Wei Dai Proposes b-money that Arguably laid the Groundwork for Cryptocurrencies

November 26, 1998 April 8, 2023

Computer science graduate Wei Dai arguably laid the groundwork for cryptocurrencies all the way back in 1998. His outline of the working of b-money, an electronic currency, was posted on an internet mailing list in November of that year and, as Dai told IEEE Spectrum in 2012, it aimed “to enable online economies that are purely voluntary, ones that couldn’t be taxed or regulated through the threat of force.” What’s more, although the system he proposed had certain deficiencies that made it unworkable in practice, it did suggest transactions being verified by a proof of work. This was one of the concepts later used by Satoshi Nakamoto to create Bitcoin, and Nakamoto himself would acknowledge his cryptocurrency’s debt to b-money in a 2008 email to Dai.

PipeNet 1.1 and b-money

To: cypherpunks@cyberpass.net
Subject: PipeNet 1.1 and b-money
From: Wei Dai <weidai@eskimo.com>
Date: Thu, 26 Nov 1998 15:33:49 -0800
Cc: onions@itd.nrl.navy.mil
Sender: owner-cypherpunks@Algebra.COM

I’ve discovered some attacks against the original PipeNet design. The new
protocol, PipeNet 1.1, should fix the weaknesses. PipeNet 1.1 uses layered
sequence numbers and MACs. This prevents a collusion between a receiver
and a subset of switches from tracing the caller by modifying or swaping
packets and then watching for garbage.

A description of PipeNet 1.1 is available at
http://www.eskimo.com/~weidai.

Also available there is a description of b-money, a new protocol for
monetary exchange and contract enforcement for pseudonyms.

Please direct all follow-up discussion of these protocols to cypherpunks.

Here you can find some software and articles that I’ve written.

cryptography:
- Crypto++, a free C++ library for cryptography
- speed benchmarks for various ciphers and hash functions
- a note about applications of Lucas sequences in cryptography
anonymity:
- PipeNet, a protocol for low-latency anonymous communication
- two attacks against a PipeNet-like protocol once used by the Freedom service
- b-money, a scheme for a group of untraceable digital pseudonyms to pay each other with money and to enforce contracts amongst themselves without outside help
social costs of intelligence:
- Why good memory could be bad for you: game theoretic analysis of a monopolist with memory.
- Why cleverness could be bad for you: a game where the smarter players lose.
other miscellaneous ideas:
- A really simple interpretation of quantum mechanics.
- How to make more money with your employee stock options at no extra risk.
- What do advanced civilizations do with waste heat? Use black holes as heat sinks.
MobiusLinks, a free service for people to host and manage their link collections

If you wish to encrypt your email to me, you can download my PGP public key here.

Below are 3 emails 2008-2009 between cryptographers Wei Dai & Satoshi Nakamoto; they were quoted in the Sunday Times’s 2 March 2014 article Desperately seeking Satoshi; From nowhere, bitcoin is now worth billions. Where did it come from? Andrew Smithset off to find Satoshi Nakamoto, the mysterious genius behind the hit e-currency:

…Szabo, an American computer scientist who has also served as law professor at George Washington University, developed a system for bit gold between 1998 and 2005, which has been seen as a precursor to Bitcoin. Is he saying that Szabo is Satoshi? No, I’m pretty sure it’s not him. you, then? No. When I said just Nick and me, I meant before Satoshi So where could this person have come from? Well, when I came up with b-money I was still in college, or just recently graduated, and Nick was at a similar age when he came up with bit gold, so I think Satoshi could be someone like that. Someone young, with the energy for that kind of commitment? yeah, someone with energy and time, and that isn’t obligated to publish papers under their real name.
…I go back to Szabo’s pal, Wei Dai. Wei, I say, the other night you said you were sure Nick Szabo wasn’t Satoshi. What made you sure? Two reasons, he replies. One: in Satoshi’s early emails to me he was apparently unaware of Nick Szabo’s ideas and talks about how bitcoin expands on your ideas into a complete working system and it achieves nearly all the goals you set out to solve in your b-money paper. I can’t see why, if Nick was Satoshi, he would say things like that to me in private. And, two: Nick isn’t known for being a C++ programmer.
Perversely, a point in Szabo’s favour. But Wei forwards me the relevant emails, and it’s true: Satoshi had been ignorant of Szabo’s bit-gold plan until Wei mentioned it. Furthermore, a trawl through Szabo’s work finds him blogging and fielding questions about bit gold on his Unenumerated blog on December 27, 2008, while Satoshi was preparing bitcoin to meet the world a week later. Why? Because Szabo didn’t know about bitcoin: almost no one outside the Cryptography Mailing List did, and I can find no evidence of him ever having been there. Indeed, by 2011, the bit-gold inventor is blogging in defence of bitcoin, pointing out several improvements on the system he devised.

The full emails are being provided publicly by Wei Dai to support his judgment that Satoshi is not Nick Szabo:

…the more important reason for me thinking Nick isn’t Satoshi is the parts of Satoshi’s emails to me that are quoted in the Sunday Times. Nick considers his ideas to be at least an independent invention from b-money so why would Satoshi say expands on your ideas into a complete working system to me, and cite b-money but not Bit Gold in his paper, if Satoshi was Nick? An additional reason that I haven’t mentioned previously is that Satoshi’s writings just don’t read like Nick’s to me.

Emails

1

Satoshi Nakamoto:

From: "Satoshi Nakamoto" <satoshi@anonymousspeech.com>
Sent: Friday, August 22, 2008 4:38 PM
To: "Wei Dai" <weidai@ibiblio.org>
Cc: "Satoshi Nakamoto" <satoshi@anonymousspeech.com>
Subject: Citation of your b-money page

I was very interested to read your b-money page.  I'm getting ready to
release a paper that expands on your ideas into a complete working system.
Adam Back (hashcash.org) noticed the similarities and pointed me to your
site.

I need to find out the year of publication of your b-money page for the
citation in my paper.  It'll look like:
[1] W. Dai, "b-money," http://www.weidai.com/bmoney.txt, (2006?).

You can download a pre-release draft at
http://www.upload.ae/file/6157/ecash-pdf.html  Feel free to forward it to
anyone else you think would be interested.

Title: Electronic Cash Without a Trusted Third Party

Abstract: A purely peer-to-peer version of electronic cash would allow
online payments to be sent directly from one party to another without the
burdens of going through a financial institution.  Digital signatures
offer part of the solution, but the main benefits are lost if a trusted
party is still required to prevent double-spending.  We propose a solution
to the double-spending problem using a peer-to-peer network.  The network
timestamps transactions by hashing them into an ongoing chain of
hash-based proof-of-work, forming a record that cannot be changed without
redoing the proof-of-work.  The longest chain not only serves as proof of
the sequence of events witnessed, but proof that it came from the largest
pool of CPU power.  As long as honest nodes control the most CPU power on
the network, they can generate the longest chain and outpace any
attackers.  The network itself requires minimal structure.  Messages are
broadcasted on a best effort basis, and nodes can leave and rejoin the
network at will, accepting the longest proof-of-work chain as proof of
what happened while they were gone.

Satoshi

The title does not mention Bitcoin, and the abstract is not identical to the final one, which is slightly better written (eg no broadcasted typo); a word-level diff of the abstracts using Mergeley.com:

Old/new differences in abstract

The bit about Adam Back has been mentioned before; on 18 April 2013, Adam Back posted to the BitcoinTalk forums a self-introduction mentioning that

…So anyway I know a few things about ecash, privacy tech, crypto, distributed systems (my comp sci PhD is in distributed systems) and I guess I was one of the moderately early people to read about and try to comprehend the p2p crypto cleverness that is bitcoin. In fact I believe it was me who got Wei Dai’s b-money reference added to Satoshi’s bitcoin paper when he emailed me about hashcash back in 2008. If like Hal Finney I’d actually tried to run the miner back then, I may too be sitting on some genesis/bootstrap era coins. Alas I own not a single bitcoin which is kind of ironic as the actual bitcoin mining is basically my hashcash invention…

The pre-release draft link is now broken. I have tried to refind it:

the original fly-by-night filehosting site disappeared years ago, and does not appear to have been renamed or moved
the filehosting download page & PDF are unavailable in the Internet Archive
the earliest version of the whitepaper on Bitcoin.org in the Internet Archive is a later draft, using the name Bitcoin (unsurprisingly); looking at the full list of mirrored files for that domain, there don’t appear to be any other PDFs in the snapshots which might be an earlier draft
Google searches for queries like ecash-pdf and variants (sometimes adding in Satoshi Nakamoto since he was using that nick at the time even if he had not settled on Bitcoin as a name) have turned up no mirrors or people discussing that version of the whitepaper who might have copies
a more targeted search on BitcoinTalk did not turn up any copies
the whitepaper was never checked into the original Subversion repository set up after the alpha code was released, so no revision history there either
I asked them and learned that early correspondents Wei Dai, Adam Back, and Gregory Maxwell do not have copies. (I also asked Hal Finney but did not expect a reply given his condition & did not receive one before he passed away 28 August 2014.)

If anyone has a copy of it or a tip as to where it might be or who might have it stashed away, please contact me. It would likely shed some further insight on the development of Bitcoin and how Satoshi had his key insight of proof-of-work.

A request on the original cryptography mailing list yielded a SHA-256 hash of a draft paper earlier than the current bitcoin.org-hosted version, which then turned up a matching bitcoin.pdf (rehosted locally). Is this the earliest draft of the paper, the one Satoshi sent to Wei Dai? No:

Satoshi’s initial email to Dai is dated August 22, 2008; the metadata for this PDF (pdftk bitcoin.pdf dump_data) yields as the CreationDate the value 20081003134958-07'00' – without getting into the gory details of PDF metadata formatting, this implies 3 October 2008 or a bit over a month later, which is consistent with the local date mentioned in the cryptography ML email. (This is however an earlier draft than the final draft on bitcoin.org, which is dated 20090324113315-06'00' or 24 March 2009; interestingly, the timezone differs: -7 vs -6.)
Satoshi says in the Dai email that the URL is ...ecash-pdf.html, which is an auto-link generated by the filehost, suggesting the filename was ecash.pdf and not bitcoin.pdf
Satoshi says also that the title is Electronic Cash Without a Trusted Third Party, but in this October 2008 version, the title has already changed to Bitcoin: A Peer-to-Peer Electronic Cash System
Satoshi’s pretext is getting the right citation for Dai’s B-money, and he implies there is either no citation to Dai currently (consistent with Adam Back’s claim to have noticed the absence and told Satoshi) or it would be to 2006? (his quoted example citation); however, this file has the full correct citation 1 W. Dai, b-money, http://www.weidai.com/bmoney.txt, 1998. – dated to 1998 (as Dai tells Satoshi), not 2006 (as was Satoshi’s best guess).

2

Dai:

Hi Satoshi. b-money was announced on the cypherpunks mailing list in 1998.
Here's the archived post:
http://cypherpunks.venona.com/date/1998/11/msg00941.html

There are some discussions of it at
http://cypherpunks.venona.com/date/1998/12/msg00194.html.

Thanks for letting me know about your paper. I'll take a look at it and let
you know if I have any comments or questions.

3

Nakamoto:

From: Satoshi Nakamoto
Sent: Saturday, January 10, 2009 11:17 AM
To: weidai@weidai.com
Subject: Re: Citation of your b-money page

I wanted to let you know, I just released the full implementation of the
paper I sent you a few months ago, Bitcoin v0.1.  Details, download and
screenshots are at www.bitcoin.org

I think it achieves nearly all the goals you set out to solve in your
b-money paper.

The system is entirely decentralized, without any server or trusted
parties.  The network infrastructure can support a full range of escrow
transactions and contracts, but for now the focus is on the basics of
money and transactions.

There was a discussion of the design on the Cryptography mailing list.
Hal Finney gave a good high-level overview:
| One thing I might mention is that in many ways bitcoin is two independent
| ideas: a way of solving the kinds of problems James lists here, of
| creating a globally consistent but decentralized database; and then using
| it for a system similar to Wei Dai's b-money (which is referenced in the
| paper) but transaction/coin based rather than account based. Solving the
| global, massively decentralized database problem is arguably the harder
| part, as James emphasizes. The use of proof-of-work as a tool for this
| purpose is a novel idea well worth further review IMO.

Satoshi

LeeF

Christian, Patriot, Entrepreneur. Built ThePatriotConnection,com (Patri-X.com) to unite patriots, empower content creators, educate others, and to crowdsource a true accounting of history.

View all posts by LeeF

FDA Launches Investigation Into Popular Breakfast Cereal After Numerous Reports of People Falling Ill

2 years ago

The U.S. Food and Drug Administration has reportedly opened an investigation into Lucky Charms Cereal after hundreds of people have filed reports claiming to have gotten sick after eating it. Some of the most common side effects that have been reported by consumers include nausea, diarrhea, and vomiting after eating the extremely popular snack, according to hundreds of incident reports submitted online to the food safety website ‘iwaspoisoned.com.’ Following the large wave of reports, the FDA officially opened an investigation of its own this month after the agency … Read More

Kellogg’s Announces Release of Glittery Heart-Shaped Cereal For Gay Pride Month

3 years ago

On the side of the ‘Together with Pride’ box, children will be able to choose he, she or they, or make up their own gender preference. In what is perhaps the most unappetizing headline of 2021, the Weekly Metro announced that “Kellogg’s new LGBTQ cereal wants to fill your mouth with pride,” because everything must be gay now and the virtue must be signaled. Big Business has realized that there is a lot of money in wrapping yourself in the rainbow flag, and so as “Pride Month” (yes, an entire month) … Read More

Report: Big Brother and Big Pharma Collude to Choke Vaccine Skeptics Off Crowdsourcing Platforms

5 years ago

After successfully targeting Trump supporters with a repressive crackdown, Big Brother is heading onto their next target: so-called antivaxxers. GoFundMe is booting all vaccine skeptics from being able to raise funds on their platform, as they bend their knee to the digital lynch mob. “Campaigns raising money to promote misinformation about vaccines violate GoFundMe’s terms of service and will be removed from the platform,” GoFundMe spokesman Bobby Whithorne said of his company’s Big Brother push. “We are conducting a thorough review and will remove any campaigns currently on … Read More

Drug Dealer Freddie Gray Dies a Week after his Arrest Resulting in Days of Violent Riots and Looting in Baltimore

9 years ago

The day before Gray’s death — April 18, 2015 — the protests began. One week into the protests, riots and looting rocked Baltimore as protesters turned violent, setting fires and throwing rocks. More rioting and looting followed Gray’s funeral two days later. Before the violence died down, at least six officers were seriously injured and nine others suffered less serious injuries, two patrol cars were destroyed, a CVS pharmacy was burned down, the National Guard was called in, and a city-wide curfew was put in place. On May … Read More

USDA Threatens to Fine Family $3.9 Million For Selling Bunny Rabbits!

13 years ago

Here are the salient facts of this total over reaction by the Federal Government, specifically the USDA APHIS unit. This is mostly taken from Bob McCarty’s excellent story which originally ran on the 19th. John Dollarhite and his wife Judy of Nixa, Mo( Pop 12,124) , were told by the USDA that, by May 22, 2011, they must pay a fine exceeding $90,000. If they don’t pay that fine, they could face additional fines of almost $4 million. Why? Because they sold more than $500 worth of bunnies … Read More

Fauci Patented the SARS Bio-Weapon, U.S. Patents #7220852 and #7279327

22 years ago

Anthony Fauci and NIAID found the malleability of coronavirus to be a potential candidate where the NIAID built an ‘infectious replication defective coronavirus’ that was specifically targeted for human lung epithelia. In other words, we made SARS, and we patented it on April 19th, 2002. Before there was ever any alleged outbreak in Asia [the SARS CoV-1 outbreak], which, as you know, followed that by several months. It was issued as U.S. Patent #7279327. That patent clearly lays out, in very specific gene sequencing, the fact that we knew that … Read More

Merck Vaccine Scientist Dr. Maurice Hilleman Admitted Presence of SV40, AIDS and Cancer Viruses in Vaccines

27 years ago

Turner Broadcasting System (TBS) produced and aired a four hour, two-part documentary titled, ‘The Coming Plague’. It was during a section of this documentary that filmmakers dug up an old audio recording of a discussion between a half dozen of the world’s foremost vaccine inventors. Included in the casual, light-hearted debate are historian and doctor Edward Shorter, Dr. Albert Sabin (namesake of the Sabin Vaccine Institute), and most importantly, Dr. Maurice Hilleman – Chief of the Merck Pharmaceutical Vaccine Division. One of the most prominent vaccine scientists in … Read More

OKC Bombing: An Explosion Devastates the Alfred P. Murrah Federal Building in Oklahoma City – An Inside Job Resulting in the Deaths of 168 Peopl…

29 years ago

The official narrative is simple: A right-wing extremist and his accomplice struck a blow against the American government by setting off a truck bomb in front of the Alfred P. Murrah Federal Building in Oklahoma City, April 19, 1995. The result was 168 dead, including 19 children, and more than 800 injured. The bombing left the American people fearing a new “terrorist” enemy: the home-grown, militia-loving, anti-government extremist. Good story. Not true. The truth about Oklahoma City involved not only a terrible human tragedy but also a story of … Read More

Henry Kissinger: “Yes, There Will Be a New World Order, and it will Force the United States to Change its Perceptions.”

30 years ago

Henry Kissinger spoke at the World Affairs Council Press Conference at the Regent Beverly Wilshire Hotel on April 19, 1994 and advocated for a New World Order: “[The New World Order] cannot happen without U.S. participation, as we are the most significant single component. Yes, there will be a New World Order, and it will force the United States to change its perceptions.” … Read More

Waco: 95 Innocent Branch Davidians (Including women and children) vs. Delta Force, CIA, FBI, ATF, and British SAS. Guess Who Wins?

31 years ago

David Koresh, who had become the leader of a religious community that was well liked by their neighbors and had been at the ‘compound’ for 60 years, became a target of the FBI in February of 1993. A few years previous, Marc Breault, a self proclaimed prophet from Honolulu, had joined the Branch Davidians at Mt. Carmel and tried to take leadership from Koresh, who then asked him to leave. Breault vowed revenge, calling several national agencies making allegations against Koresh of adulterous sex, gun stockpiling, and child … Read More

The USS Iowa Cover Up

35 years ago

The Navy’s Scapegoats | by Gerald Posner “Looking to one side, I saw my division officer wedged between the range finder and a computer. It was the first body I saw. His head was gone, and he had no arms. It was almost as if he was naked. His clothes had been burned off him. He would have been wearing leather boots there, but there were no boots there, just his burned feet. He was contorted a little bit, pushed in there. We had trouble getting him out. We … Read More

The Leuchter Report: The First-Ever Forensic Investigation of the Alleged Extermination Gas Chambers at Auschwitz, Birkenau and Majdanek

36 years ago

In early 1988, American execution hardware expert Fred A. Leuchter, Jr., carried out the first-ever forensic investigation of the alleged extermination gas chambers at Auschwitz, Birkenau and Majdanek. His sensational conclusion — that these structures were never used as gas chambers to kill people — set off an international controversy that is still continuing. In a detailed report, commonly referred to simply as The Leuchter Report, the gas chamber specialist summed up the result of his investigation: Introduction (According to the author) In February of this year (1988), … Read More

C Wright Mills Publishes his Book “The Power Elite”

68 years ago

The Power Elite is a 1956 book by sociologist C. Wright Mills, in which Mills calls attention to the interwoven interests of the leaders of the military, corporate, and political elements of society and suggests that the ordinary citizen in modern times is a relatively powerless subject of manipulation by those three entities. Mills is known for having been a bit of a renegade. He was a motorcycle-riding professor who brought incisive and scathing critiques to bear on the power structure of U.S. society at mid-twentieth century. He was also known for critiquing academia for its … Read More

Calvin Coolidge Address Before the Daughters of the American Revolution, Washington, D.C. – “… As there were Fathers in our Republic so th…

98 years ago

Members of the Daughters of the American Revolution: Coming to address the Thirty-fifth Continental Congress of the National Society of the Daughters American Revolution reminds me that I have had that privilege several times in the past. You represent one of the most distinguished patriotic orders of our Nation in cherishing the memory of the people and the record of the events of the great struggle which resulted in American independence. It is a marked honor to be invited to speak in your presence. But I do not … Read More

The Start of the Revolutionary War: The Battle of Lexington & Concord begins with the Shot Heard ‘Round the World

249 years ago

At Lexington Green, MA, the British were met by approximately seventy American Minute Men led by John Parker in a British attempt to confiscate American arms. At the North Bridge in Concord, the British were confronted again, this time by 300-400 armed colonists, and were forced to march back to Boston with the Americans firing on them all the way. By the end of the day, the colonists were singing “Yankee Doodle” and the American Revolution had begun. With the Americans pushing back against the British use of … Read More