# Notes on Bitcoin Whitepaper (Page 1)

## The Problem with Traditional Online Payments

*   **Dependence on Trust:** All online commerce relies on trusted third-party financial institutions (like banks or PayPal) to process payments.
*   **Reversibility Issues:** This trust-based model allows for transaction reversals (chargebacks). This creates higher transaction costs as merchants must protect themselves from fraud.
*   **Inherent Weakness:** The system is fundamentally based on trust, not on mathematical proof, which limits its ability to handle certain types of transactions and protect against all fraud.

## The Proposed Solution: A Peer-to-Peer Electronic Cash System

The paper proposes a system for electronic transactions that does not rely on trust. Instead, it uses **cryptographic proof**.

In [None]:
## How It Works

1.  **Public Transactions:** All transactions are announced publicly to a network of peers.
2.  **Proof-of-Work:** To validate and timestamp transactions, the network uses a Proof-of-Work system. Participants (miners) must solve a difficult computational puzzle. This is what the `assignment3.js` script simulates.
3.  **The Blockchain:** The solution to the puzzle (the proof-of-work) is added to a block of transactions, which is then cryptographically linked to the previous block. This forms a secure chain that is very difficult to change.
4.  **Security through Majority Power:** The longest chain serves as the official record. As long as the majority of the network's computing power is controlled by honest nodes, they will consistently outpace any attackers, making the network secure.

## Page 2: Transactions

### How a Transaction Works

1.  **What is a Coin?**
    A "coin" is defined as a **chain of digital signatures**. It's like the history of endorsements on a paper check.

2.  **Transferring Ownership:**
    To send a coin to Alice, the current owner signs a hash of the previous transaction and Alice's public key. This new transaction is added to the end of the coin's chain.

3.  **Verification:**
    Anyone can check the chain of signatures to verify the coin's legitimate history.

### The Big Problem: Double-Spending

Since it's all digital, what stops the owner from sending the same coin to two different people (e.g., Alice and Bob)? This is the **double-spending problem**.

### The Solution (Introduction)

To prevent double-spending, the network needs a way to agree on a **single, shared history of transactions**. The paper proposes:

1.  All transactions must be **publicly announced**.
2.  The network needs a system to agree on the **order** in which transactions were received.

This sets the stage for the Timestamp Server and Proof-of-Work.

## Page 3: Timestamp Server

### The Core Idea

The solution to the double-spending problem starts with a **timestamp server**. Its purpose is to create a decentralized, agreed-upon history of transactions.

### How it Works

1.  **Hashing a Block:** A block of transactions is collected, and a **hash** (a unique digital fingerprint) of the entire block is calculated.

2.  **Public Broadcasting:** This hash is then widely published, proving that the data in the block existed at that specific time.

### Creating the Chain

This is the key concept of the blockchain:

*   Each new timestamp **must include the previous timestamp's hash** in its own data before being hashed.
*   This creates a **chain**, where each new link cryptographically depends on the one before it.

This structure makes the history incredibly secure. To change an old block, an attacker would have to redo the work for that block and all subsequent blocks in the chain.

## Section 4: Proof-of-Work

*   **The Goal:** To implement the timestamp server in a peer-to-peer way, requiring the hash of a block to start with a certain number of zero bits.
*   **The Method:** Miners must repeatedly hash the block header with a different "nonce" until they find a hash that meets the difficulty target. This is what `assignment3.js` simulates.
*   **Difficulty Adjustment:** The difficulty is automatically adjusted by the network to keep the average time between new blocks at around 10 minutes.

## Section 5: The Network

The step-by-step process of how the network operates:
1.  New transactions are broadcast to all nodes.
2.  Each node collects new transactions into a block.
3.  Each node works on finding the difficult proof-of-work for its block.
4.  When a node finds a proof-of-work, it broadcasts the block to all other nodes.
5.  Nodes only accept the block if all transactions in it are valid and not already spent.
6.  Nodes show they accept the block by starting to work on the *next* block, using the hash of the accepted block as the previous hash. The longest chain is always considered the correct one.

## Section 6: Incentive

*   **Why Participate?**
    1.  **Block Reward:** The creator of a block gets a reward of new coins.
    2.  **Transaction Fees:** The creator also gets to keep any transaction fees from the transactions within that block.
*   **The Result:** This encourages honest participation and secures the network.

## Section 7: Reclaiming Disk Space

*   **The Problem:** Storing every transaction forever would make the blockchain enormous.
*   **The Solution (Merkle Trees):** Once transactions are buried deep enough, they can be discarded. Only the block header, containing the **root hash** of a Merkle Tree of all the block's transactions, needs to be kept.

## Section 8: Simplified Payment Verification (SPV)

*   **The Concept:** It's possible to verify payments without running a full network node.
*   **How it Works:** An SPV client downloads only the **block headers**. It can then ask the network for the Merkle branch that links a specific transaction to its place in a block, providing cryptographic proof of its existence.

## Section 9: Combining and Splitting Value

*   **Combining:** A transaction can have multiple inputs to combine smaller amounts.
*   **Splitting:** A transaction typically has two outputs: one for the payment and one that sends the "change" back to the sender using a new address.

## Section 10: Privacy

*   **How it Works:** The network is **pseudonymous**, not anonymous. Public keys are not directly linked to real-world identities.
*   **The Catch:** All transactions are public. If a key is linked to a person, all their transactions can be traced.
*   **The Recommendation:** Use a new key pair for every transaction.

## Section 11: Calculations

This section provides a statistical analysis showing that the probability of an attacker successfully creating an alternative, longer chain decreases exponentially as more blocks are added to the honest chain.

## Section 12: Conclusion

A summary of the system: a trustless, peer-to-peer electronic cash system that is secure as long as honest nodes control the majority of CPU power.