I suspect these people do not have any working code yet for bitvm. I suspect they want to give the impression that they do in order to raise money, then run off with that money without delivering anything.
There are about 7 total people who I've seen work with bitvm's codebase. None of us have anything more than a proof of concept or a toy right now. I suspect that if these people really had something, they would have shared it with us and we would all be excitedly exploring what they've accomplished.
Announcements like this, without proof of work, are a big red flag for Scam.
Bingo. Sad news is people like this are competing for sats that could instead go towards genuine development. Bull runs bring the scams and the noise that follows.
cool! can you elaborate on the similarities and differences between the Citrea rollup and the popular ZK rollups on other chains? Do they basically all work the same way?
Assuming the details in the post and docs accurately describe what the final product will look like, the main difference is that Citrea is verified optimistically using a BitVM program rather than an onchain smart contract, and as such is limited to at-best a 1-of-n security model (where n is a permissioned group of arbitrary size) rather than a single honest party security model (as in optimistic rollups, where the single honest party could be anyone, and it is assumed that they can get a fault proof transaction confirmed during a challenge period) or a trustless security model (as in validity rollups, where all rollup txs are cryptographically verified). That said, the developers of almost all rollups on other chains have chosen to ultimately rely on some kind of multisig for security, because their smart contracts can be upgraded to any arbitrary new code using a multisig (often a "committee" of trusted community members, often with no time delay). So assuming this rollup does not choose to insert some trusted multisig into the governance model, that could also be a difference.
Other than those differences the rollup works the same as other zkEVM rollups: it is EVM compatible, it posts its state data to a parent chain (in this case bitcoin), and it inherits the full double-spend resistance and data availability guarantees of bitcoin.
as such is limited to at-best a 1-of-n security model (where n is a permissioned group of arbitrary size)
Worth noting: bitvm can also work in a security model where each sidechain user has a direct contract with a bridge operator and thus does not need to trust him or her. In this case the 1-of-N is a 1-of-2 and the user is among the 2, consequently the user only needs to trust themselves (and bitcoin's standard trust assumptions, e.g. they must assume miners are not censoring them).
I'm cautiously positive on Citrea (my knowledge is level potato on this though).
If BitVM gets reasonable performance on doing the proofs, this model seems quite good and it seems possible to plug this into LN, so all LN infra and wallets can continue working & expanding while we get more "onchain" capacity.
What worries me is the people that funded this work... feels like a bunch of shitcoiners, but I'm happy to be proven wrong.
I suspect these people do not have any working code yet for bitvm. I suspect they want to give the impression that they do in order to raise money, then run off with that money without delivering anything.
There are about 7 total people who I've seen work with bitvm's codebase. None of us have anything more than a proof of concept or a toy right now. I suspect that if these people really had something, they would have shared it with us and we would all be excitedly exploring what they've accomplished.
Announcements like this, without proof of work, are a big red flag for Scam.
They do have https://github.com/chainwayxyz/toy-bitvm-rs but like you said, this is an extremely naive/inefficient way to do things
Bingo. Sad news is people like this are competing for sats that could instead go towards genuine development. Bull runs bring the scams and the noise that follows.
oh, so not related to your team's work?
Correct. Also, I do not have a team, I work solo. Robin has a team though and this is unrelated to his team.
So that makes you Batman?
Yes
This sounds cool.. but I'm too exhausted to read it all... is there some video intro? I usually prefer written text, but today..
This is not what we mean by DYOR.
Lol. If you're too insecure to ask where to find documentation I can't help you.
Too exhausted to read it all doesn't sound like asking for documentation . It would like to lazy to read the documentation, so give me a short video.
Here's a podcast: https://bitcoin-takeover.com/audio/media/2024-02-06_s15_e18_orkun_kilic_on_citrea__zero_knowledge_rollups_on_bitcoin.mp3
Awesome ! BitVM is the way ! One question, will fees be paid in bitcoin ?
Looks like it's got a bridge for BTC, so I assume they will.
As evidenced by your Proof-of-Blog-Post Shame! Shame to all who suggest work without proof.
Their website looks like someone took three sentences, fed them into ChatGPT and had it return 10 pages saying the same thing.
Red flags:
Curious what a ZK Rollup is, but I ain't clicking that.
technically true
what's wrong with this?
fair point
what's the problem here? would you rather use a walled garden blog platform like medium? I don't get it
do read about it. they're a big deal
it's not the first, it hasn't even launched yet. if it launches on mainnet first then they can claim first.
According to Ruben Somsen, rollups only provide about a 2x scaling factor, because they only aggregate witness data:
view on twitter.comthey do better than 2x https://bitcoinrollups.org/#section-4-scaling-improvements
Bitcoin is getting more excited with Zk Rollup like this, I see more coming
It's a financial service offering EVM capabilities to Bitcoin users in trust-minimized way using ZKPs.
Bitcoin does validate the legitimacy of peg-outs using BitVM.
It does not only validates peg-outs. It validates the entire sidechain.
cool! can you elaborate on the similarities and differences between the Citrea rollup and the popular ZK rollups on other chains? Do they basically all work the same way?
Assuming the details in the post and docs accurately describe what the final product will look like, the main difference is that Citrea is verified optimistically using a BitVM program rather than an onchain smart contract, and as such is limited to at-best a 1-of-n security model (where
nis a permissioned group of arbitrary size) rather than a single honest party security model (as in optimistic rollups, where the single honest party could be anyone, and it is assumed that they can get a fault proof transaction confirmed during a challenge period) or a trustless security model (as in validity rollups, where all rollup txs are cryptographically verified). That said, the developers of almost all rollups on other chains have chosen to ultimately rely on some kind of multisig for security, because their smart contracts can be upgraded to any arbitrary new code using a multisig (often a "committee" of trusted community members, often with no time delay). So assuming this rollup does not choose to insert some trusted multisig into the governance model, that could also be a difference.Other than those differences the rollup works the same as other zkEVM rollups: it is EVM compatible, it posts its state data to a parent chain (in this case bitcoin), and it inherits the full double-spend resistance and data availability guarantees of bitcoin.
Worth noting: bitvm can also work in a security model where each sidechain user has a direct contract with a bridge operator and thus does not need to trust him or her. In this case the 1-of-N is a 1-of-2 and the user is among the 2, consequently the user only needs to trust themselves (and bitcoin's standard trust assumptions, e.g. they must assume miners are not censoring them).
See Unisob for more details: https://gist.github.com/supertestnet/5f262c632cbcd00348824aad5c289705
thanks, appreciate the thorough explanation!
Code not public yet...
okay maybe you will produce great project?
I'm cautiously positive on Citrea (my knowledge is level potato on this though). If BitVM gets reasonable performance on doing the proofs, this model seems quite good and it seems possible to plug this into LN, so all LN infra and wallets can continue working & expanding while we get more "onchain" capacity.
What worries me is the people that funded this work... feels like a bunch of shitcoiners, but I'm happy to be proven wrong.
thought zk rollups was an eth 💩🪙 thingy.
Just trying to get my head around, why it took so long to have this on Bitcoin? Also what are the trade offs?
Cof cof... SCAM... Cof cof
The site look like something pulled out of freemium Wordpress
Sounds gay