A View from Emin Gün Sirer
How to Spot Bitcoin Inventor Satoshi Nakamoto
A Cornell professor expresses his doubts that Bitcoin’s creator has been unmasked, and explains how to spot the real Satoshi Nakamoto.
I know Craig Wright. I was one of the 95 people he followed on Twitter. We’ve exchanged private messages. He told me his life story, which mixed quasi-academic references with allusions to quasi-legal activities that were clearly meant to discourage further questioning.
Let’s get the preliminaries out of the way. Craig Wright is not Satoshi. Could not have been.
And before him, Dorian Nakamoto, the Californian accused by Newsweek of inventing Bitcoin, was not Satoshi, either—or rather, he was very much Satoshi Nakamoto, the model railroad enthusiast.
Since the press has a habit of outing a Satoshi every year, it’s time to raise the level of discourse and talk about how to recognize Satoshi in case we do encounter him. For it would be a shame if, say, Jesus came back someday, quietly walked among us, and we all passed him by because we didn’t know what a crown of thorns looked like.
How to recognize Satoshi
In general, professors typically have a fairly narrow expertise, and uncovering secret identities is not one of them (except, of course, if you work on digital forensics). So I’m not going to claim that I have any special training to recognize Satoshi.
But all professors have one particular skill: to be able to size up someone’s technical understanding and characterize where he or she has technical misconceptions. This is the one skill that all of us absolutely have to master to help students and to respond to questions during lectures.
And consensus protocols, of the kind that power Bitcoin, have historically been prone to misunderstanding. The nomenclature is not consistent and there is a lot of confusion and disagreement about basic results. For instance, what does the FLP impossibility result imply for Bitcoin? What does the Byzantine Generals Problem actually say? Did someone actually read the papers on it or did he read one of the many terrible summaries online? What consistency guarantee does Bitcoin provide? Do miners make progress? What does that imply for reorganizing the last block? And so on. Consensus is a complicated topic—quite a few well-established researchers have gotten their own protocol wrong, and while Satoshi Nakamoto nailed consensus, his writings about its properties and the characterization of other work in the area provide us with a glimpse into his understanding of the world.
These thought patterns and idiosyncrasies form a unique signature, the same way code structure forms a unique signature for developers. We used to catch plagiarism in the classroom by simply printing submitted assignments from two different students, holding them up to light, and noting that, among 400+ submissions, only those two happened to be structured in that particular fashion, embodying those unique beliefs.
Having read Satoshi’s writings, I have a very good idea of his unique mental signature. Sure, it can change over time, but ask anyone in the teaching business and they will rant about how hard it is to affect that kind of change.
So, for some time now, every time I converse with someone new, I have been doing a quick comparison to Satoshi.
Craig is not Satoshi
Needless to say, Craig Wright doesn’t fit the bill. The Internet has gone to town on his purported credentials and mile-long Linked-In profile, now wiped. His PhD theses cannot be located, the supercomputer he claims to have built cannot be found, and the support letter from SGI doesn’t read like any other support letter I’ve seen. He is in trouble with the Australian tax authorities, allegedly for having received tax breaks for R&D work that seems not to have taken place. None of this matches what he told me about his background, which was that he was the CTO of an overseas gambling operation.
Wired’s story itself pointed out that the entries in his blog that discussed Bitcoin, dated 2008, were inserted in 2013. They contain words like cryptocurrency that were coined in 2010 at the earliest. The PGP keys that were leaked contain references to crypto constructs that were not incorporated into PGP until 2010.
But most importantly, Craig hasn’t thought at all about consensus protocols, and can’t tell you much about what makes Nakamoto consensus work. Not only does he lack the content signature, he lacks the content wholesale.
In short, the smell was a mile high. It was clear from my correspondence with Craig that he was not a protocol or system designer. Perhaps he knew how to set up servers, perhaps a bit more, but this was not Satoshi.
Who, then, is Satoshi?
Interestingly, I have come across one person who was a perfect fit. That person had precisely the same intellectual signature as Satoshi, and could have written, word for word, some of Satoshi’s forum posts.
Is that person Satoshi? Well, most likely, though there is a tiny probability that this person is instead an intellectual doppelganger.
But what if that person is Satoshi?
Do we have the right to make someone who wants to remain a private individual into a public persona? He or she will have fewer rights if we do that.
Is it right to force that person to face extortion attempts from the Russian mafia? Everyone known to hold a substantial quantity of Bitcoin, and even those who do not, get extorted by shady characters.
And is it fair to place someone under scrutiny from the public because he or she did a noteworthy thing that served that very public?
In short, seeking to unmask Satoshi’s real identity serves only a prurient interest. Responsible journalism ought to serve the public good, not the click count.
I’m surprised that some of the journalists noticed that there were potentially forged portions of the leaked data, and chose to ignore them. Surely everyone must know how easy it is to forge e-mails. But ironically, timestamping services such as the Internet Archive (and also Bitcoin) are harder to fool. In this case, the Internet Archive seems to have caught the backdated blog posts, which point out a clear attempt to deceive. There’s a big difference between a case that has weak evidence and a case where the evidence contains forged elements. The latter requires a full explanation of the forger, their relationship to the story, and should put the entire story at risk. You can’t just look past that inexplicable problem and focus on the rest. The story changes the moment a piece of the evidence is forged.
Every cult and culture needs and deserves a creation myth. Often, the myth itself is kind of blasé: defiant man and woman listen to serpent and steal an apple, wolf leads tribe out of a mountain pass, the sky sleeps with the earth and creates a cyclops. Most of these stories make no sense, and none of them actually matter.
What matters is Satoshi’s actual legacy. Our banking infrastructure is archaic, having been left fallow since the Y2K rewrite. There is very little transparency and auditability in the financial system. There had been precious little innovation in retail banking since 1959 until a few years ago. Even today, banks offer klunky, terrible interfaces to our money.
I’m not going to claim that a virtual currency like Bitcoin is the ultimate solution, or even a contender for a credible solution at the moment. Bitcoin cannot scale to the globe, even with the recent planned improvements, and it has great difficulty on the security front. But there are some novel technical ideas in there that can enrich our global society; some discovered by Satoshi, others by people before him. Responsible media needs to drop the pointless Satoshi manhunt and focus on the technology and its implications. That’s where the real action is.
Emin Gün Sirer is an associate professor at Cornell University whose research interests include distributed systems, operating systems, and networking. He has published several research papers on the design and flaws of Bitcoin and helped architect an alternative design for it, Bitcoin-NG, aimed at making it able to serve many more users. This post was originally published on Sirer’s blog, Hacking Distributed.