In response to the Letter in Support of Responsible Fintech Policy, a factual and reasonable call for Congress to resist intense lobbying from crypto-speculators and venture capitalists1, cryptographer Matthew Green has responded with a blog post In defense of crypto(currency) that doesnât effectively rebut the letter to Congress. Instead, he confirms most of their points.
(I say cryptoassets, not cryptocurrencies, because theyâre not viable as currencies: theyâre designed to be deflationary and have proven absurdly volatile. Of course, the greater fool left holding the bag will find theyâre not assets in the colloquial sense, either.)
I wouldnât normally bother writing about cryptoassets, because theyâre absurd and immediately discredit themselves better than I could. However, Greenâs defense is interesting because he has significant credentials and experience in cryptography. He is also a co-developer of a leading privacy-protective (and deflationary) cryptoasset, Zcash. So we can reasonably hope for better-informed and coherent arguments than we normally see from crypto-boosters.
But the fact that a uniquely-qualified expert in the field is not able to rebut legitimate concerns, including the ones he raises, is interesting enough to comment on. Like Green, Iâm sure Iâll regret this.
Objection: âCryptocurrency is terrible for the environmentâ
Green cedes this point. His rebuttal is that we can fix that with what he agrees is oligarchy:
Proof-of-stake systems are not perfect: they still lead to some centralization of power, since in this paradigm the rich tend to get richer. However itâs hard to claim that the result will be worse than the semi-centralized mess that proof-of-work mining has turned into.
While boosters estimate that proof-of-stake will reduce energy consumption by 3 orders of magnitude, itâs worth noting that oligarchy is very bad, actually2. Itâs something we should be looking to solve, not exacerbate. People who donât like centralization should, in theory, agree; but, of course, most anarcho-capitalists believe that they will get to be Immortan Joe. When you scratch the surface of anarcho-capitalism you typically find feudalism, as we do here.
So we donât seem to have any solution to the theoretical3 computing science problem of distributed consensus that isnât also hugely destructive to the world in some way. Green presents no argument that the best way to solve âthe semi-centralized mess that proof-of-work mining has turned intoâ is anything other than simply not doing PoW or PoS.
To round this section out, Green repeats the punchline that Ethereum 2 is coming Real Soon Now, and mentions in passing that wasting hard drives is also an option.
Objection: âPublic blockchains can never support banking features like transaction reversal.â
Greenâs rebuttal seems to be twofold: (1) stablecoins are centralized and hence can freeze or burn money; and (2) smart contracts could say anything, including provisions for reversal.
In the cryptoasset ideology, centralization is The Big Problem That Must Be Solved (Unless We Get To Be The Feudal Lords, In Which Case Centralization Is Awesome). So presenting centralization as a solution is not functional as a rebuttal.
Thereâs also the small matter that stablecoins are basically a rebirth of the âwildcatâ banks of the 19th centuryâââhardly a compelling vision for the future.
It might be true that smart contracts could have provisions for reversal, but the reality on the ground today is that âcode is lawâ, those âlawsâ donât typically have reversal provisions, and they end up being âself-funding bug bountiesâ that just destroy peopleâs âassetsâ in an automated way.
Green does not mention that stablecoins have a history of being fantastically crimey and/or not even a little bit stable.
So perhaps the letter authors are wrong that public blockchains can âneverâ support transaction reversal. Anyway, the combination of reversible + decentralized doesnât exist now. Perhaps there will be a flurry of innovation in the area of smart contracts that enable refunds, but weâd still face the question of why thatâs better than regular bank databases.
Objection: âCryptocurrency doesnât scale [or the fees are too damned high]â
Again, Green starts out by confirming the criticsâ point. He reassures us that the problem is A Simple Matter Of Programming, but cautions us that while the ideal speed-up would be 100xâââwithin an order of magnitude of what Visa can handle on a non-holiday now with 1970s technology, so maybe borderline feasibleâââthe reality wonât be that big.
Nicholas Weaver, one of the lead signers of the letter, has a different back-of-the-envelope calculation:
Estimating the cost (measured in âgasâ) of an arbitrary computation is complex but letâs assume that we are only interested in the most simple operation: 256 bit integer addition. Each addition costs 3 gas each. So on a worldwide basis this system rates at 600,000 adds per second.
Compare this amount of compute to a Raspberry Pi 4, a $45 single-board computer which has four processors running at 1.5 GHz. Each core has 2 ALUs and it will take 4 instructions to perform a 256 bit addition, as the basic unit for the Raspberry Pi (and most other modern computers) is 64 bits. So each core has a peak performance of 750,000,000 adds per second for a total peak of 3,000,000,000 adds per second. Put bluntly, the Ethereum âworld computerâ has roughly 1/5,000 of the compute power of a Raspberry Pi 4!
By Weaverâs critical estimate, even the big dream of a 100x speed-up is not enough to make the Ethereum network a good use of the planetâs computational resources. Nor would the Ethereum Foundationâs claim of a 2000x speed-up enable the Ethereum network to outpace a Raspberry Pi.
Green also confirms that
Many defenders have tried to paint the electricity consumption of Bitcoin and other PoW currencies as âgreenâ or define it as a form of energy storage. This is dishonest nonsense: estimates hold that at east 60% of mining energy consumption still comes from fossil sources.
Perhaps some other defense of cryptocurrencies will hold. Letâs see:
Objection: âThere is no privacy on blockchains (or there is too much privacy)â
There has, in fact, been innovation in cryptoasset privacy, and Greenâs own work demonstrates that.
Unfortunately, thatâs very bad, even if also potentially good in some way. The anarcho-capitalist dream of cryptoassetsâââi.e. tax evasion and money-launderingâââis one of the only parts of the cryptoasset dream that reliably comes true in practice. The cryptoasset economy has been a huge âsuccessâ in enabling ransomware, CSAM, and Kim Jong Unâs nuclear program (on top of the more mundane phenomenon of regular people losing their money).
Itâs not clear why people who want functioning government, un-abused children, and fewer nuclear weapons would welcome a more-private cryptoasset. Perhaps there is an argument that the potential benefits would outweigh the actual harms we endure right now, but Green doesnât make it in this article, and doesnât contend with the harms.
Green attempts to paint the status quo as equivalently risky as the current systems of exchange:
But at very least theyâll be better than our current collect-it-all-and-then-hand-it-to-hackers approach, which certainly has not done us very many favors.
but itâs hard not to see cryptoassets as even more accurately described as âhanding it to hackersâ.
So why do I care about any of this?
In this section, Green presents the problems that cryptoassets should supposedly solve, and which should motivate a long blog post to defend cryptoassets. Buried the lede, tbh, but:
After 4,000 words in defense of cryptoassets, this is the
ledeconclusion:
I donât know if blockchains are the solution to this problem. [...]
So while I donât know if cryptocurrency will be the answer, Iâm just hopeful that something will be.
So at the end of what could be a strong defense of cryptoassets, we find that they are not in fact defensible, and that the letter to Congress is basically right on every point.
But, the problems Green identifies are real, and it would be good to solve them. So letâs consider how cryptoassets deal with these problems.
Credit card fees are too high: As Green notes, cryptoasset fees are not exactly low. In some cases, theyâre a deal-breaker. They are also far more volatile. And there is no viable solution at hand, in Greenâs post or elsewhere.
Credit cards are still prone to fraud: Clearly, this is as true today as it was in 1995. Unfortunately, cryptoassets have not only not reduced fraud but have brought us new and exciting additional forms of fraud. âBack in my day,â Iâll say, âwe had fewer forms of financial fraud!â The grandkids roll their eyes in disbelief.
We donât have privacy in our payments: As above, this is a policy debate that we can and should have. Whatever approach to payment privacy we take, it will have to do something to mitigate the severe harms that sort-of-private and pseudonymous cryptocurrencies have enabled and exacerbated.
And it will require a nuanced construction of privacy, which is often presented asâââbut which is notâââa simple binary condition. (Itâs not even as simple as a spectrum along a single axis.) There does not yet appear to be a plausible approach on the table that provides people privacy (however defined) and yet stops at least some large-scale, society-damaging crime. Maybe someday.
You canât pay with your phone without giving control to corporations: That does seem to be true, whether itâs to Apple, Google, Safaricom (which operates M-Pesa in Kenya), PayPal, Zelle, or various state-capital corporations in China. Since Green dismisses existing state and government solutions, I take it he would only be satisfied by currency purely run on distributed consensus. Thus he appears to embrace the anarcho-capitalist dream, but doesnât have anything to say (in this article) about what would check and balance capital power once government is âdrowned in the bathtubâ.
Regulatory capture: Recall that the letter to Congress was from concerned experts warning legislators to be wary of regulatory capture by speculators and VCsâââand, again, Green says he broadly agrees with the lead signersâ spiritâââso itâs hard to see how cryptoassets are a solution to regulatory capture. In fact thatâs the problem at hand!
Greenâs defense of cryptoassets is no more coherent than what weâve seen before. But it does have the virtue of honesty, which inevitably makes it a very weak defense of cryptoassets.
The Letter in Support of Responsible Fintech Policy stands as reasonable advice to legislators, and cryptoassets still look like a change for the worse.
1. I also signed it, but was not a lead signer nor an author of it. I was not involved in any way; I just think the authors are right.
2. If I could just interject for a moment, what people typically refer to as PoS is, in fact, proof-of-oligarchy, or as Iâve recently taken to calling it, PoO.
3. I mean theoretical in the technical sense, not in a colloquial sense of âunimportantâ. It would be useful to have a solution to the distributed consensus problem. But we donât need a solution so badly that burning the Earth is a good idea, and we donât need one that furthers anarcho-capitalism.