Whizzy đź’­

Proof of Work

6 min read

Proof of Work (PoW) is the original consensus mechanism. It’s how Bitcoin has stayed secure since 2009. If you haven’t read blockchain-basics yet, start there first — it covers what consensus is and why it matters.

The Idea in One Line

To add a block, you have to prove you did a bunch of computational work. That’s it. That’s the whole concept.

The Friend Group Version

You and your friends maintain a shared expense spreadsheet. To prevent spam and cheating, you add a rule: before anyone can add an entry, they have to solve a Sudoku puzzle first. The first person to solve it gets to write the entry AND everyone buys them chai as a reward.

The puzzle is hard to solve (takes effort and time) but easy to verify (anyone can check the completed Sudoku in seconds). So if Ravi claims he solved it, Priya, Aman, and Sneha can verify instantly.

This means:

  • You can’t spam fake entries (each one costs real effort)
  • You can’t cheat (everyone verifies your solution)
  • There’s incentive to participate (you get chai)
flowchart TD
    A["New transaction needs recording"] --> B["All miners start guessing 🧩<br/>(trying different nonce values)"]
    B --> C["Ravi finds a valid hash first!"]
    C --> D["Others verify: Does the hash<br/>actually meet the criteria?"]
    D -->|"Yes ✓"| E["Block added to chain<br/>Ravi gets the reward 🎉"]
    D -->|"No âś—"| B

How It Actually Works

Here’s what’s happening under the hood:

Step 1: Transactions pile up

People send transactions on the network (“send 0.5 BTC to Priya”). These sit in a waiting area called the mempool (memory pool) — basically a queue of unconfirmed transactions.

Step 2: Miners grab transactions

A miner (a computer running mining software) picks transactions from the mempool and bundles them into a candidate block. They also include:

  • A reference (hash) to the previous block
  • A timestamp
  • A special empty field called the nonce

Step 3: The guessing game

The miner needs to find a nonce value that, when combined with all the block data and run through a hash function (SHA-256 for Bitcoin), produces a hash that starts with a certain number of zeros.

Example:

Hash("block data + nonce 1")    = a8f2e1b9c4... ❌ (doesn't start with enough zeros)
Hash("block data + nonce 2")    = 7c91d3f0a2... ❌
Hash("block data + nonce 3")    = 00000f8a92... âś… (starts with 5 zeros!)

There’s no shortcut. You just have to try billions of nonces until you get lucky. That’s the “work” in Proof of Work.

Step 4: Broadcast and verify

When a miner finds a valid nonce, they broadcast the block to the network. Every other node runs the hash once (instant) to verify it’s correct. If valid, the block gets added to everyone’s chain.

Step 5: Reward

The winning miner gets:

  • Block reward — newly minted coins (currently 3.125 BTC per block, halves every ~4 years)
  • Transaction fees — fees from every transaction in the block
sequenceDiagram
    participant MP as Mempool
    participant M as Miner (Ravi)
    participant N as Other Nodes
    participant BC as Blockchain

    MP->>M: Here are pending transactions
    Note over M: Bundles transactions<br/>into a candidate block
    loop Try different nonces
        M->>M: Hash(block + nonce) = ???
    end
    Note over M: Found a valid hash! 🎉
    M->>N: Here's my block + proof
    N->>N: Verify hash (instant âś“)
    N->>BC: Add block to chain
    BC->>M: Reward: 3.125 BTC + fees đź’°

Why Is It Secure?

To cheat, you’d need to redo all the work.

Say a bad actor wants to change a transaction in block #500. They’d have to:

  1. Re-mine block #500 (find a new valid nonce)
  2. Re-mine block #501 (because #500’s hash changed, breaking #501’s reference)
  3. Re-mine block #502, #503, #504… all the way to the current block
  4. Do all of this faster than the entire rest of the network mining new blocks

This is called a 51% attack — you’d need more computing power than everyone else combined. For Bitcoin, the network collectively does about 500+ exahashes per second. No single entity has anywhere near that much power. The cost would be billions of dollars in hardware and electricity, and even then you’d probably fail.

flowchart LR
    subgraph honest["Honest chain (all miners) ⛏️⛏️⛏️⛏️⛏️"]
        H1["Block 500"] --> H2["501"] --> H3["502"] --> H4["503"] --> H5["504 âś…"]
    end
    subgraph attack["Attacker's chain (alone) ⛏️"]
        A1["Block 500*<br/>(tampered)"] --> A2["501*"] --> A3["502*<br/>too slow ❌"]
    end

The honest chain always wins because it has more mining power and grows faster.

The Difficulty Adjustment

Here’s a clever detail. Bitcoin adjusts the puzzle difficulty every 2,016 blocks (~2 weeks) so that blocks are always found approximately every 10 minutes, regardless of how many miners join or leave.

  • Lots of miners join? Puzzles get harder (require more leading zeros)
  • Miners leave? Puzzles get easier

This keeps the block time stable. Without it, if a million new miners joined, blocks would be found every millisecond and the chain would be chaos.

The Downsides

Energy consumption

This is the big one. All those miners running specialized hardware (ASICs) 24/7, trying trillions of hashes, and only ONE wins each round. Everyone else burned electricity for nothing. Bitcoin’s annual energy consumption is comparable to some entire countries.

Centralization of mining

In theory, anyone can mine. In practice, you need expensive specialized hardware (ASICs costing thousands of dollars) and cheap electricity. This has led to mining being concentrated in places with cheap power and in the hands of large mining operations. Not exactly the decentralized vision.

Slow throughput

Bitcoin processes about 7 transactions per second. That’s… not a lot. The 10-minute block time means you wait at least 10 minutes for one confirmation, and most services want 3-6 confirmations (30-60 minutes).

My Take

PoW is battle-tested — Bitcoin’s been running on it for 15+ years without a successful attack on the protocol itself. The security model is elegant: cheating is simply more expensive than playing fair. But the energy waste is genuinely hard to justify, and it’s the main reason Ethereum moved to proof-of-stake.

For Bitcoin specifically though, I think PoW makes sense. It’s the simplest, most proven consensus mechanism, and Bitcoin’s primary goal is being a secure store of value — not processing thousands of transactions per second.

Graph View

Backlinks