be a paper with co-authors and I in 2013 that built a system for proving executions of arbitrary programs, and a paper of other colleagues that introduced many useful techniques still used today. But that was 4 years ago, and since then much has happened and zk-SNARK history is still being written, as every year we see new approaches and techniques that improve both our theoretical and practical understanding of them.
  35. 82 Market Cap As of mid December 2016… The market

    cap of all cryptocurrencies totaled $15B As of mid December 2017… The market cap of all cryptocurrencies totaled $500B An increase of 3200%. Source : CB Insights
  36. 83

  37. 91 ϒϩοΫνΣʔϯͬͯඞཁͳΜ͚ͩͬʁ σʔλϕʔε͸ඞཁ͔ʁ ϒϩοΫ νΣʔϯ ͡Όͳ͘ ͯྑ͘ͳ ͍ʁ Y N

    ෳ਺ͷεςʔΫϗϧ μʔ͕ؔΘΔ͔ʁ Y ͦΕΒͷεςʔΫϗϧμʔ͸৴པ Ͱ͖Δ͔ʁ Y ͦΕΒΛ౷߹͢Δ͜ͱ͸Ͱ͖Δ ͔ʁ Y N N N ୈࡾऀΛ৴པͰ͖Δ͔ʁ Y N ϒϩοΫνΣʔϯΛ ಋೖ͢Δίετͱޮ ༻͸ׂʹ͋͏͔ʁ N Y ϒϩοΫ νΣʔϯ ࢖͓͏ ͔ʂ ࣗ෼͕ϒϩοΫ νΣʔϯ্ͷه࿥Λ ॻ͍ͨΓಡΜͩΓΛ ͢Δඞཁੑ͸͋Δ ͔ʁ ࢀߟɿDistributed.comɹBlockcahin Capital LLC Y N ίϯηϯαε͸ෳ਺ ͷϓϨʔϠʹΑͬͯ ܾఆ͞ΕΔʁ Y N ޮ཰ΑΓ΋ɺվ͟Μ ଱ੑ΍ΞΫηαϏϦ ςΟʔͷํ͕େࣄʁ N ίϯιʔγ ΞϜ ϒϩοΫ νΣʔϯʂ ϓϥΠϕʔ τ ϒϩοΫ νΣʔϯʂ ύϒϦοΫ ϒϩοΫ νΣʔϯʂ Y
  38. 97 97 1760ʙ1830 1865ʙ1900 1990ʙ2000 ᶃGPT=Steam Engine ᶄGPT=Internal Combustion Engine

    ᶅGPT=Internet GPT(General Purpose Technologyʣ )JTUPSZPG5FDIOPMPHJFT 2029 2045 ᶆGPT=AI 1st industrial revolution 2nd industrial revolution 3rd industrial revolution 4th Industrial revolution 2045 Singularity ᶇBlockchain Here ੈքͷσʔλྔ͸1೥Ͱ1.4ഒͣͭ૿͍͑ͯΔɻ͜Ε͸2೥Ͱ΄΅2ഒʹͳΔͱ͍͏͜ͱɻ AIͷ̍൪ಘҙͳͷ͸Πϯϓοτͷ࠷దԽɻσʔλ͕ੈͷதʹे෼ʹ͋ͬͨΒ ΋ͬͱ΋࠷దԽ͞Εͨࣾձ͸ͳΜͩΖ͏͔ʁ ෼ࢄԽ͔ͭࣗ཯తͳࣾձʹͳΔͱࢥ͏ɻ ͦͯͦ͠Ε͸ɺϒϩοΫνΣʔϯͷ࠷΋ಘҙͱ͢Δͱ͜ΖͰ͸ͳ͍ͩΖ͏͔ʁ
  39. 101 ʲ+αʳDecentralizationͱWeb3 Currently, companies like Google, Facebook, and Amazon dominate

    the internet. They offer many free and cheap services because they are able to collect valuable data on their users, and find ways to monetize that data. As users of the modern internet, one is never too sure where their demographic and personal data is being used. Through the implementation of decentralization, also called Web3, data doesn’t have to be stored in centralized systems. Data can be verified independently and content creators are valued by the quality of their work.