• hark@lemmy.world
    link
    fedilink
    arrow-up
    7
    ·
    10 months ago

    A blockchain won’t solve incorrect transaction information any more than an audit log in this case. This is an entirely internal process controlled by the bank and access would be restricted, so they couldn’t just edit audit logs. How do you think a blockchain would be used to improve this?

    • Knock_Knock_Lemmy_In@lemmy.world
      link
      fedilink
      arrow-up
      2
      arrow-down
      2
      ·
      10 months ago

      The actions that an employee could perform would be limited by their private key’s abilities. Blockchain can be preventative. It’s not only for retrospective analysis.

      • hark@lemmy.world
        link
        fedilink
        arrow-up
        3
        arrow-down
        1
        ·
        10 months ago

        The actions that an employee could perform in any database would be limited by their account permissions. Blockchain doesn’t change this. I pointed out a retrospective mechanism because a completely internal blockchain wouldn’t prevent tampering either.

        • Knock_Knock_Lemmy_In@lemmy.world
          link
          fedilink
          arrow-up
          1
          arrow-down
          2
          ·
          10 months ago

          You end up with a very complex database account management.

          I agree in general. Fully internal databases should not be blockchains.

          But if external access is required at any point then there may be a blockchain use case.

          • hark@lemmy.world
            link
            fedilink
            arrow-up
            2
            arrow-down
            1
            ·
            10 months ago

            It’s not complicated at all. It’s basic database access management and it’s been a thing for decades without issue. If external access is required then those parties are given restricted access appropriate for their job and their actions are logged in the audit log in case any inappropriate actions were taken by them and need to be reviewed/reversed. These are solved problems and blockchain adds nothing there. The only case that blockchain helps is in a system where you have a large number of random participants and you want transactions to be enforced by work done/computing power or stake. This is why cryptocurrency has been the only practical use case for blockchain, with the word “practical” doing a lot of work, hence the diagram in the post we’re all discussing.

            • Knock_Knock_Lemmy_In@lemmy.world
              link
              fedilink
              arrow-up
              1
              arrow-down
              2
              ·
              10 months ago

              If external access is required then those parties are given restricted access

              So a human needs to get involved.

              inappropriate actions were taken by them and need to be reviewed/reversed.

              Lack of finality slows processes.

              These are solved problems and blockchain adds nothing there.

              Two improvements/use cases given above.

              The only case that blockchain helps is in a system where you have a large number of random participants

              I.e. Access without human authorisation

              and you want transactions to be enforced

              Finality.

              This is why cryptocurrency has been the only practical use case for blockchain,

              Supply chain tracking

              Royalty payments

              Renewable energy tracking

              Ticketing

              Etc.

              • hark@lemmy.world
                link
                fedilink
                arrow-up
                2
                ·
                10 months ago

                A human only needs to get involved for manual database changes. The vast majority of database transactions are carried out by code. The same would be true for blockchain. Again, it’s not magical. I will ask you once again: how do you think a blockchain would be used to improve this? The blockchain as used by bitcoin allows everyone the same access, but uses compute power as a consensus mechanism in the hopes that statistically most participants would be running the same code to keep things legitimate.

                How do you propose a bank does this internally? You’ve yet to answer this question I asked a few posts before and instead opted to list proposed use cases like a brochure advertising blockchain. This is what I usually see with blockchain evangelists, repeating talking points that they themselves don’t understand. Like seriously, what is “renewable energy tracking” supposed to mean?

                • Knock_Knock_Lemmy_In@lemmy.world
                  link
                  fedilink
                  arrow-up
                  1
                  arrow-down
                  2
                  ·
                  edit-2
                  10 months ago

                  human only needs to get involved for manual database changes.

                  So how would you on-board a new user?

                  The vast majority of database transactions are carried out by code.

                  Transactions yes. Access no.

                  how do you think a blockchain would be used to improve this?

                  Access is controlled by public key and security is self administered. No central authority chooses who can join.

                  The blockchain as used by bitcoin allows everyone the same access

                  Exactly. The power of public/private key cryptography.

                  uses compute power as a consensus mechanism

                  Compute power is not required for blockchain and has nothing to do with private keys.

                  How do you propose a bank does this internally?

                  Issue private key management software to all employees. Get them to generate public keys. Use a protocol that doesn’t require PoW.

                  What is “renewable energy tracking” supposed to mean?

                  https://www.energyweb.org/

                  • hark@lemmy.world
                    link
                    fedilink
                    arrow-up
                    1
                    ·
                    10 months ago

                    “Security is self-administered” through magic, huh? No central authority chooses who can join, which is an aspect that I’m sure a bank would love for their private internal database (this is sarcasm by the way)… “the power of public-private key cryptography” is something you clearly don’t understand. Are you aware that you used “the power of public-private key cryptography” to visit this site over HTTPS and that it had nothing to do with blockchain? Public/private key cryptography is a tool used for many different purposes and by itself has nothing to do with access.

                    Compute power is what bitcoin still uses and how it regulates transactions. I didn’t say it’s required by blockchain, I gave it as an example of how consensus is reached. The other common method is proof of stake, but that still doesn’t make sense in the context of a completely internal database. Who is staking, what are they staking, and how does that prevent fraudulent transactions in a bank’s internal database?

                    I looked at the energyweb site and it’s marketing fluff. When it comes to tracking things on blockchain, once you cross the physical-digital barrier, you end up having to use trust. So you want to verify that the electricity you got is renewable? Well you have to trust the entity that gave you that electricity because the blockchain will only verify that you made a transaction with them and that they made transactions with others (e.g. suppliers), but it will not verify the good/service itself (in this case, electricity). I can send electricity your way which was generated by a gas generator, but how could you tell this from the blockchain? The answer is that you can’t, you can only tell that I have made a transaction with you. The smart contract will include a trusted entity which tracked the electricity being sent which the smart contract can look up that the value matches the agreed-upon value. Again, none of this verifies that the electricity is renewable, you are relying on plain old trust.