Find Out How to Use Binance: The Complete Binance Tutorial
Find Out How to Use Binance: The Complete Binance Tutorial
Binance - Buy & Sell Bitcoin Securely - WCEF
Bitcoin: Buying Opportunity for Day Traders for BINANCE ...
Buy Stuff With Bitcoin 99 Bitcoins
How to use Binance to Buy, Sell and Trade Cryptocurrency?
How do I easily buy and sell Bitcoin? Get Started ...
List Of Online Stores Accepting Bitcoin UseTheBitcoin
How to Sell Anything for Bitcoin on Your Website Bitcoin ...
Bitcoin: New Buying Opportunity for BINANCE:BTCUSDT by ...
Ultimate glossary of crypto currency terms, acronyms and abbreviations
I registered a Kraken account many years ago, never did any trades, but entered my real name and location, since they failed to verify my location I abandoned the exchange. The thing is, I wanted to try again with a separate account, but I don't want to be linked to that old account once I do further KYC. I used that same email account in faucets and other stuff.. so I don't want to be linked to that. And I can't even access the email account anymore, so I don't know what exactly was there. Should I just use another exchange? Ive thought about Binance to not use Coinbase. Im not from the US so I don't want my stuff to be sent to the IRS, thats retarded. Anyway, buying Bitcoin is a pain in the ass these days, banks are blocking transacions and you have to show up in the bank and explain you aren't a terrorist. I don't want to buy in Bisq or whatever, because when I cash out I want to be able to buy a house or anything else that aren't stupid gift cards so im not bothered about privacy anyway, but Coinbase is just too much.
Brief Comments on Goguen: Q4 2020, Q1 2021, utility, Marlowe, DSL, Glow, Plutus, IELE, smart contracts, thanksgiving to you, sidechains and Hydra, Goguen rollout and additions to product update
Summary: Everyone knows that when you give your assets to someone else, they always keep them safe. If this is true for individuals, it is certainly true for businesses. Custodians always tell the truth and manage funds properly. They won't have any interest in taking the assets as an exchange operator would. Auditors tell the truth and can't be misled. That's because organizations that are regulated are incapable of lying and don't make mistakes. First, some background. Here is a summary of how custodians make us more secure: Previously, we might give Alice our crypto assets to hold. There were risks:
Alice might take the assets and disappear.
Alice might spend the assets and pretend that she still has them (fractional model).
Alice might store the assets insecurely and they'll get stolen.
Alice might give the assets to someone else by mistake or by force.
Alice might lose access to the assets.
But "no worries", Alice has a custodian named Bob. Bob is dressed in a nice suit. He knows some politicians. And he drives a Porsche. "So you have nothing to worry about!". And look at all the benefits we get:
Alice can't take the assets and disappear (unless she asks Bob or never gives them to Bob).
Alice can't spend the assets and pretend that she still has them. (Unless she didn't give them to Bob or asks him for them.)
Alice can't store the assets insecurely so they get stolen. (After all - she doesn't have any control over the withdrawal process from any of Bob's systems, right?)
Alice can't give the assets to someone else by mistake or by force. (Bob will stop her, right Bob?)
Alice can't lose access to the funds. (She'll always be present, sane, and remember all secrets, right?)
See - all problems are solved! All we have to worry about now is:
Bob might take the assets and disappear.
Bob might spend the assets and pretend that he still has them (fractional model).
Bob might store the assets insecurely and they'll get stolen.
Bob might give the assets to someone else by mistake or by force.
Bob might lose access to the assets.
It's pretty simple. Before we had to trust Alice. Now we only have to trust Alice, Bob, and all the ways in which they communicate. Just think of how much more secure we are! "On top of that", Bob assures us, "we're using a special wallet structure". Bob shows Alice a diagram. "We've broken the balance up and store it in lots of smaller wallets. That way", he assures her, "a thief can't take it all at once". And he points to a historic case where a large sum was taken "because it was stored in a single wallet... how stupid". "Very early on, we used to have all the crypto in one wallet", he said, "and then one Christmas a hacker came and took it all. We call him the Grinch. Now we individually wrap each crypto and stick it under a binary search tree. The Grinch has never been back since." "As well", Bob continues, "even if someone were to get in, we've got insurance. It covers all thefts and even coercion, collusion, and misplaced keys - only subject to the policy terms and conditions." And with that, he pulls out a phone-book sized contract and slams it on the desk with a thud. "Yep", he continues, "we're paying top dollar for one of the best policies in the country!" "Can I read it?' Alice asks. "Sure," Bob says, "just as soon as our legal team is done with it. They're almost through the first chapter." He pauses, then continues. "And can you believe that sales guy Mike? He has the same year Porsche as me. I mean, what are the odds?" "Do you use multi-sig?", Alice asks. "Absolutely!" Bob replies. "All our engineers are fully trained in multi-sig. Whenever we want to set up a new wallet, we generate 2 separate keys in an air-gapped process and store them in this proprietary system here. Look, it even requires the biometric signature from one of our team members to initiate any withdrawal." He demonstrates by pressing his thumb into the display. "We use a third-party cloud validation API to match the thumbprint and authorize each withdrawal. The keys are also backed up daily to an off-site third-party." "Wow that's really impressive," Alice says, "but what if we need access for a withdrawal outside of office hours?" "Well that's no issue", Bob says, "just send us an email, call, or text message and we always have someone on staff to help out. Just another part of our strong commitment to all our customers!" "What about Proof of Reserve?", Alice asks. "Of course", Bob replies, "though rather than publish any blockchain addresses or signed transaction, for privacy we just do a SHA256 refactoring of the inverse hash modulus for each UTXO nonce and combine the smart contract coefficient consensus in our hyperledger lightning node. But it's really simple to use." He pushes a button and a large green checkmark appears on a screen. "See - the algorithm ran through and reserves are proven." "Wow", Alice says, "you really know your stuff! And that is easy to use! What about fiat balances?" "Yeah, we have an auditor too", Bob replies, "Been using him for a long time so we have quite a strong relationship going! We have special books we give him every year and he's very efficient! Checks the fiat, crypto, and everything all at once!" "We used to have a nice offline multi-sig setup we've been using without issue for the past 5 years, but I think we'll move all our funds over to your facility," Alice says. "Awesome", Bob replies, "Thanks so much! This is perfect timing too - my Porsche got a dent on it this morning. We have the paperwork right over here." "Great!", Alice replies. And with that, Alice gets out her pen and Bob gets the contract. "Don't worry", he says, "you can take your crypto-assets back anytime you like - just subject to our cancellation policy. Our annual management fees are also super low and we don't adjust them often". How many holes have to exist for your funds to get stolen? Just one. Why are we taking a powerful offline multi-sig setup, widely used globally in hundreds of different/lacking regulatory environments with 0 breaches to date, and circumventing it by a demonstrably weak third party layer? And paying a great expense to do so? If you go through the list of breaches in the past 2 years to highly credible organizations, you go through the list of major corporate frauds (only the ones we know about), you go through the list of all the times platforms have lost funds, you go through the list of times and ways that people have lost their crypto from identity theft, hot wallet exploits, extortion, etc... and then you go through this custodian with a fine-tooth comb and truly believe they have value to add far beyond what you could, sticking your funds in a wallet (or set of wallets) they control exclusively is the absolute worst possible way to take advantage of that security. The best way to add security for crypto-assets is to make a stronger multi-sig. With one custodian, what you are doing is giving them your cryptocurrency and hoping they're honest, competent, and flawlessly secure. It's no different than storing it on a really secure exchange. Maybe the insurance will cover you. Didn't work for Bitpay in 2015. Didn't work for Yapizon in 2017. Insurance has never paid a claim in the entire history of cryptocurrency. But maybe you'll get lucky. Maybe your exact scenario will buck the trend and be what they're willing to cover. After the large deductible and hopefully without a long and expensive court battle. And you want to advertise this increase in risk, the lapse of judgement, an accident waiting to happen, as though it's some kind of benefit to customers ("Free institutional-grade storage for your digital assets.")? And then some people are writing to the OSC that custodians should be mandatory for all funds on every exchange platform? That this somehow will make Canadians as a whole more secure or better protected compared with standard air-gapped multi-sig? On what planet? Most of the problems in Canada stemmed from one thing - a lack of transparency. If Canadians had known what a joke Quadriga was - it wouldn't have grown to lose $400m from hard-working Canadians from coast to coast to coast. And Gerald Cotten would be in jail, not wherever he is now (at best, rotting peacefully). EZ-BTC and mister Dave Smilie would have been a tiny little scam to his friends, not a multi-million dollar fraud. Einstein would have got their act together or been shut down BEFORE losing millions and millions more in people's funds generously donated to criminals. MapleChange wouldn't have even been a thing. And maybe we'd know a little more about CoinTradeNewNote - like how much was lost in there. Almost all of the major losses with cryptocurrency exchanges involve deception with unbacked funds. So it's great to see transparency reports from BitBuy and ShakePay where someone independently verified the backing. The only thing we don't have is:
ANY CERTAINTY BALANCES WEREN'T EXCLUDED. Quadriga's largest account was $70m. 80% of funds are in 20% of accounts (Pareto principle). All it takes is excluding a few really large accounts - and nobody's the wiser. A fractional platform can easily pass any audit this way.
ANY VISIBILITY WHATSOEVER INTO THE CUSTODIANS. BitBuy put out their report before moving all the funds to their custodian and ShakePay apparently can't even tell us who the custodian is. That's pretty important considering that basically all of the funds are now stored there.
ANY IDEA ABOUT THE OTHER EXCHANGES. In order for this to be effective, it has to be the norm. It needs to be "unusual" not to know. If obscurity is the norm, then it's super easy for people like Gerald Cotten and Dave Smilie to blend right in.
It's not complicated to validate cryptocurrency assets. They need to exist, they need to be spendable, and they need to cover the total balances. There are plenty of credible people and firms across the country that have the capacity to reasonably perform this validation. Having more frequent checks by different, independent, parties who publish transparent reports is far more valuable than an annual check by a single "more credible/official" party who does the exact same basic checks and may or may not publish anything. Here's an example set of requirements that could be mandated:
First report within 1 month of launching, another within 3 months, and further reports at minimum every 6 months thereafter.
No auditor can be repeated within a 12 month period.
All reports must be public, identifying the auditor and the full methodology used.
All auditors must be independent of the firm being audited with no conflict of interest.
Reports must include the percentage of each asset backed, and how it's backed.
The auditor publishes a hash list, which lists a hash of each customer's information and balances that were included. Hash is one-way encryption so privacy is fully preserved. Every customer can use this to have 100% confidence they were included.
If we want more extensive requirements on audits, these should scale upward based on the total assets at risk on the platform, and whether the platform has loaned their assets out.
There are ways to structure audits such that neither crypto assets nor customer information are ever put at risk, and both can still be properly validated and publicly verifiable. There are also ways to structure audits such that they are completely reasonable for small platforms and don't inhibit innovation in any way. By making the process as reasonable as possible, we can completely eliminate any reason/excuse that an honest platform would have for not being audited. That is arguable far more important than any incremental improvement we might get from mandating "the best of the best" accountants. Right now we have nothing mandated and tons of Canadians using offshore exchanges with no oversight whatsoever. Transparency does not prove crypto assets are safe. CoinTradeNewNote, Flexcoin ($600k), and Canadian Bitcoins ($100k) are examples where crypto-assets were breached from platforms in Canada. All of them were online wallets and used no multi-sig as far as any records show. This is consistent with what we see globally - air-gapped multi-sig wallets have an impeccable record, while other schemes tend to suffer breach after breach. We don't actually know how much CoinTrader lost because there was no visibility. Rather than publishing details of what happened, the co-founder of CoinTrader silently moved on to found another platform - the "most trusted way to buy and sell crypto" - a site that has no information whatsoever (that I could find) on the storage practices and a FAQ advising that “[t]rading cryptocurrency is completely safe” and that having your own wallet is “entirely up to you! You can certainly keep cryptocurrency, or fiat, or both, on the app.” Doesn't sound like much was learned here, which is really sad to see. It's not that complicated or unreasonable to set up a proper hardware wallet. Multi-sig can be learned in a single course. Something the equivalent complexity of a driver's license test could prevent all the cold storage exploits we've seen to date - even globally. Platform operators have a key advantage in detecting and preventing fraud - they know their customers far better than any custodian ever would. The best job that custodians can do is to find high integrity individuals and train them to form even better wallet signatories. Rather than mandating that all platforms expose themselves to arbitrary third party risks, regulations should center around ensuring that all signatories are background-checked, properly trained, and using proper procedures. We also need to make sure that signatories are empowered with rights and responsibilities to reject and report fraud. They need to know that they can safely challenge and delay a transaction - even if it turns out they made a mistake. We need to have an environment where mistakes are brought to the surface and dealt with. Not one where firms and people feel the need to hide what happened. In addition to a knowledge-based test, an auditor can privately interview each signatory to make sure they're not in coercive situations, and we should make sure they can freely and anonymously report any issues without threat of retaliation. A proper multi-sig has each signature held by a separate person and is governed by policies and mutual decisions instead of a hierarchy. It includes at least one redundant signature. For best results, 3of4, 3of5, 3of6, 4of5, 4of6, 4of7, 5of6, or 5of7. History has demonstrated over and over again the risk of hot wallets even to highly credible organizations. Nonetheless, many platforms have hot wallets for convenience. While such losses are generally compensated by platforms without issue (for example Poloniex, Bitstamp, Bitfinex, Gatecoin, Coincheck, Bithumb, Zaif, CoinBene, Binance, Bitrue, Bitpoint, Upbit, VinDAX, and now KuCoin), the public tends to focus more on cases that didn't end well. Regardless of what systems are employed, there is always some level of risk. For that reason, most members of the public would prefer to see third party insurance. Rather than trying to convince third party profit-seekers to provide comprehensive insurance and then relying on an expensive and slow legal system to enforce against whatever legal loopholes they manage to find each and every time something goes wrong, insurance could be run through multiple exchange operators and regulators, with the shared interest of having a reputable industry, keeping costs down, and taking care of Canadians. For example, a 4 of 7 multi-sig insurance fund held between 5 independent exchange operators and 2 regulatory bodies. All Canadian exchanges could pay premiums at a set rate based on their needed coverage, with a higher price paid for hot wallet coverage (anything not an air-gapped multi-sig cold wallet). Such a model would be much cheaper to manage, offer better coverage, and be much more reliable to payout when needed. The kind of coverage you could have under this model is unheard of. You could even create something like the CDIC to protect Canadians who get their trading accounts hacked if they can sufficiently prove the loss is legitimate. In cases of fraud, gross negligence, or insolvency, the fund can be used to pay affected users directly (utilizing the last transparent balance report in the worst case), something which private insurance would never touch. While it's recommended to have official policies for coverage, a model where members vote would fully cover edge cases. (Could be similar to the Supreme Court where justices vote based on case law.) Such a model could fully protect all Canadians across all platforms. You can have a fiat coverage governed by legal agreements, and crypto-asset coverage governed by both multi-sig and legal agreements. It could be practical, affordable, and inclusive. Now, we are at a crossroads. We can happily give up our freedom, our innovation, and our money. We can pay hefty expenses to auditors, lawyers, and regulators year after year (and make no mistake - this cost will grow to many millions or even billions as the industry grows - and it will be borne by all Canadians on every platform because platforms are not going to eat up these costs at a loss). We can make it nearly impossible for any new platform to enter the marketplace, forcing Canadians to use the same stagnant platforms year after year. We can centralize and consolidate the entire industry into 2 or 3 big players and have everyone else fail (possibly to heavy losses of users of those platforms). And when a flawed security model doesn't work and gets breached, we can make it even more complicated with even more people in suits making big money doing the job that blockchain was supposed to do in the first place. We can build a system which is so intertwined and dependent on big government, traditional finance, and central bankers that it's future depends entirely on that of the fiat system, of fractional banking, and of government bail-outs. If we choose this path, as history has shown us over and over again, we can not go back, save for revolution. Our children and grandchildren will still be paying the consequences of what we decided today. Or, we can find solutions that work. We can maintain an open and innovative environment while making the adjustments we need to make to fully protect Canadian investors and cryptocurrency users, giving easy and affordable access to cryptocurrency for all Canadians on the platform of their choice, and creating an environment in which entrepreneurs and problem solvers can bring those solutions forward easily. None of the above precludes innovation in any way, or adds any unreasonable cost - and these three policies would demonstrably eliminate or resolve all 109 historic cases as studied here - that's every single case researched so far going back to 2011. It includes every loss that was studied so far not just in Canada but globally as well. Unfortunately, finding answers is the least challenging part. Far more challenging is to get platform operators and regulators to agree on anything. My last post got no response whatsoever, and while the OSC has told me they're happy for industry feedback, I believe my opinion alone is fairly meaningless. This takes the whole community working together to solve. So please let me know your thoughts. Please take the time to upvote and share this with people. Please - let's get this solved and not leave it up to other people to do. Facts/background/sources (skip if you like):
The inspiration for the paragraph about splitting wallets was an actual quote from a Canadian company providing custodial services in response to the OSC consultation paper: "We believe that it will be in the in best interests of investors to prohibit pooled crypto assets or ‘floats’. Most Platforms pool assets, citing reasons of practicality and expense. The recent hack of the world’s largest Platform – Binance – demonstrates the vulnerability of participants’ assets when such concessions are made. In this instance, the Platform’s entire hot wallet of Bitcoins, worth over $40 million, was stolen, facilitated in part by the pooling of client crypto assets." "the maintenance of participants (and Platform) crypto assets across multiple wallets distributes the related risk and responsibility of security - reducing the amount of insurance coverage required and making insurance coverage more readily obtainable". For the record, their reply also said nothing whatsoever about multi-sig or offline storage.
In addition to the fact that the $40m hack represented only one "hot wallet" of Binance, and they actually had the vast majority of assets in other wallets (including mostly cold wallets), multiple real cases have clearly demonstrated that risk is still present with multiple wallets. Bitfinex, VinDAX, Bithumb, Altsbit, BitPoint, Cryptopia, and just recently KuCoin all had multiple wallets breached all at the same time, and may represent a significantly larger impact on customers than the Binance breach which was fully covered by Binance. To represent that simply having multiple separate wallets under the same security scheme is a comprehensive way to reduce risk is just not true.
Private insurance has historically never covered a single loss in the cryptocurrency space (at least, not one that I was able to find), and there are notable cases where massive losses were not covered by insurance. Bitpay in 2015 and Yapizon in 2017 both had insurance policies that didn't pay out during the breach, even after a lengthly court process. The same insurance that ShakePay is presently using (and announced to much fanfare) was describe by their CEO himself as covering “physical theft of the media where the private keys are held,” which is something that has never historically happened. As was said with regard to the same policy in 2018 - “I don’t find it surprising that Lloyd’s is in this space,” said Johnson, adding that to his mind the challenge for everybody is figuring out how to structure these policies so that they are actually protective. “You can create an insurance policy that protects no one – you know there are so many caveats to the policy that it’s not super protective.”
The most profitable policy for a private insurance company is one with the most expensive premiums that they never have to pay a claim on. They have no inherent incentive to take care of people who lost funds. It's "cheaper" to take the reputational hit and fight the claim in court. The more money at stake, the more the insurance provider is incentivized to avoid payout. They're not going to insure the assets unless they have reasonable certainty to make a profit by doing so, and they're not going to pay out a massive sum unless it's legally forced. Private insurance is always structured to be maximally profitable to the insurance provider.
The circumvention of multi-sig was a key factor in the massive Bitfinex hack of over $60m of bitcoin, which today still sits being slowly used and is worth over $3b. While Bitfinex used a qualified custodian Bitgo, which was and still is active and one of the industry leaders of custodians, and they set up 2 of 3 multi-sig wallets, the entire system was routed through Bitfinex, such that Bitfinex customers could initiate the withdrawals in a "hot" fashion. This feature was also a hit with the hacker. The multi-sig was fully circumvented.
Bitpay in 2015 was another example of a breach that stole 5,000 bitcoins. This happened not through the exploit of any system in Bitpay, but because the CEO of a company they worked with got their computer hacked and the hackers were able to request multiple bitcoin purchases, which Bitpay honoured because they came from the customer's computer legitimately. Impersonation is a very common tactic used by fraudsters, and methods get more extreme all the time.
A notable case in Canada was the Canadian Bitcoins exploit. Funds were stored on a server in a Rogers Data Center, and the attendee was successfully convinced to reboot the server "in safe mode" with a simple phone call, thus bypassing the extensive security and enabling the theft.
The very nature of custodians circumvents multi-sig. This is because custodians are not just having to secure the assets against some sort of physical breach but against any form of social engineering, modification of orders, fraudulent withdrawal attempts, etc... If the security practices of signatories in a multi-sig arrangement are such that the breach risk of one signatory is 1 in 100, the requirement of 3 independent signatures makes the risk of theft 1 in 1,000,000. Since hackers tend to exploit the weakest link, a comparable custodian has to make the entry and exit points of their platform 10,000 times more secure than one of those signatories to provide equivalent protection. And if the signatories beef up their security by only 10x, the risk is now 1 in 1,000,000,000. The custodian has to be 1,000,000 times more secure. The larger and more complex a system is, the more potential vulnerabilities exist in it, and the fewer people can understand how the system works when performing upgrades. Even if a system is completely secure today, one has to also consider how that system might evolve over time or work with different members.
By contrast, offline multi-signature solutions have an extremely solid record, and in the entire history of cryptocurrency exchange incidents which I've studied (listed here), there has only been one incident (796 exchange in 2015) involving an offline multi-signature wallet. It happened because the customer's bitcoin address was modified by hackers, and the amount that was stolen ($230k) was immediately covered by the exchange operators. Basically, the platform operators were tricked into sending a legitimate withdrawal request to the wrong address because hackers exploited their platform to change that address. Such an issue would not be prevented in any way by the use of a custodian, as that custodian has no oversight whatsoever to the exchange platform. It's practical for all exchange operators to test large withdrawal transactions as a general policy, regardless of what model is used, and general best practice is to diagnose and fix such an exploit as soon as it occurs.
False promises on the backing of funds played a huge role in the downfall of Quadriga, and it's been exposed over and over again (MyCoin, PlusToken, Bitsane, Bitmarket, EZBTC, IDAX). Even today, customers have extremely limited certainty on whether their funds in exchanges are actually being backed or how they're being backed. While this issue is not unique to cryptocurrency exchanges, the complexity of the technology and the lack of any regulation or standards makes problems more widespread, and there is no "central bank" to come to the rescue as in the 2008 financial crisis or during the great depression when "9,000 banks failed".
In addition to fraudulent operations, the industry is full of cases where operators have suffered breaches and not reported them. Most recently, Einstein was the largest case in Canada, where ongoing breaches and fraud were perpetrated against the platform for multiple years and nobody found out until the platform collapsed completely. While fraud and breaches suck to deal with, they suck even more when not dealt with. Lack of visibility played a role in the largest downfalls of Mt. Gox, Cryptsy, and Bitgrail. In some cases, platforms are alleged to have suffered a hack and keep operating without admitting it at all, such as CoinBene.
It surprises some to learn that a cryptographic solution has already existed since 2013, and gained widespread support in 2014 after Mt. Gox. Proof of Reserves is a full cryptographic proof that allows any customer using an exchange to have complete certainty that their crypto-assets are fully backed by the platform in real-time. This is accomplished by proving that assets exist on the blockchain, are spendable, and fully cover customer deposits. It does not prove safety of assets or backing of fiat assets.
If we didn't care about privacy at all, a platform could publish their wallet addresses, sign a partial transaction, and put the full list of customer information and balances out publicly. Customers can each check that they are on the list, that the balances are accurate, that the total adds up, and that it's backed and spendable on the blockchain. Platforms who exclude any customer take a risk because that customer can easily check and see they were excluded. So together with all customers checking, this forms a full proof of backing of all crypto assets.
However, obviously customers care about their private information being published. Therefore, a hash of the information can be provided instead. Hash is one-way encryption. The hash allows the customer to validate inclusion (by hashing their own known information), while anyone looking at the list of hashes cannot determine the private information of any other user. All other parts of the scheme remain fully intact. A model like this is in use on the exchange CoinFloor in the UK.
A Merkle tree can provide even greater privacy. Instead of a list of balances, the balances are arranged into a binary tree. A customer starts from their node, and works their way to the top of the tree. For example, they know they have 5 BTC, they plus 1 other customer hold 7 BTC, they plus 2-3 other customers hold 17 BTC, etc... until they reach the root where all the BTC are represented. Thus, there is no way to find the balances of other individual customers aside from one unidentified customer in this case.
Proposals such as this had the backing of leaders in the community including Nic Carter, Greg Maxwell, and Zak Wilcox. Substantial and significant effort started back in 2013, with massive popularity in 2014. But what became of that effort? Very little. Exchange operators continue to refuse to give visibility. Despite the fact this information can often be obtained through trivial blockchain analysis, no Canadian platform has ever provided any wallet addresses publicly. As described by the CEO of Newton "For us to implement some kind of realtime Proof of Reserves solution, which I'm not opposed to, it would have to ... Preserve our users' privacy, as well as our own. Some kind of zero-knowledge proof". Kraken describes here in more detail why they haven't implemented such a scheme. According to professor Eli Ben-Sasson, when he spoke with exchanges, none were interested in implementing Proof of Reserves.
And yet, Kraken's places their reasoning on a page called "Proof of Reserves". More recently, both BitBuy and ShakePay have released reports titled "Proof of Reserves and Security Audit". Both reports contain disclaimers against being audits. Both reports trust the customer list provided by the platform, leaving the open possibility that multiple large accounts could have been excluded from the process. Proof of Reserves is a blockchain validation where customers see the wallets on the blockchain. The report from Kraken is 5 years old, but they leave it described as though it was just done a few weeks ago. And look at what they expect customers to do for validation. When firms represent something being "Proof of Reserve" when it's not, this is like a farmer growing fruit with pesticides and selling it in a farmers market as organic produce - except that these are people's hard-earned life savings at risk here. Platforms are misrepresenting the level of visibility in place and deceiving the public by their misuse of this term. They haven't proven anything.
Fraud isn't a problem that is unique to cryptocurrency. Fraud happens all the time. Enron, WorldCom, Nortel, Bear Stearns, Wells Fargo, Moser Baer, Wirecard, Bre-X, and Nicola are just some of the cases where frauds became large enough to become a big deal (and there are so many countless others). These all happened on 100% reversible assets despite regulations being in place. In many of these cases, the problems happened due to the over-complexity of the financial instruments. For example, Enron had "complex financial statements [which] were confusing to shareholders and analysts", creating "off-balance-sheet vehicles, complex financing structures, and deals so bewildering that few people could understand them". In cryptocurrency, we are often combining complex financial products with complex technologies and verification processes. We are naïve if we think problems like this won't happen. It is awkward and uncomfortable for many people to admit that they don't know how something works. If we want "money of the people" to work, the solutions have to be simple enough that "the people" can understand them, not so confusing that financial professionals and technology experts struggle to use or understand them.
For those who question the extent to which an organization can fool their way into a security consultancy role, HB Gary should be a great example to look at. Prior to trying to out anonymous, HB Gary was being actively hired by multiple US government agencies and others in the private sector (with glowing testimonials). The published articles and hosted professional security conferences. One should also look at this list of data breaches from the past 2 years. Many of them are large corporations, government entities, and technology companies. These are the ones we know about. Undoubtedly, there are many more that we do not know about. If HB Gary hadn't been "outted" by anonymous, would we have known they were insecure? If the same breach had happened outside of the public spotlight, would it even have been reported? Or would HB Gary have just deleted the Twitter posts, brought their site back up, done a couple patches, and kept on operating as though nothing had happened?
In the case of Quadriga, the facts are clear. Despite past experience with platforms such as MapleChange in Canada and others around the world, no guidance or even the most basic of a framework was put in place by regulators. By not clarifying any sort of legal framework, regulators enabled a situation where a platform could be run by former criminal Mike Dhanini/Omar Patryn, and where funds could be held fully unchecked by one person. At the same time, the lack of regulation deterred legitimate entities from running competing platforms and Quadriga was granted a money services business license for multiple years of operation, which gave the firm the appearance of legitimacy. Regulators did little to protect Canadians despite Quadriga failing to file taxes from 2016 onward. The entire administrative team had resigned and this was public knowledge. Many people had suspicions of what was going on, including Ryan Mueller, who forwarded complaints to the authorities. These were ignored, giving Gerald Cotten the opportunity to escape without justice.
There are multiple issues with the SOC II model including the prohibitive cost (you have to find a third party accounting firm and the prices are not even listed publicly on any sites), the requirement of operating for a year (impossible for new platforms), and lack of any public visibility (SOC II are private reports that aren't shared outside the people in suits).
Securities frameworks are expensive. Sarbanes-Oxley is estimated to cost $5.1 million USD/yr for the average Fortune 500 company in the United States. Since "Fortune 500" represents the top 500 companies, that means well over $2.55 billion USD (~$3.4 billion CAD) is going to people in suits. Isn't the problem of trust and verification the exact problem that the blockchain is supposed to solve?
To use Quadriga as justification for why custodians or SOC II or other advanced schemes are needed for platforms is rather silly, when any framework or visibility at all, or even the most basic of storage policies, would have prevented the whole thing. It's just an embarrassment.
We are now seeing regulators take strong action. CoinSquare in Canada with multi-million dollar fines. BitMex from the US, criminal charges and arrests. OkEx, with full disregard of withdrawals and no communication. Who's next?
We have a unique window today where we can solve these problems, and not permanently destroy innovation with unreasonable expectations, but we need to act quickly. This is a unique historic time that will never come again.
Decentr ($DEC) - foundational cross-chain and cross-platform DeFi protocol
Decentr is a protocol designed to make blockchain/DLT mainstream by allowing DeFi applications built on various blockchains to “talk to each other”. Decentr is a 100% secure and decentralised Web 3.0 protocol where users can apply PDV (personal data value) to increase APR on $DEC that users loan out as part of of our DeFi dLoan features, as well as it being applied at PoS when paying for stuff online. Decentr is also building a BAT competitor browser and Chrome/Firefox extension that acts as a gateway to 100% decentralised Web 3.0
Allows DeFi Dapps to access all Decentr’s dFintech features, including dLoan, dPay. Key innovation is that the protocols is based on a user’s ability to leverage the value of their data as exchangeable “currency”.
Decentr is building foundational chain-agnostic protocols that will support “true” 100% DeFi Dapps, a 100% secure and decentralised, user-centric alt economy. DeFi dApps inter-connected by Decentr can talk to each other and share PDV (personal data value) of their users. PDV is best described as a personalized “exchange rate” (in a sense social reputation where more effort leads to more rewards and NOT more capital to more rewards. ) between currencies that users apply at point-of-sale to make the cost of goods and services cheaper online. PDV is applied to the APR users earn on $DEC (native token) that they hold that they loan out as part of the investing pool. PDV will also allow uncollateralized loans on their dLoan platform, and also on platforms like Aave and Compound.
Decentr will implement ZKsync to get super cheap and super fast transactions across the ETH network. It is also working with HoloChain and Tomochain to allow connect their DeFi ecosystem to the Ethereum DeFi ecosystem. Decentr has DEEP TIES and a PARTNERSHIP with Holochain: https://medium.com/@DecentrNet/decentr-holochain-ama-29d662caed03
Decentr is also building a browser and Chrome/Firefox extension - a gateway that “transitions” Web 2.0 into a 100% decentralised Web 3.0 via their suite of decentralised dFintech and dCommunications features. The browser adds a 100% decentralised “user layer” to current blockchain protocols so that applications built on blockchain can actually “talk to each other”. The browser uses encryption all the time and the power of blockchain to keep private keys safe. Browser will offer a more robust and innovative type of blockchain storage and caching that is much faster than VPN or TOR. It will allow surfing .onion addresses as well as the regular ones. >>BAT browser 400m marketcap, DEC marketcap 4m<<
Decentr is researching a hardware application, powered by Decentr software, that would greatly enhance current IoT networks. It’s called a “Smart Chip Node” (SCN) and will adhere to 4G LTE standards (with in-built 5G capability), which means connectivity between devices will match or exceed current speed and connectivity, dramatically improving stability and coverage of standalone devices, such as a laptop or tablet, as well as IoT devices, such as home routers and modems.
Decentr uses Coinbase API to optimise integrated implementation of the user layer and Blockchain as a Service (BaaS) to allow users to leverage cloud-based solutions to build, host and use their own blockchain apps. Tierion’s technological infrastructure, the Chainpoint Proof protocol, will come into play whenever a user adds something in Tierion’s data store. Hyperledger Fabric and R3 Corda private blockchains are used as an immutable transaction database for data transfers, including the following tech: R3 Corda, Hyperledger Fabric, Ansible, Bitbucket Pipelines, AWS, Node.JS, GoLang, Kotlin and CouchDB.
Implements a system of layered security protocols based on a radically-new software architecture that combines Elliptic Curve Cryptography (ECC)4 and Sobol sequencing with a n-dimensional chain as part of AI-enhanced, platform-wide community consensus mechanism — a mechanism that assigns mutually agreed value to data and user security protocol upgrades (further encouraging enhanced data integrity) by deploying a Delegated Proof of Stake (DPoS) protocol.
Bank of England has reached out to Decenr to discuss the potential of a UK CBDC upon hearing about the potential of their tech. Decentr is consistent with their own R&D into a "dGBP" and they requested a top-level document for review >> Decentr created this proposal: https://decentr.net/files/Decentr_Consultancy_Doc_UK_CBDC.pdf
A fee is charged for every transaction using dPay whereby an exchange takes place between money (fiat and digital) and data, and vice versa, either as part of DeFi features or via a dApp built on Decentr. They are launching pilot programmes in the following industries:
Banking/PSP Industry: On Product launch, due to Decentr’s powerful PSP connections (including the worlds #2 PSP by volume), a medium-scale pilot program will be launched, which will seed the network with 150,000 PSP customers in primarily the Spanish/LAC markets, generating revenue from day one.
“Bricks and Mortar” Supermarket/Grocery Industry: Decentr aims to ensure the long-term competitiveness of “bricks and mortar” supermarkets against online-only grocery retailers, such as Amazon, by a) building secure tech that allows supermarkets to digitise every aspect of their supply chains and operational functions, while b) allowing supermarkets to leverage this incredibly valuable data as a liquid asset class. Expected revenue by Year 5: $114Mn per year.
Online Advertising Industry: Decentr’s 100% decentralised platform credits users secure data with payable value, in the form of PDV, for engaging with ads. The Brave browser was launched in 2012 and in 8 years has reached over 12 million monthly active users, accented by as many as 4.3 million daily active users.
TOKEN $DEC AND SALE
Decentr recently complete their token sale on a purchase portal powered by Dolomite where they raised $974,000 in 10 minutes for a total sale hardcap of 1.25M. The $DEC token is actively trading on multiple exchanges including Uniswap and IDEX. Listed for free on IDEX, Hotbit, Hoo, Coinw, Tidex, BKex. Listed on CoinGecko and Coinmarketcap. Listed on Delta and Blockfolio apps. ➡️ Circulating supply: 61m $DEC. ➡️ Release schedule and token distribution LINK -> NO RELEASE UNTIL 2021.
A tradeable unit of value that is both internal and external to the Decentr platform.A unit of conversion between fiat entering and exiting the Decentr ecosystem.A way to capture the value of user data and combines the activity of every participant of the platform performing payment (dPay), or lending and borrowing (dLend), i.e a way to peg PDV to tangible/actionable value.Method of payment in the Decentr ecosystem.A method to internally underwrite the “Deconomy.
A small story about how I discovered r/BTC, and some stuff I want to say
So, when I first went back to the Crypto community back November 2019, I was rather, hesitant. I just finished verification of a mobile wallet with BTC support called Coins.ph and it made me curious on the crypto it allows: BTC, BCH, ETH, and XRP. I went and shuffled money around, and once my father gave his 0.01 BTC he mined (which I lost like a fraction because of Binance, seriously that place is weird), I decided to keep it to my centralized bank. Fast forward to February, the bear drop of BTC and most crypto was like a new chance for me. I can finally get something good! So I tried the faucets. Which lead me to finding that CoinPot has decreased withdrawal rates. Well... BCH entered my crypto portfolio through Bitcoin.com. I'm just a gullible person. Any shiny thing and I go for it the last second. When I learned that BCH is actually faster than BTC (had tested the speed by placing PHP 500 or more or less 0.05 BCH , I took PHP 1,000 and placed it on my account. It was a fool's attempt, since Philippines just struck quarantine, and I can't do anything about it. The fast confirmation speed pre-Halving sold it for me, and I thought, maybe I can hold it for a while? After testing Keys4Coins by buying a steam card, it was really just a few minutes of payment, then I realized that BCH (and pre 2017 BTC) is really peer-to-peer. Back in 2019 until today I was trying to mine XMR (failed to retrieve it after dumping all my BCH and dumping XMR back, showing less money). Back in 2017, just a few weeks before the split, I was trying hard to get enough satoshis to have on my Electrum-built wallet. Which is currently empty. Right now, I decided to cash out 0.05 BCH because money is needed right now, and my PC froze while I was trying to mine Zcoin. I also decided to try a semi-unused coin named BLUR after asking you guys about what to mine with GPU. It's not worth it, mining. Now, let's say some things I want to say lately.
BCH and BTC came from one blockchain and one whitepaper. BTC doesn't follow the whitepaper.
BCH is not yet fully adopted. I know because while we have other countries adopt it, crypto news have it, trolls are fighting against it, there is not even one news of all in the mainstream media.
The IFP is a sound plan, but it doesn't work in the long run. It looks like a forced donation to some whitelisted addresses, which, while might help Bitcoin ABC, will turn Bitcoin ABC into our own Blockstream. Money does that to people, don't push it.
For some reason, I met this guy who claims that Roger Vers owes him $100. Nice guy, knows the good faucets and stuff. He's making a forum that uses Satoshis by the way. Here's a link: Bitcoin Forums.
Also for some reason, BTC trolls have a perspective that BCH is made up of BCH maxis, shills, and idiots. Let their perspective be unchallenged, even if it means that you need to agree to disagree. After all, they are only defending BTC. Let them stick to latest news too, because people don't read old stuff.
I wonder what Satoshi is doing right now? He's probably just lurking in the crypto world, mining his own dev node, doing something new with cryptography... he probably oversaw all this.
BTC is gold bars. BCH is gold coins melted from gold bars sent around. BSV is some shit I don't even understand why they even made in the first place, lol
Bitcoin is not just the name of an revolutionary idea, it's now a name of the first crypto. I have a feeling we will receive less trolls if we stop claiming Bitcoin Cash is true Bitcoin, because in name, Bitcoin (Core) is.
I wonder what will happen if Bitcoin reaches $4,999...
tl:dr; I'm an idiot with cryptocurrency, and BCH is working fine, no need to see anything here, just bored and going insane on quarantine
Decentralized Finance (DeFi) can be rightfully considered a third revolution in the crypto space. If you wonder what the first two are, these are the invention of blockchain itself along with the technology’s firstborn, Bitcoin, and the inception of the smart contract technology. Just like blockchain provides the basis for smart contracts, the latter give rise to DeFi. It is often said that smart contracts are poised to revolutionize the ways both humans and organizations interact in their contractual relationships. In this sense, DeFi is the stage where these relationships are set to emerge and develop. With a bigger picture in mind, it is the world that the blockchain technology lays the foundation for, while smart contracts help to build it. Why we need DeFi, how it is possible, what makes it tick and click are the main themes of this article. by StealthEX
But seriously, why do we need it?
As most financial services in existence today are provided by or involve third parties, for example, banks, exchanges, investment companies, insurance agencies etc, DeFi is an attempt to build an alternative environment, an ecosystem of applications offering the same set of services but now powered by public blockchain networks in a decentralized, transparent and permissionless way. By and large, the basic idea that guides DeFi is essentially the same ethos that drives innovation with crypto as such, but at an entirely different level. Just like cryptocurrencies try to wrest the state supremacy over money from the hands of rogue governments and central banks, DeFi takes it further and aims higher. With DeFi, it is no longer a matter of creating a coin in an effort to replace fiat money, which mostly doesn’t work anyway. However, building a whole new domain of financial services available fairly and squarely to anyone, with full control over the assets but without corrupt governments and greedy intermediaries sticking around, may pan out better after all. So, answering the question posed at the beginning of this section, we need DeFi for basically the same reasons we need cryptocurrencies. Or, put differently, if we need cryptocurrencies, an assumption that has been proved indisputable, it is inevitable as well that we will sooner or later become interested in decentralized financial services powered by these cryptocurrencies through smart contract blockchains. We can’t just create Bitcoin and say that’ll do. It is a natural development, a Maslow’s hierarchy of needs, in a sense.
How is it ever possible?
As mentioned in the introduction, DeFi emerges thanks to smart contract tech and decentralized applications (or simply dApps) running them. So how does it work in practice? To better understand the idea, let’s take a closer look at a relatively simple example of a decentralized crypto-backed stablecoin which can be created through a smart contract. Stablecoins are coins whose value is pegged to a stable asset such as a commodity like gold or a fiat currency like the US dollar. There are a few different types of stablecoins that exist in the wild. For the purpose of this exposition, we are interested in crypto-backed stablecoins. Like stablecoins collateralized by fiat, these stablecoins use cryptocurrencies as collateral. However, the key difference is that a fiat-based stablecoin is pegged to the fiat currency which is backing it up. Kinda obvious. A crypto-backed stablecoin, on the other hand, is pegged to one asset, say, the American dollar, but backed up by a completely different one, for example, Ether. Things get tricky. A crypto-collateralized stablecoin is possible through the magic and the beauty of the smart contract governing it. If the price of such a stablecoin rises above its peg, or parity, you can create more stablecoins and sell them at a premium. If the price of the stablecoin falls below parity, you can buy stablecoins and liquidate them at a discount. If the collateral itself crashes, undercollateralized stablecoins will be liquidated with their collateral now backing up fewer stablecoins. As a result, the price always gets pushed back to parity. And all this rather complicated stuff is done on the blockchain in a decentralized and automatic fashion with no banks or other third parties involved. Consequently, more services are easily possible too. And quite a few at that.
Okay, what decentralized financial services are available?
Well, one such service we have just described above. Cryptocurrencies are infamous for being extremely volatile, and stablecoins are designed to deal with this issue. There are many stablecoins out there like Tether, TrueUSD, or Gemini Coin, but they are all based on trusting third parties. Easily one of the best known crypto-backed stablecoins is MakerDAO’s DAI, which is pegged against the US dollar with a basket of crypto-assets as collateral in a truly decentralized and trustless way, that is, a blockchain way. Crypto-based stablecoins can be used on their own by offering a hedge against the price volatility of such popular cryptocurrencies as Ether or Bitcoin. Aside from that, they are also instrumental in other DeFi services, for example, in decentralized exchanges like IDEX or BiKi.com. With stablecoins, it becomes possible to create fiat trading pairs in addition to crypto ones in entirely decentralized, non-custodial trading environments as opposed to centralized exchanges like Bitfinex or Binance, which are vulnerable to high-profile hacks and personal data leaks. Unlike MakerDAO, Ampleforth doesn’t strive to create a rock-solid stablecoin. Instead, it comes up with the notion of “adaptive money built on sound economics”, with its mission stretching out as far as to marry “the scarcity of Bitcoin with the elasticity of fiat”. It tries to go beyond the relatively simple concept of a stablecoin and brings forth the idea of elastic money supply that can expand and contract depending on market demands, as well as allow the creation of a valid form of collateral for DeFi based on that idea. Obviously, DeFi is not just about stablecoins or the financial services using them. Blockchain-based borrowing and lending is another important DeFi arena. With platforms like Compound, dYdX, Dharma, you can deposit your crypto assets to either earn interest on them or use these assets as collateral for borrowing. Smart contracts automatically match borrowers and lenders, offering dynamic interest rates based on supply and demand. And with tools like LoanScan, you can also easily shop around for the best interest rates on the block. These examples are far from exhaustive, of course, as the space is rapidly expanding and evolving. However, there are some fundamental issues that put grit into the wheels of the DeFi war machine.
So where’s the catch?
There are many advantages of DeFi, but to be of any practical use, it needs up-to-date information that would be reliable and authentic. Smart contracts that DeFi is based on are hopelessly on-chain, but the data they need for processing is mostly off-chain. Without a bridge to close this gap between a smart contract and its source of external information, smart contracts are entrapped in closed-off dungeons of their blockchains. To be sure, no crypto-based stablecoin is going to work correctly without a real-time price feed for the assets taken as its collateral and used for maintaining the peg. To get around this roadblock, a concept of blockchain oracles has been suggested. But as the chain cannot be stronger than its weakest link, blockchain oracles seem to be that weak link in the field of DeFi and beyond as obtaining information in a verifiable way can be an intimidating task. What approaches dApps are taking to procure and verify sources of truth in the external world is the topic of our upcoming article about blockchain oracles. Stay with us and stay tuned! And remember if you need to exchange your coins StealthEX is here for you. We provide a selection of more than 250 coins and constantly updating the list so that our customers will find a suitable option. Our service does not require registration and allows you to remain anonymous. Why don’t you check it out? Just go to StealthEX and follow these easy steps: ✔ Choose the pair and the amount for your exchange. For example ETH to BTC. ✔ Press the “Start exchange” button. ✔ Provide the recipient address to which the coins will be transferred. ✔ Move your cryptocurrency for the exchange. ✔ Receive your coins. Follow us on Medium, Twitter, Facebook, and Reddit to get StealthEX.io updates and the latest news about the crypto world. For all requests message us via [email protected]. The views and opinions expressed here are solely those of the author. Every investment and trading move involves risk. You should conduct your own research when making a decision. Original article was posted onhttps://stealthex.io/blog/2020/08/04/decentralized-finance-defi/
Crypto Banking Wars: Can Non-Custodial Crypto Wallets Ever Replace Banks?
Can they overcome the product limitations of blockchain and deliver the world-class experience that consumers expect? https://reddit.com/link/i8ewbx/video/ojkc6c9a1lg51/player This is the second part ofCrypto Banking Wars— a new series that examines what crypto-native company is most likely to become thebank of the future. Who is best positioned toreach mainstream adoptionin consumer finance? --- While crypto allows the world to get rid of banks, a bank will still very much be necessary for this verypowerfultechnology to reach the masses. As we laid out in our previous series, Crypto-Powered, we believe companies that build with blockchain at their core will have the best shot at winning the broader consumer finance market. We hope it will be us at Genesis Block, but we aren’t the only game in town. So this series explores the entire crypto landscape and tries to answer the question, which crypto company is most likely to become the bank of the future? In our last episode, we offered an in-depth analysis of big crypto exchanges like Coinbase & Binance. Today we’re analyzing non-custodial crypto wallets. These are products where only the user can touch or move funds. Not even the company or developer who built the application can access, control, or stop funds from being moved. These apps allow users to truly become their own bank. We’ve talked a little about this before. This group of companies is nowhere near the same level of threat as the biggest crypto exchanges. However, this group really understands DeFi and the magic it can bring. This class of products is heavily engineer-driven and at the bleeding-edge of DeFi innovation. These products are certainly worth discussing. Okay, let’s dive in.
Users & Audience
These non-custodial crypto wallets are especially popular among the most hardcore blockchain nerds and crypto cypherpunks.
“Not your keys, not your coins.”
This meme is endlessly repeated among longtime crypto hodlers. If you’re not in complete control of your crypto (i.e. using non-custodial wallets), then it’s not really your crypto. There has always been a close connection between libertarianism & cryptocurrency. This type of user wants to be in absolute control of their money and become their own bank. In addition to the experienced crypto geeks, for some people, these products will mean the difference between life and death. Imagine a refugee family that wants to safely protect their years of hard work — their life savings — as they travel across borders. Carrying cash could put their safety or money at risk. A few years ago I spent time in Greece at refugee camps — I know first-hand this is a real use-case. https://preview.redd.it/vigqlmgg1lg51.png?width=800&format=png&auto=webp&s=0a5d48a63ce7a637749bbbc03d62c51cc3f75613 Or imagine a family living under an authoritarian regime — afraid that their corrupt or oppressive government will seize their assets (or devalue their savings via hyperinflation). Citizens in these countries cannot risk putting their money in centralized banks or under their mattresses. They must become their own bank. These are the common use-cases and users for non-custodial wallets.
Let’s take a look at some of the strengths with non-custodial products.
Regulatory arbitrage Because these products are “non-custodial”, they are able to avoid the regulatory burdens that centralized, custodial products must deal with (KYC/AML/MTL/etc). This is a strong practical benefit for a bootstrapped startup/buildedeveloper. Though it’s unclear how long this advantage lasts as products reach wider audiences and increased scrutiny.
User Privacy Because of the regulatory arbitrage mentioned above, users do not need to complete onerous KYC requirements. For example, there’s no friction around selfies, government-issued IDs, SSNs, etc. Users can preserve much of their privacy and they don’t need to worry about their sensitive information being hacked, compromised, or leaked.
Absolute control & custody This is really one of the great promises of crypto — users can become their own bank. Users can be in full control of their money. And they don’t need to bury it underground or hide it under a mattress. No dependence, reliance or trust in any third parties. Only the user herself can access and unlock the money.
Now let’s examine some of the weaknesses.
Knowledge & Education Most non-custodial products do not abstract away any of the blockchain complexity. In fact, they often expose more of it because the most loyal users are crypto geeks. Imagine how an average, non-crypto user feels when she starts seeing words like seed phrases, public & private keys, gas limits, transaction fees, blockchain explorers, hex addresses, and confirmation times. There is a lot for a user to learn and become educated on. That’s friction. The learning curve is very high and will always be a major blocker for adoption. We’ve talked about this in our Spreading Crypto series — to reach the masses, the crypto stuff needs to be in the background.
User Experience It is currently impossible to create a smooth and performant user experience in non-custodial wallets or decentralized applications. Any interaction that requires a blockchain transaction will feel sluggish and slow. We built a messaging app on Ethereum and presented it at DevCon3 in Cancun. The technical constraints of blockchain technology were crushing to the user experience. We simply couldn’t create the real-time, modern messaging experience that users have come to expect from similar apps like Slack or WhatsApp. Until blockchains are closer in speed to web servers (which will be difficult given their decentralized nature), dApps will never be able to create the smooth user experience that the masses expect.
Product Limitations Most non-custodial wallets today are based on Ethereum smart contracts. That means they are severely limited with the assets that they can support (only erc-20 tokens). Unless through synthetic assets (similar to Abra), these wallets cannot support massively popular assets like Bitcoin, XRP, Cardano, Litecoin, EOS, Tezos, Stellar, Cosmos, or countless others. There are exciting projects like tBTC trying to bring Bitcoin to Ethereum — but these experiments are still very, very early. Ethereum-based smart contract wallets are missing a huge part of the crypto-asset universe.
Technical Complexity While developers are able to avoid a lot of regulatory complexity (see Strengths above), they are replacing it with increased technical complexity. Most non-custodial wallets are entirely dependent on smart contract technology which is still very experimental and early in development (see Insurance section of this DeFi use-cases post). Major bugs and major hacks do happen. Even recently, it was discovered that Argent had a “high severity vulnerability.” Fortunately, Argent fixed it and their users didn’t lose funds. The tools, frameworks, and best practices around smart contract technology are all still being established. Things can still easily go wrong, and they do.
Loss of Funds Risk Beyond the technical risks mentioned above, with non-custodial wallets, it’s very easy for users to make mistakes. There is no “Forgot Password.” There is no customer support agent you can ping. There is no company behind it that can make you whole if you make a mistake and lose your money. You are on your own, just as CZ suggests. One wrong move and your money is all gone. If you lose your private key, there is no way to recover your funds. There are some new developments around social recovery, but that’s all still very experimental. This just isn’t the type of customer support experience people are used to. And it’s not a risk that most are willing to take.
Integration with Fiat & Traditional Finance In today’s world, it’s still very hard to use crypto for daily spending (see Payments in our DeFi use-cases post). Hopefully, that will all change someday. In the meantime, if any of these non-custodial products hope to win in the broader consumer finance market, they will undoubtedly need to integrate with the legacy financial world — they need onramps (fiat-to-crypto deposit methods) and offramps (crypto-to-fiat withdraw/spend methods). As much as crypto-fanatics hate hearing it, you can’t expect people to jump headfirst into the new world unless there is a smooth transition, unless there are bridge technologies that help them arrive. This is why these fiat integrations are so important. Examples might be allowing ACH/Wire deposits (eg. via Plaid) or launching a debit card program for spend/withdraw. These fiat integrations are essential if the aim is to become the bank of the future. Doing any of this compliantly will require strong KYC/AML. So to achieve this use-case — integrating with traditional finance —all of the Strengths we mentioned above are nullified. There are no longer regulatory benefits. There are no longer privacy benefits (users need to upload KYC documents, etc). And users are no longer in complete control of their money.
One of the great powers of crypto is that we no longer depend on banks. Anyone can store their wealth and have absolute control of their money. That’s made possible with these non-custodial wallets. It’s a wonderful thing. I believe that the most knowledgeable and experienced crypto people (including myself) will always be active users of these applications. And as mentioned in this post, there will certainly be circumstances where these apps will be essential & even life-saving.
However, I do not believe this category of product is a major threat to Genesis Block to becoming the bank of the future.
They won’t win in the broader consumer finance market — mostly because I don’t believe that’s their target audience. These applications simply cannot produce the type of product experience that the masses require, want, or expect. The Weaknesses I’ve outlined above are just too overwhelming. The friction for mass-market consumers is just too much. https://preview.redd.it/lp8dzxeh1lg51.png?width=800&format=png&auto=webp&s=03acdce545cd032f7e82b6665b001d7a06839557 The winning bank will be focused on solving real user problems and meeting user needs. Not slowed down by rigid idealism like censorship-resistance and absolute decentralization, as it is with most non-custodial wallets. The winning bank will be a world-class product that’s smooth, performant, and accessible. Not sluggish and slow, as it is with most non-custodial wallets. The winning bank will be one where blockchain & crypto is mostly invisible to end-users. Not front-and-center as it is with non-custodial wallets. The winning bank will be one managed and run by professionals who know exactly what they’re doing. Not DIY (Do It Yourself), as it is with non-custodial wallets. So are these non-custodial wallets a threat to Genesis Block in winning the broader consumer finance market, and becoming the bank of the future? No. They are designed for a very different audience. ------ Other Ways to Consume Today's Episode:
How can I be successful in cryptocurrency trading?
First thing you have to do is to know about yourself and how much time you have got to give this as a carrer. Then after everythig starts.
Learn about tech behind cryptocurrencies (mintable coins, nonmintable coins, Blockchain and other tech stuff ).
Learn about cryptocurrencies trends of past year and whats going on currenctly.
Select the best crypto coin or coins you are interested to invest in.
Research about their tech more and follow the trends for some period.
Learn the basics of crypto investments i.e. When to enter and when to exit.
Make a plan your investment Goals.
Keep following latest news and announcements.
If you are done with above, You are ready with basic knowledge to be a professional crypto investor. Our last recommendation from our side to make you work easier. Jumpingbearscrypto is a cryptocurrency trading and investment platform that helps their investors to trade by carefully examining the volatility of bitcoin and other crypto currencies. We buy special signals from platforms like Binance and other exchange companies, which enables JBcrypto to make 40% to 60% in 24hrs depending on the market and pay their investors 1% to 3% daily. Do share with your friends and lovely people in your contact.
Lost 94% of my capital (over $100K) mostly due to Substratum, but it was my own fault
I posted a comment in the daily discussion thread today about my $100K+ crypto losses and among the kind responses a few people asked for more information on what happened. So I thought I'd post it here to explain. Note that I'm not blaming anyone else for this, it was my own stupidity and I should have stuck with Bitcoin instead of gambling so much on an altcoin, but sad to say I had drunk the koolaid and basically I fell for a scam project. I think I was sucked in to Substratum because the IDEA sounded so good. A decentralized Internet, breaking through firewalls and stuff like that. Even though the price was falling all last year I thought I was buying the dip but it kept dipping more and more. In the end I spent about $115,000 on Substratum ERC20 tokens, and I was forced to sell them all last week for $7K to pay for an emergency home repair. I lost 94% of my capital. Even a week ago I was convinced it would recover in the next bull market, but the Binance delisting was what made me realize it was always a scam. After that I looked into it more and found out about the leader gambling away the last ICO money, shorting ETH at the bottom, the fabricated GitHub commits, fake partnerships, the flaw that lets the devs print unlimited tokens (same problem as PRL). Plus lots more red flags that I just didn't see before. I also found out it can't even do decentralized Internet because it's reliant on centralized ISPs... SMH. It fell so hard after the Binance delisting that its even out of the top 300. I think it was ranked 50 when I started buying. I feel like a complete fool to be honest. In the end I had to sell because I needed the money and if I didn't sell my $7K would probably be down to $3K or $4K in a few months. I'll buy crypto again but in my position I won't have the funds to buy again for another six months or more. Knowing my luck crypto prices will pump back up now that I sold, although I don't think SUB will ever recover because of all the red flags and the likelihood of it being deemed a security by the SEC and anyway there's no decent exchanges to trade it on now. So that's my story.
Weekly Update: First ParJar Pilot Class, Constellation partners with Chainlink, $BAT on 2gether, Pynk on BlockMAG... – 11 Oct - 17 Oct'19
Hi everyone! Here’s your week at Parachute + partners (11 Oct - 17 Oct'19): The first ParJar Pilot Class is officially off to a roaring start with 5 amazing projects and their communities. Here’s to a great future. This was the perfect occasion to announce a ParJar Battle Royale for our ParJar Pilot partners. Blood will be spilled next week. Pow! ParJar now has almost 20k active users. It works in 400+ communities and has seen 400k+ transactions. Say what! Par4Par lottery entered stage 5 this week. The stakes are even higher. 250k $PAR in prizes. Dang! Reflecting on Vitalik Buterin’s observation, Cap says: “...we’ve done things in reverse here at Parachute - we grew an amazing community around exploring ideas and built our tech to meet what they needed”. What are your thoughts on buying houses for USD 1 each in an Italian town for building the Parachute village? Cap’s recommendation. Haha. Andy’s Advent calendar. Each window is a 16.9 oz can of beer. Sweet! We saw Tiproom become the 17th most active group on Telegram a few weeks back. Well, hold on to your pants because it is now the 12th most active group. Whoa! A big reason for the group’s constant buzz are the amazing trivias hosted by the TTR crew. This week was no different. Doc Victor’s Sunday medical trivia had 8 Qs, 3k $PAR each. This was a quiz with a twist. In Doc’s words: "..beware, in each question they will have to diagnose a case based on symptoms and signs that I will give them". Noice! Charlotte’s Tuesday Trivia had 10 questions with a 25k $PAR prize pool. Another trivia by Victor (not the Doc) had another 10 Q’s, 2500 $PAR each. Listened to the TTR theme yet? DJ Jose in da house with a rocking theme. Wicked! Congratulations to Mario for winning the pet contest in TTR. Sebastian made a compilation video of all the entries. Awww! Let’s see if Cap’s guerrilla marketing at Burger Joint in NYC gets us a new Parachuter Victor’s Friday trivia at aXpire was the usual 10 Q, 100 $AXPR per Q affair. And like always, super duper fun! If you missed news from Week 41 at aXpireverse, Joakim’s got your back. Check out his video to catch up. CEO Gary Markham travelled to India this week to prepare for the Bilr release. Click here to track the latest 20k $AXPR burn. Plus, a featured article by Hosting Advice was pretty cool. 2gether added Basic Attention Token ($BAT) support to the app this week. Let the $BAT spending begin! Use the invite code: paywithbat to get 100 $2GT free when you sign up for the app. Know of a startup that’s going to Malta Blockchain Summit? Let the XIO crew know since the team will be attending along with Uptrennd. Benjamin’s tutorial video on market cycles with the BOMB token as case study was riveting and full of useful info. This week’s Dash-walk-the-talk discussion revolved around getting unstuck as an entrepreneur. After taking inputs from the community 2 weeks back, the BOMB Board finalised on the team and way forward to manage the BOMB Instagram. For the latest update on the Birdchain app, click here. Congratulations to Bounty0x for crossing 2.5x of its funding goal on Republic with more than 2 months to go. Voyager is offering a 5% annual interest on ETHOS tokens held on their platform. Read more about it here. The news was also covered by SludgeFeed. Wendy O shared her usability experience of Voyager as well. Bitcoin ATM in Alexis’ neighbourhood. Cool! The McAfeeDex launched last week is off to a tremendous start. Bitcoin Cash’s Roger Ver spoke briefly on it in a news roundup video. 6 portals are live already. If you’re still wondering how to list your token on the Dex, here’s a simple guide from the man himself. Binance Chain support coming soon! SwitchDex is now trackable on DappRadar and State of the DApps. The team has set up a dedicated TG group for folks wanting to BUIDL on SwitchDex. Also, Callisto Network is slated to do a security audit of the McAfeeDex contracts. Great stuff! Peeps who missed the Fantom AMA with G.Crypto from 2 weeks back, can catch up from the transcript released this week. The latest technical update is detailed and covers all major changes in code. Uptrennd started a new video intro contest for a 2500 $1UP prize pool. Woot! Full transcript of Jeff’s interview with OmiseGo CTO Kasima from few weeks back was released this week. $1UP can now be spent in tons of retail chains thanks to a newly forged partnership with MobiePay. Last week we saw Jarau buy a laptop with his Uptrennd earnings. This week we learnt about Zubair buying a mobile phone with his $1UP earnings. Neat! The latest biweekly Dev update and weekly District update from Ditrict0x covers news such as Ethlance redesign, Meme factory NSFW filter etc. Uptrennd continues to breach new heights on Alexa rankings every week OST has set up a community slack to coordinate all Pepo related feedback received for the Pepo app. So join in if you want to help out! Did you know that Pepo is home to some of the most influential people in crypto? This week, we heard from Ethereum and Coinbase investor Bobby Goodlatte. The app crossed 20k P2P transactions and is now live in both app stores. The first such with micro-transactions, in-app purchases and cash-out options for crypto. Few weeks back, the Sentivate community chose to burn tokens (vs a raffle). This week, they voted on how many to burn. The $SNTVT crew sat down for a live Q&A with Bit Shaman this week. The team also wrote about possible future use-cases of the Universal Web with short story threads. Cryptoreview.xyz’s review of the project also came out this week. Constellation announced that it is joining Chainlink as a new node operator in order to stream enterprise data to Chainlink’s smart contracts. Click here for the PR release. The technical overview paper gets into details of what the partnership means for both companies. Bags Token hosted an AMA this week in their Telegram group. Hope you had an opportunity to get your doubts cleared. Community member Con built a $BAGS-centric image/gif board called bagsbook. Check it out! In a bit of a sobering news, Scroll (XD Token) ceased business operations this week. Constellation will act as an oracle for Chainlink by streaming verified data to the network Pynk was featured in the latest edition of the BlockMAG published by the Malta Blockchain Summit. COO Rupert Barksfield was invited by NatWest to speak on how to get traction for tech projects. Rupert’s interview by Ayo News where he explains how AI and crowd wisdom works in tandem at Pynk came out as well. Pynk Tank is Pynk's very own think tank intiative which hosts meet ups, panel discussions, podcasts with entrepreneurs, thought leaders etc. Their latest event was this week. Folks who are yet to figure out what Pynk does can read co-founder Zack Yurtsever’s article that explains it all. Following up on the Hydro Vault sneak peek from last week, check out its detailed update on the dev front. How can the Hydro platform be used to get acceleration for your fintech product? Click here to read how. Co-Founder Mike Kane travelled to the AWS Loft in NYC for the Shearman & Sterling Empire Startups Demo Day event to showcase Hydro’s fintech solutions. $HYDRO got listed on the Coinone exchange. This will be $HYDRO's first IDR fiat on-ramp. With bZx joining the Hydro dApp store this week, it now has an impressive line up of partners. Thanks to the massive community push, $HYDRO will be listed on Atomic Wallet in its next release. For a quick summary of the latest news from Hydroverse, click here. Most of these have already been covered in our updates. Silent Notary conducted the first ever speedtest of its IDL network. The team published the results and steps to optimise the code. In its current state, the network is able to execute 5-12 transactions per second. The first version of the SelfKey Corporate Wallet was launched this week. The corporate wallet will allow you to purchase digital services for your business in the future. Plus, a partnership with ChangeNOW allows easy crypto swapping from the marketplace. And with that, we close for another week in the Parachuteverse. See you soon with another update. Cheers!
$13,000 in Debit Card Fraud Okay, I’ll start by telling you never make your phone password 1111, 2222, 3333, Etc. with the amount and type of information we store in our phones these days. I use FaceTime, but it doesn’t always work for multiple reasons, face being covered etc., so for the easiest, quickest password for this rare occasion for me was 33333. Not smart. (First 3 paragraphs are the backstory, skip to the 4th to get to the nitty and gritty. Backstory TL;DR I lost one of my phones, thinking It was somewhere at home or accidentally thrown away, wasn’t too worried about it.) Okay, I am at the end of my wits and starting to get extremely frustrated at the run around I’m receiving. I have 2 phones and i hate it and have been thinking about getting rid of one of them. The day after Christmas after after multiple family stops the day before and really, what I call, chaos, I realize I can’t find one of my phones. I check find my IPhone and it is offline. Not stressed at the moment, just figured it’s around the house somewhere buried under some wrapping paper somewhere who knows, It’ll show up eventually, plus I finally only have one phone and I kind of enjoy it. So I leave the next day for our yearly trip to Florida. Still couldn’t find my phone, but didn’t search to hard to be honest. Gone till the 6th. Only find out one problem. My bank account is under the number that I lost, so with 2FA, I can’t access my bank account without that number, still not a big deal, not freaking out. Now I have a few days to find this phone when I get home before I leave on the 9th for another week long trip, but I’m thinking it’s gonna take me 5 min. Get home catch up up some sleep. Tear the house apart, not there. I mean I looked everywhere. Well, Time to leave again. Confused as all hell, but still not that worried. I made plenty of deposits in my bank account and have another at another bank so I’m not needing to check my bank account at all as I know I’m good. Still not stressing it I leave and will finally get it all sorted out when I get home. Not knowing what cluster fuck I had in store for me I had planned on leaving again on the 18th for 4 days and the 24th till the end of January. Get home. Go to every place I had went on Christmas, even after having them all look, figured I’d look again. Now I’m leaving thinking it must just have been thrown away with all the trash from Christmas and when I get back I’ll just cancel that number, call the bank to switch numbers, and call and switch over all the other accounts I have tied to that number and change them to the new number. Which is quite a few. Probably why I have been putting it off for so long. Finally decide I’m gonna stick with 2 numbers. Just going to get me a new phone with the same number when I get home and we’re all good. Okay that’s the backstory of how it took me so long to notice what had been happening to me the whole time. Now to the good stuff. Get my number back. Everything’s good right? Wrong. I go to log into my bank account and the number and email address are changed. I immediately contact the bank to let them know and cancel my debit card and credit cards and tell them everything that has happened, also find out there had been $13,368 in fraudulent charges on my debit card, which I had in my possession the entire time. After reporting the fraudulent charges to capital one, they said they would investigate, I had also emailed the company to let them know of the charges and requested documents on all of the charges and told them I would be more than willing to help in anyway I can or give them any documents they would need to help with the investigations. I told Capital One the same thing. As I wait on a reply through my own investigation. I had recognized the company that my card was charged to as one that I used to buy cryptocurrency through an exchange that I had previously used called KuCoin. So I did my own research turns out my phone didn’t get thrown away because the only way this could have happened is if someone had found my phone. I have all my account info for everything along with my debit card and credit card numbers, CVC, I mean everything, stored on my phone in documents in the cloud. So they got on the crypto exchange, the only one, that doesn’t have a delayed withdrawal time, or a KYC and 2FA set up (I set it up just to try it out, didn’t do much with it, and went back to Coinbase and Binance) and used my card info to send bitcoin to my account on KuCoin after changing the email and number, and immediately withdrew every deposit as soon as they got it. On Blockchain.com, you can see they were all sent to the same exact wallet, and from that wallet to a few others. They also put money on someone’s account through inmatesales.com with my debit card, so I’m assuming one of their buddies could get some nutty bars, fresh undies, and a phone call or something. I have never previously used this website. 4 Days later I recieved an email from Capital one saying they have concluded their investigation and denied my claim. 4 Days is pretty quick, at least I think as I have never had a fraudulent charge or disputed any charge on any of my accounts, ever, in my life so I don’t know the process. They never asked for any documentation to support my claim, when I started to ask questions and seek information into their investigation they told me I could request a document on how they reached their decision and would not discuss the matter any further. Any question I asked regrading the dispute was answered with “we will not discuss this matter any further”. Literally any question I had was answered with that line. What pisses me off the most was after I told them that all my information was at risk that along with new card number, I would also like to change my account numbers; which were obviously compromised as well. They told me they wouldn’t do that. Wtf. Guess I’ll just close my account then. Basically what I’m asking is what is the process to getting my money back? Their reasons for denying my claim is that the CVC number was used, I’ve had previous business with the company, SMS confirmation (don’t know what number they are talking about, but either way, I wasn’t in possession of my number, and they changed the number on my account, and the last reason was that my story doesn’t match account or login records (I was never able to log into my account through the entire month due to 2FA security). There’s no way that my story doesn’t match the records because it is what happened and the truth is the truth and facts are facts. Am I going to have to hire a lawyer and take them to court? If it wasn’t this much money I’d just say screw it and eat my losses and move on but now I’m pissed and it’s about principle now. Am I pretty much screwed at this point?? Let it be known this is only with my capital one account. Which isn’t the only account they were able to get into. They got into my TD Ameritrade account and my fifth third account, both with debit cards. Help me please. I know it might seem like I have enough money to be able to make it through this, but I don’t. I’m actually broke and just barely making it by, and that $13,000 was the most money I’ve ever had in my bank account. :( I’m scared. Please help. TL:DR. I Lost my phone and the person who found my phone got into all my accounts and swindled me out of $20k.
Not saying that buying pizza with Bitcoin will result in a similar mistake, but nowadays, you can get your pizza by spending close to 50 cryptocurrencies (Bitcoin included) at PizzaForCoins. The service acts as a sort of intermediary as it first locates a pizza venture close to your location, and then allows you to order it and pay for it digitally. Do keep in mind that a small fee for the ... Buying Bitcoin. You can buy Bitcoin with fiat currencies, such as USD, and also with other cryptocurrencies. From our website. Visit our official Buy Bitcoin page. Select the currency you want to buy. Choose whether you want to buy in USD or any other local currency, and enter the amount. Carefully review then add your wallet address and click Continue. Complete the purchase process by ... Not only is buying things with Bitcoin really easy, but more and more merchants are accepting Bitcoin as a payment method. How You Buy Things From a Merchant With Bitcoin If a merchant or shop accepts Bitcoin, they will usually display the orange and white Bitcoin logo, or some other notice such as “Bitcoin Accepted Here”. If we talk about short term trading, we should use 5-15 minute timeframes. In the current situation, when the price of Bitcoin can move in both directions and for buying, we are far from a good entry zone, short term trading can be a workable variant. Here is an example of a possible long trade that is based on a breakout above SMA100. If the price can move above SMA200 and SMA100, we will be ... Binance – Buy & Sell Bitcoin Securely – Apps On Google Play for Beginners . Table of Contents The Main Principles Of Bitcoin Trading – Get Familiar With Bitcoin Digital Currency The 10-Second Trick For Trade Bitcoin (Btc): Your Guide To Bitcoin Trading – Capital … The smart Trick of How To Trade Bitcoin In 2020 – A Comprehensive Guide That Nobody is Talking About Unknown Facts ... Today, I’m going to teach you how to use Binance.Buying and selling cryptocurrency can be stressful, so it’s important to choose an exchange that you can trust.It’s also important to find an exchange that meets your needs, and isn’t too complicated to use.There’s nothing worse than opening an account on an exchange and then realizing you don’t know how it works! In this article lets look at How to use Binance to Buy and sell Bitcoins and other cryptocurrency. Step 1: Click HERE and open the Binance website on your browser.. Step 2: At the top right you will find the link Login or Register.Click on the text Register and a new page will open up. Note: Click HERE for the Binance Mobile App guide.. Step 3: On the registration page fill in your email id ... The market gives us another trade opportunity based on the 1H timeframe. The price reached the resistance zone formed by SMA200 and 10 400$ resistance. We have a local swing high which can be used as an entry point in combination with a breakout signal. Here is an example of a long trade: Buy above 10 485$ Stop below 10 165$ Profit Target at 11 245$ Risk per trade must be no more than 10% of ... Selling things for bitcoin online doesn't have to be hard. In fact, it shouldn't be, given the decentralized nature and low fees of peer-to-peer
Binance: How To Use Binance Exchange to buy Bitcoin & other Cryptocurrency Beginners Tutorial Guide
If you're brand new to crypto, you might have just purchased your first Bitcoin or Ethereum, but you probably want to jump into other assets like Ripple, Car... In today's video, we take a look at the binance expected acquisition of coinmarketcap and whether or not this is good for crypto. If you would like to be highlighted on my channel please reach out ... This video is for those new to learning how to buy and trade Bitcoin and other cryptocurrencies. Here I will talk about the basic uses of this cryptocurrency exchange and will get you buying and ... How to buy and sell Cryptocurrencys on Binance. BitCoin and Ripple Binance https://goo.gl/AzWFhh Once you buy or sell $100 of digital currency or more will g... Get a lifetime 10% fee discount when trading crypto on Binance: https://www.binance.com/en/register?ref=FOC8JZJ8 How to Buy Bitcoin with Credit Card / Debit ... A beginner’s guide to the Binance Exchange. In this Binance Tutorial, I show you the process of how to buy and trade Bitcoin and AltCoins. I explain the bene... Buying Bitcoin or other cryptocurrencies like Ethereum and Binance Coin can sometimes be tough. Binance.sg is one of the new Fiat-Crypto exchange launched in Singapore. With it, people are able to ... Crypto-Adventures #07 - BINANCE EXCHANGE - In this video I show you how to deposit Bitcoin on to the Binance Exchange, and then how to go in to the Tron Market to buy Tron using your Bitcoin. !!👨💻 SET UP A BINANCE US ACCOUNT 👩💻 !! https://www.binance.us/?ref=35000644 Binance US now allows you to use a Debit card to make purchases ...