Hackers steal NFTs worth millions. In other news, NFTs worth millions.
theblock.co
The way I read the article, the "worth millions" is the sum of the ransom demand.
The funny part is that the exploit is in the "smart" contract, ya know the thing that the blockchain keeps secure by forbidding any updates or patches.
You are viewing a single comment
How exactly would that work? Keep in mind that the blockchain is by necessity not secret.
Right, but all the lock is doing is checking whether you own the NFT or not. If your house was in NFT, people could see that you bought a house, but not where it was as long as it was generic like house #40000
So, you'd need a method to verify who "you" are. And once again we've come up with a way to use NFTs that actually works better without NFTs.
Fair enough. I will say that I am not well enough versed in the topic to discuss it in depth.
No offense, but this is literally the problem with almost everyone who says they have a perfect usecase for NFTs. I also don't know everything about everything either, but I know do know that we don't tend to make existing systems complex just for fun.
Every time someone wants to fix something with NFTs, they're either slapping an NFT on top of the existing system, making it more complicated, OR they want to start a new solution from the ground up, throwing out decades or centuries of experience and edge-case solutions to replace them with nothing, leading to major problems.
This post is about the second thing happening, your example is the first.
NFTs are a solution looking for a problem. But all the problems have already been solved without NFTs.
Blockchain in general is a solution looking for a problem. Blockchain is just a terrible database that burns mountains of coal. In almost every case when someone suggests using blockchain for something, the simpler solution is to just use a standard database.
How would that work in reality, how would the lock know that the NFT in question is the actual legal ownership of the house?
The only way to guarantee that is to change the law that deeds of houses can only be an NFT.
Otherwise someone could sell a house on paper, but retain the NFT to have access to the house.
An NFT lock would also have the following problems, excluding the trust of ownership in the real world.
Power to the lock is required, if your backup battery is dead then you might be locked out during a power cut.
Internet access is required, during a powercut your router will probably die as well, so even if a battery backup is working, you'd still be locked out.
Your ISP could have service interruptions, no internet, no access to the latest blockchain updates, meaning that the lock can't trust that you actually have ownership/access, that would be an insanely easy way to hack the lock.
Which means that sovereign states would have to agree to no longer be the authority of who owned property, instead they'd just have to hand over all that authority to some distributed database. What's in it for them? What's in it for the people?
If the authority on who owns a home is a blockchain, then what happens if someone shows up at the police station, bruised and bleeding, and claims that they were tortured until they agreed to sign over the deed to their house. In the real world, the police (or at least the courts) would have authority over that deal, and if their investigation proved that someone was in fact tortured, it would mean it's not a legitimate sale, and the ownership reverts to the original person. But, if "blockchain", the police and courts have no authority. What's on the blockchain is law.
Well, just because a company holds the ledger of who owns what doesn't make it impossible to police, governments order companies to do stuff all the time, that wouldn't stop, but it would make it more difficult to police.
Ok, so who's the government going to order to change the blockchain?
You seem to misstakenly believe that I support this, I don't, I just argued against a dumb reason as to why it wouldn't work.
And what's your argument?
I recomment that you read my earlier comment to read my argument.
You claim that "governments order companies to do stuff all the time", but how does that apply to an entry in the blockchain, which we've agreed is the authority on who owns property. The hint is: a company couldn't change an entry in the blockchain, even if the government ordered them to do it.
Why would they change an entry on the blockchain?
To make the dumb idea of tracking peoperties on the blockchain there needs to be admin tools to restore the NFT to the proper owner.
If the NFT gets transfered to someone else illegally, there needs to be tools to add another entry to the chain with a note saying that the NFT was stolen, and this new change restores the ownership to the lawful owner.
The whole point of the blockchain technologies is that they're (supposedly) immune to state interference. What's on the blockchain is the "truth". The state wouldn't have any power to restore the proper owner of the NFT / house because they chose to trust blockchain instead of having control over the database.
If states can "restore ownership to the lawful owner", they can also seize people's cryptocurrencies.
That's why no state would ever have house registries on a blockchain that they didn't control. And if they did control it, there's no point in using a blockchain when they could just use a traditional database.
Which is exactly what I have been trying to say
I can't really address the first part about selling the house on paper and not transferring the NFT.
I figure this thing would have cellular access as well as Wi-Fi. So if your Wi-Fi was to go down, then the cell network would be used instead. And those generally use different ISPs for fiber and often get restored first or dont go down at all since they are commercial contracts. In the event of a total internet cut, it is well known that a house does not change ownership very often, so the lock could be programmed to not accept any new keys for a period like a day. The lock would accept only the old key during that time like a cooldown period
Ok, lets disregard the regulatory issues, are you really asking people to sign up for a completely different ISP just to unlock their house with an NFT key?
As for a delay to update ownership, fine that would add some leniency and is not an unresonable feature.
But I just can't see what problem an NFT key would solve, we don't usually lock/unlock our front door with the deed of the home, what would the advantage be of doing that?