Miner Incentives & the Security Budget

A blockchain secured by proof of work is, at heart, an economic machine. Its security doesn’t come from a law or a firewall — it comes from the fact that rewriting history would cost more than it’s worth. To understand why that’s true, we have to follow the money: what miners spend, what they earn, and why the cheapest path to profit runs straight through honest behavior.

Miners spend real resources

Mining is not bookkeeping. A miner runs specialized hardware (ASICs) that guesses hashes trillions of times per second, burning electricity and depreciating expensive machines, all to find a block that satisfies the difficulty target. This expenditure is the whole point: it converts real-world cost into ledger security. Influence over the chain is rented from physics, not granted by an identity. (That’s the Sybil-resistance idea from Satoshi’s synthesis, seen from the money side.)

So why would anyone pay those bills? Because the protocol pays them back — in two ways.

The two revenue streams

Every block a miner finds lets them collect a block reward, made of:

   Block reward  =  Block subsidy        +  Transaction fees
                    (newly minted BTC)      (paid by the txs in the block)
                    set by the halving      bid by users for block space
                    schedule, halves        — see the fee market
                    every 210,000 blocks

• The subsidy is fresh BTC, created in the block’s special coinbase transaction. It started at 50 BTC and halves on schedule toward zero (see halving & issuance).
• The fees are paid by users competing for limited block space — the subject of the fee market page that follows.

Today the subsidy still dominates, but it is shrinking by design. That sets up the long-run question we’ll reach at the end.

Why honest mining is the most profitable strategy

Here is the elegant part. A miner with a lot of hardware has, on paper, the power to attack the chain — to try to rewrite recent history (a “51% attack”). Why don’t they? Not because they can’t, but because it usually doesn’t pay.

Consider the choices facing a rational, profit-maximizing miner:

Strategy	What it requires	What it earns
Mine honestly	Buy hardware, pay for power	Steady subsidy + fees, indefinitely
Attack the chain	Buy/redirect majority of hash power	Maybe one double-spend, then a ruined asset

To attack, you must out-hash the entire honest network — an enormous, sustained, visible expenditure. And the prize is thin: you might reverse a payment or two before the network notices. Meanwhile, the act of attacking would shatter confidence in Bitcoin, crashing the price of the very asset you spent a fortune to acquire hardware for. You’d be torching your own revenue stream and your own balance sheet at once.

Incentive-compatibility, in one line

Bitcoin’s security rests on making the honest strategy also the selfish strategy. The rational miner protects the ledger not out of virtue but out of greed — and that’s exactly what you want when you can’t assume virtue. We formalize this in game theory.

This is how miner incentives answer the textbook’s recurring question. How do untrusting strangers agree on one ledger? Because the participants with the most power to corrupt it are the ones with the most to lose from corrupting it. Self-interest and network security point the same way.

The “security budget”

Put the two revenue streams together and you get a concept worth naming:

Security budget = the total reward miners earn per unit time = subsidy + fees.

The security budget is roughly the size of the bribe an attacker would have to beat to make dishonesty worthwhile. The more miners are collectively paid to play honest, the more hash power exists, and the more expensive any attack becomes. A large, well-funded honest majority is the fortress wall — and the security budget is what pays to build and man it.

Crucially, the budget is denominated in BTC but valued in purchasing power. A halving cuts the BTC subsidy in half, but if the price has more than doubled over that era, the security budget in dollar terms can still grow. Historically that’s roughly what happened. There is no guarantee it continues.

The long-run question: when the subsidy goes to zero

The subsidy is engineered to vanish. By around the year 2140, new issuance effectively ends, and the block reward will consist of fees alone. This is Bitcoin’s most serious open economic question, and an honest textbook flags it plainly:

• Will fees be enough? If the security budget shrinks, so does the cost of attacking. A network that’s cheap to attack is a network whose ledger strangers have less reason to trust.
• Where do fees come from? From demand for block space. That demand might come from ordinary on-chain payments, from settlement of higher layers, or from uses we can’t yet predict — but it has to be enough, and reliably so.
• The supply of space is fixed (about 4 million weight units per block), so the only lever is price — how much users will bid. Whether that produces a security budget large enough, decades out, is genuinely unknown.

Don’t paper over this

You will meet confident claims in both directions: “fees will obviously be sufficient” and “the security model is doomed.” Both overstate what we know. The transition from subsidy to fees plays out over a century, the variables (price, demand, technology) are unknowable that far ahead, and reasonable people disagree. The right posture is to understand the mechanism — security budget = subsidy + fees, with subsidy → 0 — and hold the conclusion loosely.

The next page studies the other half of that future revenue directly: how block space gets priced in the fee market.

Check your understanding

1. What two components make up a miner’s block reward, and which one is engineered to disappear?
2. A miner has enough hardware to attack the chain. Give two distinct reasons a rational miner still mines honestly instead.
3. Define the “security budget” and explain why a larger one means a more expensive attack.
4. Why can the security budget in dollar terms grow even though the BTC subsidy is being halved?
5. State, without exaggerating in either direction, the long-run risk in the subsidy-to-fees transition.