blockchains
play

Blockchains Focus is on abstraction they provide (Take CS 485/585 - PowerPoint PPT Presentation

Jun 10, 2023 •148 likes •545 views

Cryptographic Primitives Used in Blockchains Focus is on abstraction they provide (Take CS 485/585 for how they work) Public-key, Private-key cryptography Bu But t first st, , sy symm mmetric etric en encr crypt yption ion

  1. Cryptographic Primitives Used in Blockchains Focus is on abstraction they provide… (Take CS 485/585 for how they work)

  2. Public-key, Private-key cryptography

  3. Bu But t first st, , sy symm mmetric etric en encr crypt yption ion  Three main algorithms:  k = Keygen(n)  C = Encrypt(k, M)  M = Decrypt(k, C)  Use the same key to encrypt and decrypt!  If you can encrypt, then you can also decrypt  Examples:  Block ciphers: AES (Advanced Encryption Standard)  Stream ciphers: Salsa20/ChaCha  Performance: Fast, easy to accelerate, good for large amounts of data  But, has a key distribution problem Portland State University CS 410/510 Blockchain Development & Security

  4. Asym ymme metric tric encr cryption yption (P (Publi blic c Key, , Pr Privat ate e Key) y)  Also has three main algorithms  Key generation  Encryption  Decryption  Plus more (later)  Uses different keys to encrypt and decrypt (“ asymmetric” crypto)  Anyone can encrypt a message  Only the owner of the private key can decrypt  Examples:  RSA  ECDSA  Performance: Slow, hard to accelerate, good for only small amounts of data  But, easy to distribute public keys (on a blockchain, it's your wallet address!) Portland State University CS 410/510 Blockchain Development & Security

  5. Fi Figu gure re def efini initions tions  Public key  Private key (kept secret)  Plaintext  Ciphertext

  6. Asy symmetric mmetric en encryption yption  Bob uses key generation algorithm to generate keys  Bob's public key  Bob's private key  Bob publishes  Alice encrypts her message with and sends it to Bob  Only Bob can decrypt Alice's message with Enc Dec Portland State University CS 430P/530 Internet, Web & Cloud Systems

  7. Di Digi gital tal si sign gnatures atures  Public-key also supports digital signing and verification algorithms  Used to generate signatures to authenticate data (non-repudiation)  Bob with a message to withdraw $1 from Bank of Alice  Bob signs message using private key  Sends message with signature to Alice  Alice uses Bob's public key to verify only Bob could have sent it  Debits Bob's account $1 and sends him $1 Verify Sign Portland State University CS 430P/530 Internet, Web & Cloud Systems

  8. Typi pical cally ly, , hash sh of me mess ssage ge si sign gned ed Portland State University CS 410/510 Blockchain Development & Security

  9. De Demo mo (pl play y along) ong)  https://pubkeydemo-ylulk54iwa-uc.a.run.app/  Bring up  /keys (Set private key, public key pair)  /signatures (Use private key to sign a "transfer $20 to instructor")  Copy signature  Then in  /signatures#verify  Paste signature and Verify  Modify message to transfer $200  Verify again Portland State University CS 410/510 Blockchain Development & Security

  10. De Demo mo (pl play y along) ong)  Visit https://pubkeydemo-ylulk54iwa-uc.a.run.app  Bring up /keys and /transaction  View the public key to sign the transfers  View the private key associated with the "From:"  Copy signature  Then in  /transaction#verify  Paste signature and Verify  Modify amount  Verify again Portland State University CS 410/510 Blockchain Development & Security

  11. Priv ivat ate e key  *Must* be generated securely  What happens if the people writing the code are malicious?  Sneaky thief! (4/2019)  Get the private key as it's being generated! Portland State University CS 410/510 Blockchain Development & Security

  12.  *Must* be kept accessible  What happens if you lose yours?  "out of the 21 million bitcoins that will ever exist, between 2.8 – 4 million (14 – 20% of the total supply) have already been lost." Portland State University CS 410/510 Blockchain Development & Security

  13.  *Must* be kept secret  What happens if you get yours stolen?  Binance $40 million loss (5/2019)  https://www.blockchain.com/btc/tx/e8b406091959700dbffcff30a60 b190133721e5c39e89bb5fe23c5a554ab05ea Portland State University CS 410/510 Blockchain Development & Security

  14. Mul ultisi tisignature gnature sc schem emes es  Compromise of a single set of private-keys can cost you all of your $  Multisignatures  Require m-of-n signers to authorize a transaction  Loss of a private-key or an adversary compromising a private-key doesn't allow for funds to be lost  Examples: BTC's P2SH (Pay-to-Script-Hash)  Can be done with cryptography natively or with smart contract code and single signatures Portland State University CS 410/510 Blockchain Development & Security

  15.  https://blockchainatberkeley.blog/alternative-signatures-schemes- 14a563d9d562  Threshold ECDSA (Keep Network, Kzen)  Threshold Ed25519 (Kzen), Schnorr (Bitcoin) Portland State University CS 410/510 Blockchain Development & Security

  16. Cryptographic hash functions (Immutability)

  17. Crypt ptographi graphic c hash sh func unctio tions ns  One way functions that take arbitrary-sized input and generates a random-looking, fixed-length output  Notation  Hash function H , Input x , hash function output h  H(x)=h Portland State University CS 410/510 Blockchain Development & Security

  18. Merkle erkle-Damga Damgard Hash sh Construction struction  Repeated use of a “compression function”  Maps m bits of input to n bits of output (m > n) m-bit input n-bit input n-bit output Portland State University CS 410/510 Blockchain Development & Security

  19. Merkle erkle-Damga Damgard Hash sh Construction struction Input Padding Block 1 Block 2 Block 3 Initialization Vector Output Portland State University CS 410/510 Blockchain Development & Security

  20. Crypt ptographi graphic c hash sh func unctio tions ns  Desired properties  Deterministic : For the same input, you will always get the same output  Efficient : Quickly computed  Preimage resistance – Infeasible to determine input from output (e.g. for a given h , it is hard to find x)  Second preimage resistance (basis for immutability) – for a given input x1 , it is hard to find a different input x2 such that H(x1)=H(x2)  Collision resistance – it is hard to find any pair x1, x2 such that H(x1)=H(x2)  Avalanche effect (basis for proof-of-work) – a 1-bit change in input x causes each output bit in h to flip with probability ½ (sometimes called a pseudo-random function) Portland State University CS 410/510 Blockchain Development & Security

  21. Ex Example: ple: SHA-2  Secure Hash Algorithm 2  Designed by NSA  Published in 2001  Digest size 224, 256, 384, or 512 bits  Current cryptanalysis: Pretty good; OK for now  Used in Bitcoin  H(x) = SHA256(SHA256(x))  Earlier predecessors are now broken Portland State University CS 410/510 Blockchain Development & Security

  22. MD5 D5 (1992) 2)  Collision resistance broken since 2004  Second pre-image resistance broken since 2010  https://web.archive.org/web/20100327141611/http://th.informatik. uni-mannheim.de/people/lucks/HashCollisions/ Portland State University CS 410/510 Blockchain Development & Security

  23. Ot Other er broken en sc schem emes es  SHA (1993) – Broken, don’t use  SHA-1 (1995) – Fixes SHA, but collisions have been found (2017)  Don’t use for new projects  When might SHA-2 be broken? Portland State University CS 410/510 Blockchain Development & Security

  24. Ex Example: ple: kecc eccak ak  Winner of the SHA-3 competition sponsored by NIST to replace SHA-1 and SHA-2  https://keccak.team/keccak.html  Competition started in 2007  Ended in 2012  Sponge function that generates hashes of arbitrary length  https://keccak.team/sponge_duplex.html  Basis of various NIST-approved SHA-3 implementations  e.g. SHA3-224, SHA3-256, SHA3-384, SHA-512  Used in Ethereum Portland State University CS 410/510 Blockchain Development & Security

  25. Two us uses es for hash shes es in a blockchain ckchain  Use #1: Ensure integrity of a block  Hash signature changes if data changes  Second pre-image resistance makes it difficult to find another input x2 that maps to the same hash value as original input x1 Portland State University CS 410/510 Blockchain Development & Security

  26. De Demo mo  https://anders.com/blockchain/hash Portland State University CS 410/510 Blockchain Development & Security

  27. Two us uses es for hash shes es in a blockchain ckchain  Use #2: Mining blocks  Slow down the rate at which blocks added to a blockchain (to avoid double-spending problem)  Used to issue new currency via a block reward to restrict supply of currency  A valid block must come with a nonce, when combined with the block data, results in a hash with a certain number of leading 0s  Hash function treated as a random function!  Brute-force search by incrementing nonce and checking block hash  Probability of a bit in a hash flipping should be 50% if any bit is changed in the block! Portland State University CS 410/510 Blockchain Development & Security

Recommend

Permissioned Blockchains - Who is the Controller? Permissioned Blockchains Re-centralization of

Permissioned Blockchains - Who is the Controller? Permissioned Blockchains Re-centralization of

Permissioned Blockchains - Who is the Controller? Permissioned Blockchains Re-centralization of Blockchain and its consequences for data protection agenda Controllers and the GDPR How do we apply a centralized regulation on a

382 views • 17 slides
Blockchains: Peering Through the Hype Elaine Ou Qcon London March 8 2017 Blockchains and

Blockchains: Peering Through the Hype Elaine Ou Qcon London March 8 2017 Blockchains and

Blockchains: Peering Through the Hype Elaine Ou Qcon London March 8 2017 Blockchains and Distributed Ledgers Some Blockchain History o Crypto Anarchy o Early Distributed Ledgers Bitcoin Blockchain o Threat Model o What Makes a

590 views • 40 slides
Blockchains, the web and standardization: the big opportunity conversation starter Keynote

Blockchains, the web and standardization: the big opportunity conversation starter Keynote

Blockchains, the web and standardization: the big opportunity conversation starter Keynote Arvind Narayanan Princeton University @random_walker Standardization: is it too soon? Are Bitcoin and other blockchains sound? Academic research on

445 views • 27 slides
CS5412/LECTURE 14 Ken Birman BLOCKCHAINS FOR I O T (PART 1) CS5412 Spring 2020

CS5412/LECTURE 14 Ken Birman BLOCKCHAINS FOR I O T (PART 1) CS5412 Spring 2020

CS5412/LECTURE 14 Ken Birman BLOCKCHAINS FOR I O T (PART 1) CS5412 Spring 2020 HTTP://WWW.CS.CORNELL.EDU/COURSES/CS5412/2020SP 1 BLOCKCHAINS FOR I O T Lucas Mearian. Not afraid of hyperbole! What is blockchain? The most disruptive tech in

636 views • 49 slides
PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros:

PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros:

Towards Secure and Scalable Permissionless Blockchains The PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros: Open permissionless system. No need for identity management. Scales to millions

456 views • 28 slides
Proof Systems for Sustainable Blockchains: How to Prove you Waste Space and Time Krzysztof

Proof Systems for Sustainable Blockchains: How to Prove you Waste Space and Time Krzysztof

Proof Systems for Sustainable Blockchains: How to Prove you Waste Space and Time Krzysztof Pietrzak 1st International Summer School on Security & Privacy for Blockchains and Distributed Ledger Technologies. September 5th 2019. Proof Systems

1.44k views • 142 slides
Hyperledger Fabric: a Distributed Operating System for Permissioned Blockchains. (2018) Authors:

Hyperledger Fabric: a Distributed Operating System for Permissioned Blockchains. (2018) Authors:

Hyperledger Fabric: a Distributed Operating System for Permissioned Blockchains. (2018) Authors: Elli Androulaki, Artem Barger, et al. Presented by Chi Chen 1/11 Why Fabric? Permissioned blockchains require every peer to execute every

574 views • 11 slides
Public Blockchains Proof-of-Work Consortium & Private Blockchains Ekparinya et al,

Public Blockchains Proof-of-Work Consortium & Private Blockchains Ekparinya et al,

1200 700 The Attack of the Clones against Proof-of-Authority Parinya Ekparinya Vincent Gramoli Guillaume Jourjon Ekparinya et al, "The Attack of the Clones against PoA" Page 1 Public Blockchains Proof-of-Work Consortium &

540 views • 53 slides
Case Study: Alternate Blockchains Jeremy Rand Lead Application Engineer, The Namecoin Project

Case Study: Alternate Blockchains Jeremy Rand Lead Application Engineer, The Namecoin Project

Case Study: Alternate Blockchains Jeremy Rand Lead Application Engineer, The Namecoin Project https://www.namecoin.org/ OpenPGP: 5174 0B7C 732D 572A 3140 4010 6605 55E1 F8F7 BF85 Presented at QCon London 2017 There are a lot of blockchains.

753 views • 54 slides
Blockchains and its applications Quentin Bramas Assistant Professor ICUBE Laboratory

Blockchains and its applications Quentin Bramas Assistant Professor ICUBE Laboratory

Blockchains and its applications Quentin Bramas Assistant Professor ICUBE Laboratory University of Strasbourg Quentin Bramas < bramas@unistra.fr > 1 Blockchains Quentin Bramas < bramas@unistra.fr > 2 Blockchains

1.31k views • 115 slides
Verification of blockchains and smart contracts Formal Methods Update, 2018 BITS Pilani Goa

Verification of blockchains and smart contracts Formal Methods Update, 2018 BITS Pilani Goa

Verification of blockchains and smart contracts Formal Methods Update, 2018 BITS Pilani Goa Madhavan Mukund Chennai Mathematical Institute http:/ /www.cmi.ac.in/~madhavan Outline Introduction to blockchains Smart contracts

859 views • 37 slides
Multi-Signatures for Blockchains Yannick Seurin Agence nationale de la scurit des systmes

Multi-Signatures for Blockchains Yannick Seurin Agence nationale de la scurit des systmes

Multi-Signatures for Blockchains Yannick Seurin Agence nationale de la scurit des systmes dinformation June 12, 2019 LINCS Blockchain Day Y. Seurin (ANSSI) Multi-Signatures for Blockchains 12/06/2019 1 / 17 Uses of cryptography

921 views • 68 slides
How blockchains are becoming the secure infrastructure of Web 3.0 @jutta_steiner jutta@parity.io

How blockchains are becoming the secure infrastructure of Web 3.0 @jutta_steiner jutta@parity.io

How blockchains are becoming the secure infrastructure of Web 3.0 @jutta_steiner jutta@parity.io Building the decentralised future @ethcoreproject How it all began instead of bolting on new features ... TBD Ethereum created a shared

714 views • 23 slides
HyperService: Interoperability and Programmability Across Heterogeneous Blockchains Make Web3.0

HyperService: Interoperability and Programmability Across Heterogeneous Blockchains Make Web3.0

HyperService: Interoperability and Programmability Across Heterogeneous Blockchains Make Web3.0 Connected! Zhuotao Liu, Yangxi Xiang, Jian Shi, Peng Gao, Haoyu Wang, Xusheng Xiao, Bihan Wen, Yih-Chun Hu Blockchain Proliferation 2.3K Total # of

772 views • 23 slides
Information Propagation on Blockchains: Analysis,Method and Evaluation

Information Propagation on Blockchains: Analysis,Method and Evaluation

Information Propagation on Blockchains: Analysis,Method and Evaluation - - 5120309578 Preface Blockchain is a distributed system node that

229 views • 18 slides
A Digital Gold Rush: The Impact of Bitcoins and Blockchains on Ontarios Mining Sector Dr. Karl

A Digital Gold Rush: The Impact of Bitcoins and Blockchains on Ontarios Mining Sector Dr. Karl

A Digital Gold Rush: The Impact of Bitcoins and Blockchains on Ontarios Mining Sector Dr. Karl Skogstad Lakehead University APGO September 2018 Skogstad (Lakehead) Bitcoins and Blockchains APGO Webinar, 2018 1 / 60 Should You Worry?

730 views • 60 slides
SmartChainDB: Towards Semantic Events on Blockchains for Smart Manufacturing Abhisha

SmartChainDB: Towards Semantic Events on Blockchains for Smart Manufacturing Abhisha

. . . . . . . . . . . . . . . . SmartChainDB: Towards Semantic Events on Blockchains for Smart Manufacturing Abhisha Bhattacharyya, Rahul Iyer, Kemafor Anyanwu October 26, 2019 NC State University . . . . . . . . . . .

212 views • 10 slides
Blockchains Beyond Bitcoin: Notations Towards Optimal Level of Analysis of the Problem Let Us

Blockchains Beyond Bitcoin: Notations Towards Optimal Level of Analysis of the Problem Let Us

How Financial . . . Limitations of the . . . Blockchain as an . . . Formulation of the . . . Blockchains Beyond Bitcoin: Notations Towards Optimal Level of Analysis of the Problem Let Us Find the . . . Decentralization in Storing

298 views • 14 slides
An Analysis of Atomic Swaps on and between Ethereum Blockchains Research Project I Master of

An Analysis of Atomic Swaps on and between Ethereum Blockchains Research Project I Master of

An Analysis of Atomic Swaps on and between Ethereum Blockchains Research Project I Master of System and Network Engineering Informatics Institute, University of Amsterdam Peter Bennink Lennart van Gijtenbeek Supervisors: Oskar van Deventer

644 views • 23 slides
SmartDX Todd McDonald 05/25/17. p2. p3. Evolution from Blockchains to Distributed Ledgers in

SmartDX Todd McDonald 05/25/17. p2. p3. Evolution from Blockchains to Distributed Ledgers in

SmartDX Todd McDonald 05/25/17. p2. p3. Evolution from Blockchains to Distributed Ledgers in Finance Corda V1 Hyperledger R3 Consortium Meta Protocols, Corda open Project begins Colored Coins, sourced Bitcoin and Tokenization

581 views • 11 slides
Blockchains: The Bits That Could Be Standardized Manu Sporny - CEO - Digital Bazaar Research

Blockchains: The Bits That Could Be Standardized Manu Sporny - CEO - Digital Bazaar Research

Blockchains: The Bits That Could Be Standardized Manu Sporny - CEO - Digital Bazaar Research Into Decentralized Ledger Technologies Principle Bitcoin Ethereum Stellar IPFS Blockstack Hashgraph Confidentiality None None None Hash-based

524 views • 4 slides
Demystifying Blockchains: Decentralized, Secure and Fault-tolerant Storage Amr El Abbadi

Demystifying Blockchains: Decentralized, Secure and Fault-tolerant Storage Amr El Abbadi

Demystifying Blockchains: Decentralized, Secure and Fault-tolerant Storage Amr El Abbadi University of California, Santa Barbara In Collaboration with: Mohammad Amiri, Sujaya Maiyya, Victor Zakhary, and Divyakant Agrawal. Brown 2019 1

458 views • 41 slides
Transaction clustering using network traffic blockchains analysis for Bitcoin and derived

Transaction clustering using network traffic blockchains analysis for Bitcoin and derived

Transaction clustering using network traffic analysis for Bitcoin and derived Transaction clustering using network traffic blockchains analysis for Bitcoin and derived blockchains Biryukov, Tikhomirov Introduction Network privacy Alex

491 views • 30 slides
Distributed Systems and Databases of the Globe Unite! The Cloud, the Edge and Blockchains Amr El

Distributed Systems and Databases of the Globe Unite! The Cloud, the Edge and Blockchains Amr El

Distributed Systems and Databases of the Globe Unite! The Cloud, the Edge and Blockchains Amr El Abbadi University of California, Santa Barbara Divy Agrawal , Mohammad Amiri, Sujaya Maiyya, Faisal Nawab (UCSC), Victor Zakhary. OPODIS 2018 1

1.04k views • 68 slides

More recommend