this...sounds exactly like proof of work?
Indeed, you can probably fix plutocracy with some PoW.
The tradeoff is fundamental: because VDFs don't benefit from throwing computational resources at them, there is no disadvantage to computing a bunch of them in parallel. So if you had bad intentions from the getgo (and you had a majority of stake at the time), you could still secretly compute a fake bad chain starting at time t, and then release an alternative at time t+n that was as long or longer than the real chain; the security they provide is that if someone compromises your keys later (after you already lost your majority), they can't do this. Since in practice proof of stake chains start very centralized and then distribute over time, this is a useful practical thing to care about!
With PoW, on the other hand, computing a fake chain requires you to not use all your hashpower, which opens you up to economic attacks from someone else who is willing to use that hashpower. When someone uses more hashpower than you were, they'll be able to make a longer chain faster (before the difficulty readjusts again), so now all your secret chains have been made useless (and in cases of equal chain length, people tiebreak by hashpower, so you can't just maintain a little side network that eventually catches up when hashpower decreases, either). That's the theory, anyway: it's heavily based on economic incentives, so if some government decided that they didn't really care about the economics and just wanted to screw over chain users by pumping out hashpower, they could do so quite easily. Note that by contrast, proof of stake is not susceptible to this: you actually do have to compromise a majority of the active stakers no matter how much money you have.
Personally, I think this is a distinction without a difference because I don't think any cryptocurency can stand up to sustained attacks by large nation-states (which is part of why I don't think it's very useful). But like I said, that's an assessment of the threat model, so it's subjective and up to you to decide.
Uh... great! Glad you agree that this is a solution?
Let's switch to this new "some PoW" system as soon as possible, because it uses less than a megawatt to calculate proofs. Total, for the entire network.
VDFs are far too new, at best bleeding edge research, nobody is going to gamble serious money on the robustness of such new constructions.
You would need unanimous agreement from the entire cryptology field.
However, yes, there are some workshops on quantum and implications for mining, and some other fanciful stuff that are also just research at this point.
The current setup of PoW relies on rather well understood, battle hardened primitives, that have been in actual usage under adversarial conditions for decades.
Do you think any major central bank will hold any asset that's secured by a paper written last year?
Thounsands of buttcoiners would gamble their entire life savings on shitcoin, pisscoin, asscoin, PonziCoin, whatever. When there's enough of them, it gets big enough so institutional investors start gambling on that too. It really doesn't seem like "serious money" is spending anything on actual technological research, the management of big money is also often done by idiots who follow any kind of hype.
