Like I already said here, this is not provably fair: nothing stops you from selecting a secret after the fact. You can select the outcome of the first n games per day to your liking, and then mine a matching secret in about 2^n attempts (depending on the chance and actual outcome).
You are viewing a single comment's thread from:
Honesty, I don't understand how that would work. If you would like to show me an example I would like to see it. If I am reading it right you are saying that multiple secret keys will work for the same rolls?
They broadcast a txid to me.
I take the sha256(txid + key)
Say the result is:
f4fe638581903dabc67d4b80ee7e3018bad898dabde1cd1578738fef471812c2
Then I take
f4fe
and convert it to a decimal to get the roll of62718
.I am just not seeing how I can reproduce
f4fe638581903dabc67d4b80ee7e3018bad898dabde1cd1578738fef471812c2
along with all the other hashes with a different key.
I got this model from SatoshiDice.
If there is a way it is beyond my current understanding. If know of a way to make fair I am all for it.
On the very first roll in a day you can decide if you want that player to win or to lose, then choose a secret that produces the desired outcome:
This can be extended to the first N rounds in a day. In the following, i denotes the current round number, r_j the roll of round j, t_j the txid of round j:
2.a select secret
2.b compute hashes of (t_j + secret) and compare to r_j, if mismatch go back to 2a
2.c publish result
2.d save secret as S
I was wrong with my original estimate of 2^n attempts because I overlooked that you publish r_i. In truth you need about 2^(16*N - 15) attempts.
Thank you for trying to explain. It is still over my head. Is there something I could add to make suitably fair for you? In any case my secret key is generated with
sha256(str(random()))
and changed automatically at midnight then published. I guess there isn't a good way to prove that, but you may look at the wallet results and statistical evidence.I am all for making it provably fair. To the best of my knowledge it is. I am open to working with you since you seem to have a better grasp on it than I do.
What I think you are saying is don't publish the result until the I find a secret that matches all the results prior to that roll? Once I find a secret that matches every desired result of every roll, then I publish the roll. If so wouldn't that take a ton of computational power do that in the time span of receiving and sending back a transfer? By the time I got past a couple rolls wouldn't it be more cost effective to use that power for mining crypto instead? I am not trying to poke fun or anything. I am just trying to understand it.
Exactly!
The computational power required depends on how many rolls you want to fake. For the first one in a day it would be very easy. I think 3-4 should be possible without too much effort.
IMO publishing a hash of the secret at the start of the day would help a lot. I'm not going to say that it would be secure, but I don't currently see how you could cheat then.