undefined | Better HN

0 pointswebmaven3y ago0 comments

The legal system has failure modes that are just as easily exploitable, but humans can intervene and reverse the failure, make people whole, etc.

The problem with smart contracts isn't that there are bugs, but that buggy results are final with little to no recourse, by design, unless you get everyone to agree to hard fork the chain (rolling the "bad" transactions back and eplacing the buggy contract) and/or the implementation (if the bug was in the platform rather than the contract).

The legal system has a similar principle of not being liable for conduct that predates a ruling or law that forbids it, but it also has the principle of agreements being interpreted according to common sense understanding by a person with ordinary skill, and where skill differences exist between them the non-expert's interpretation is the one given precedence.

These meta rules don't have equivalents in smart contract systems, which makes them brittle. The only way smart contracts end up being used for non-trivial purposes is if they are made explicitly subordinate to the existing legal infrastructure in ways that will gum up the works, or if smart contracts are subject to mandatory formal verification possibly including game theoretic 2nd order effects.

0 comments

chx3y ago

There was a wonderful summary of what smart contracts are.

https://twitter.com/qrs/status/1395784294451265536

> Smart contracts should be considered self-funded bug-bounty platforms.

cinntaile3y ago

Mark the "should". It's just an opinion, not a fact.

arcticbull3y ago

More like a piñata full of money sitting next to a whole pile of sticks.

1 more reply

lostcolony3y ago

"Should" is modifying "consider". Considering something is obviously subjective and not fact.

1 more reply

3143y ago

If the kid in the story had speculated about his attack it would be an opinion. His attack demonstrates that it is fact. Contrast this with your opinion that the courts will decide his actions were illegal.

1 more reply

fvdessen3y ago

AFAIK the legal system still applies to crypto; the recourse when somebody hacks your smart contract is the same as when somebody defrauds you; you sue. Except with smart contracts you have more traceability as to what happened.

And you don't need to make the smart contract explicitly subordinate to the law, they are as a matter of fact, because everything de facto is. This idea that code is law and crypto exists in a vacuum is complete delirium (although a popular one and sign that the scene has a lot of room to mature)

zarzavat3y ago

The legal contract of the EVM is “you are allowed to execute any computationally legal sequence of instructions on the EVM”. At least that’s how it has always been presented.

People who post smart contract code on the EVM are equal users of a shared computation infrastructure. If they want to put legal terms on who can use their smart contract and what for, they should need to make their own blockchain platform, because they certainly don’t own Ethereum.

The law already regulates mistakes in traditional markets. If you accidentally sell your shares for a fraction of what they are worth, you cannot go to a judge and ask them to return the “stolen” shares. When you subject yourself to a mechanistic market system, the predictable operation of the system is more important than any participant’s bad fortunes.

vageli3y ago

> The legal contract of the EVM is “you are allowed to execute any computationally legal sequence of instructions on the EVM”.

Where is this contract? I've never seen it. The rest of your argument is based on this premise. The "legal contract" of a computer program is the same, yet we have laws on what you can and can't do to other people's computer programs.

> The law already regulates mistakes in traditional markets. If you accidentally sell your shares for a fraction of what they are worth, you cannot go to a judge and ask them to return the “stolen” shares.

Someone taking all the money from a smart contract you gave money to is not like your fictional example of a person selling their shares for the wrong value.

coffeedan3y ago

I mean, anyone can sue for anything, but if you're suing for this, good luck: a) finding a judge/jury that understands it, and b) collecting

mullingitover3y ago

The jury just needs to believe “this person stole something,” and there’s a good chance they’ll judge accordingly. At least there’s a good enough chance that it will happen that it will likely lead to an out of court settlement.

LeifCarrotson3y ago

I think a lot of the appeal of crypto/smart contracts is that they are final with little to no recourse, humans can't intervene and exploit failure modes which individuals using the so-called contracts can't defend against.

Corporations and wealthy individuals with influence in the writing of this legal system, with massive amounts of financial resources, with negligible moral agency, and with limited criminal liability find very different utility in the ability to use the legal system to roll back contracts, to enforce them, or to ignore them.

Those who find themselves on the other side of this power disparity would often prefer to risk a potentially buggy but inviolate contract than one which they expect to be abused against them.

ekidd3y ago

> Those who find themselves on the other side of this power disparity would often prefer to risk a potentially buggy but inviolate contract than one which they expect to be abused against them.

There is no way that AT&T, Comcast or Bank of America will ever agree to a smart contract written by an ordinary customer. As always, the companies will write their own contracts, and customers will either accept them, or leave. And if the company has monopoly power, tough luck.

chii3y ago

so what happens if the company's smart contract has a bug in it, and the customer takes advantage of it?

In an analogous situation, if a shop mis-labels the price of an item (let's say, they forgot a zero or two for a $1000 item), the customer theoretically has the legal basis to purchase it at the labeled price. How is this scenario any different to a block chain contract with a bug?

1 more reply

mbreese3y ago

I want to know what kind of contracts people entered into before this where they thought they were being abused by a big corporation?

This seems like a noble endeavor, but not an entirely practical one. Both sides of a transaction have to agree to these smart contracts, so where is this an advantage (outside of internal crypto trading)?

majormajor3y ago

A bunch of those many-to-one individual:corporation contracts (like phone service) are in such imbalanced markets that you'd have to overcome the power balance problem in order to get the other party to adopt the "smart" contract.

But if you can overcome the power balance problem, you can just fix the contracts directly anyway without them being smart?

jeffbee3y ago

I don't know what jurisprudence you live under, but under English common law (also America, Canada, etc) - which, I must say, I also always denounce and rarely defend - inequitable negotiating power between parties to a contract is considered by courts when adjudicating whether parties have broken it or can be awarded damages. We don't have a system where big powerful organizations can just dictate contracts to powerless individuals and then later enforce them.

thaway28393y ago

Unfortunately US courts have taken a very dim view towards adjusting balance of power.

For example, I don't think there's anywhere else where the mere act of purchasing a product or service can result in you giving up the right to sue the company in court and be forced to enter arbitration with an arbiter of the company's choice.

ummonk3y ago

That's ridiculous. If we're talking power disparities and differences in resources, corporations could just code up standard smart contracts with loopholes in them that allows the corporations to steal from their customers. It's not like customers have the resources to carefully audit the smart contract and make sure there aren't any backdoors that the corporation has written in to exploit.

theelous33y ago

This is a significantly more ridiculous premise than the one you're calling ridiculous.

1 more reply

woojoo6663y ago

That's like saying corporations can release complex open source code with backdoors in it and the userbase won't notice. Are there any big instances of this happening?

j / k navigate · click thread line to collapse

0 comments

chx3y ago

There was a wonderful summary of what smart contracts are.

https://twitter.com/qrs/status/1395784294451265536

> Smart contracts should be considered self-funded bug-bounty platforms.

cinntaile3y ago

Mark the "should". It's just an opinion, not a fact.

arcticbull3y ago

More like a piñata full of money sitting next to a whole pile of sticks.

1 more reply

lostcolony3y ago

"Should" is modifying "consider". Considering something is obviously subjective and not fact.

1 more reply

3143y ago

1 more reply

fvdessen3y ago

zarzavat3y ago

The legal contract of the EVM is “you are allowed to execute any computationally legal sequence of instructions on the EVM”. At least that’s how it has always been presented.

vageli3y ago

> The legal contract of the EVM is “you are allowed to execute any computationally legal sequence of instructions on the EVM”.

Someone taking all the money from a smart contract you gave money to is not like your fictional example of a person selling their shares for the wrong value.

coffeedan3y ago

I mean, anyone can sue for anything, but if you're suing for this, good luck: a) finding a judge/jury that understands it, and b) collecting

mullingitover3y ago

LeifCarrotson3y ago

Those who find themselves on the other side of this power disparity would often prefer to risk a potentially buggy but inviolate contract than one which they expect to be abused against them.

ekidd3y ago

> Those who find themselves on the other side of this power disparity would often prefer to risk a potentially buggy but inviolate contract than one which they expect to be abused against them.

chii3y ago

so what happens if the company's smart contract has a bug in it, and the customer takes advantage of it?

1 more reply

mbreese3y ago

I want to know what kind of contracts people entered into before this where they thought they were being abused by a big corporation?

majormajor3y ago

But if you can overcome the power balance problem, you can just fix the contracts directly anyway without them being smart?

jeffbee3y ago

thaway28393y ago

Unfortunately US courts have taken a very dim view towards adjusting balance of power.

ummonk3y ago

theelous33y ago

This is a significantly more ridiculous premise than the one you're calling ridiculous.

1 more reply

woojoo6663y ago

That's like saying corporations can release complex open source code with backdoors in it and the userbase won't notice. Are there any big instances of this happening?

j / k navigate · click thread line to collapse