public blockchains proof of work
play

Public Blockchains Proof-of-Work Consortium & Private - PowerPoint PPT Presentation

Feb 03, 2023 •10 likes •540 views

1200 700 The Attack of the Clones against Proof-of-Authority Parinya Ekparinya Vincent Gramoli Guillaume Jourjon Ekparinya et al, "The Attack of the Clones against PoA" Page 1 Public Blockchains Proof-of-Work Consortium &

  1. 1200 × 700 The Attack of the Clones against Proof-of-Authority Parinya Ekparinya Vincent Gramoli Guillaume Jourjon Ekparinya et al, "The Attack of the Clones against PoA" Page 1

  2. Public Blockchains Proof-of-Work Consortium & Private Blockchains Ekparinya et al, "The Attack of the Clones against PoA" Page 2

  3. Public Blockchains Proof-of-Work Consortium & Private Blockchains Proof-of-Authority Ekparinya et al, "The Attack of the Clones against PoA" Page 3

  4. Ekparinya et al, "The Attack of the Clones against PoA" Page 4

  5. Ekparinya et al, "The Attack of the Clones against PoA" Page 5

  6. Why Proof-of-Authority (PoA)? Ekparinya et al, "The Attack of the Clones against PoA" Page 6

  7. Why Proof-of-Authority (PoA)? Ekparinya et al, "The Attack of the Clones against PoA" Page 7

  8. Why Proof-of-Authority (PoA)? Ekparinya et al, "The Attack of the Clones against PoA" Page 8

  9. Why Proof-of-Authority (PoA)? BFT Ekparinya et al, "The Attack of the Clones against PoA" Page 9

  10. Why Proof-of-Authority (PoA)? BFT Ekparinya et al, "The Attack of the Clones against PoA" Page 10

  11. The Cloning Attack => Double-spending $ 10 $ 10 Ekparinya et al, "The Attack of the Clones against PoA" Page 11

  12. The Cloning Attack => Double-spending SAME TOKENS!! $ 10 $ 10 Ekparinya et al, "The Attack of the Clones against PoA" Page 12

  13. Q: How is it possible to double spend on PoA/Ethereum? Ekparinya et al, "The Attack of the Clones against PoA" Page 13

  14. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers Ekparinya et al, "The Attack of the Clones against PoA" Page 14

  15. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers Ekparinya et al, "The Attack of the Clones against PoA" Page 15

  16. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers 1 Blocks Ekparinya et al, "The Attack of the Clones against PoA" Page 16

  17. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers 1 2 Blocks Ekparinya et al, "The Attack of the Clones against PoA" Page 17

  18. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers 1 2 Blocks Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 18

  19. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers 1 2 3 Blocks Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 19

  20. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers 1 2 3 Blocks Decided Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 20

  21. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers 1 2 3 4 Blocks Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 21

  22. The Modus Operandi of AuRa N4 N1 N2 N3 N5 Sealers 1 2 3 4 5 Blocks Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 22

  23. The Modus Operandi of AuRa N4 N2 N3 N5 N1 Sealers 1 2 3 4 5 6 Blocks Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 23

  24. The Modus Operandi of AuRa ZZz N4 N3 N5 N1 N2 Sealers 1 2 3 4 5 6 Blocks Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 24

  25. The Modus Operandi of AuRa ZZz N4 N5 N1 N2 N3 Sealers … 1 2 3 4 5 6 7 Blocks Decided Time (s) 5 10 25 30 40 15 20 35 Ekparinya et al, "The Attack of the Clones against PoA" Page 25

  26. N3 … 7 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 26

  27. N4 N1 N3 Group A Sealers Group A Blocks … 7 Group B Blocks Group B Sealers N5 N2 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 27

  28. N4 N1 N3 Group A Sealers Group A 8 Blocks … 7 Group B Blocks Group B Sealers N5 N2 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 28

  29. N4 N1 N3 Group A Sealers Group A 8 Blocks … 7 Group B 8 Blocks Group B Sealers N5 N2 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 29

  30. N4 N1 N3 Group A Sealers Group A 9 8 Blocks … 7 Group B 8 Blocks Group B Sealers N5 N2 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 30

  31. N4 N1 N3 Group A Sealers Group A 9 8 Blocks … 7 Group B 8 9 Blocks Group B Sealers N5 N2 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 31

  32. N4 N1 N3 Group A Sealers Group A 9 8 10 Blocks … 7 Group B 8 9 Blocks Group B Sealers N5 N2 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 32

  33. N1 N4 N3 Group A Sealers Group A 9 8 10 11 Blocks … 7 Group B 8 9 Blocks Group B Sealers N5 N2 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 33

  34. N1 N4 N3 Group A Sealers Group A 9 8 10 11 Blocks … 7 Group B 8 9 10 Blocks Group B Sealers N2 N5 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 34

  35. N1 N4 N3 Group A Sealers Group A 9 8 10 11 Blocks … 7 Group B 8 9 10 Blocks Group B Sealers N2 N5 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 35

  36. N4 N3 Group A Sealers N1 Group A 9 8 10 11 Blocks … 7 12 Group B Blocks Group B Sealers N2 N5 Time (s) 60 65 75 40 45 50 55 70 Ekparinya et al, "The Attack of the Clones against PoA" Page 36

  37. Block decision duration network partition – Since decision requires strictly more than half, only one partition may decide blocks Can decide a block Ekparinya et al, "The Attack of the Clones against PoA" Page 37

  38. Block decision duration network partition – Since decision requires strictly more than half, only one partition may decide blocks Can decide a block Ekparinya et al, "The Attack of the Clones against PoA" Page 38

  39. Ekparinya et al, "The Attack of the Clones against PoA" Page 39

  40. If one sealer become malicious – A malicious sealer creates a clone to participate in both partitions!! – If n = 9, both partitions contain 5 sealers, therefore both may decide a block!! Malicious Clone sealer sealer Can Can decide decide a block a block Ekparinya et al, "The Attack of the Clones against PoA" Page 40

  41. The Cloning Attack Ekparinya et al, "The Attack of the Clones against PoA" Page 41

  42. The Cloning Attack Ekparinya et al, "The Attack of the Clones against PoA" Page 42

  43. The Cloning Attack Ekparinya et al, "The Attack of the Clones against PoA" Page 43

  44. The Cloning Attack Ekparinya et al, "The Attack of the Clones against PoA" Page 44

  45. The Cloning Attack Ekparinya et al, "The Attack of the Clones against PoA" Page 45

  46. Ekparinya et al, "The Attack of the Clones against PoA" Page 46

  47. Ekparinya et al, "The Attack of the Clones against PoA" Page 47

  48. Ekparinya et al, "The Attack of the Clones against PoA" Page 48

  49. Ekparinya et al, "The Attack of the Clones against PoA" Page 49

  50. Ekparinya et al, "The Attack of the Clones against PoA" Page 50

  51. Ekparinya et al, "The Attack of the Clones against PoA" Page 51

  52. Countermeasure – The algorithm will be more resistant to the attack if it requires strictly more than two- thirds to decide a block as shown in the illustration below with n = 9 sealers. Cannot Cannot decide decide a block a block Ekparinya et al, "The Attack of the Clones against PoA" Page 52

  53. Key takeaways – With the attack of the Clones, it is possible to double spend in PoA/Ethereum. – Provided sufficient network partition duration, the attacker can double spend with 100% success rate. – To promote safety property in PoA/Ethereum: the higher number of required sealers, the higher resistance against the attack. – The attack applies as well to Clique. The details can be found in paper. – We exchanged with the security experts of geth and parity. The developers of xDai have already took this attack into account in their POSDAO consensus algorithm. Ekparinya et al, "The Attack of the Clones against PoA" Page 53

Recommend

Proof Systems for Sustainable Blockchains: How to Prove you Waste Space and Time Krzysztof

Proof Systems for Sustainable Blockchains: How to Prove you Waste Space and Time Krzysztof

Proof Systems for Sustainable Blockchains: How to Prove you Waste Space and Time Krzysztof Pietrzak 1st International Summer School on Security & Privacy for Blockchains and Distributed Ledger Technologies. September 5th 2019. Proof Systems

1.44k views • 142 slides
Blockchains Focus is on abstraction they provide (Take CS 485/585 for how they work)

Blockchains Focus is on abstraction they provide (Take CS 485/585 for how they work)

Cryptographic Primitives Used in Blockchains Focus is on abstraction they provide (Take CS 485/585 for how they work) Public-key, Private-key cryptography Bu But t first st, , sy symm mmetric etric en encr crypt yption ion

545 views • 38 slides
Permissioned Blockchains - Who is the Controller? Permissioned Blockchains Re-centralization of

Permissioned Blockchains - Who is the Controller? Permissioned Blockchains Re-centralization of

Permissioned Blockchains - Who is the Controller? Permissioned Blockchains Re-centralization of Blockchain and its consequences for data protection agenda Controllers and the GDPR How do we apply a centralized regulation on a

382 views • 17 slides
Proofs of communication and its application e-mails Proof-of-work for fighting spam Proof-of-

Proofs of communication and its application e-mails Proof-of-work for fighting spam Proof-of-

SOFSEM 2008 Filtering unwanted Proofs of communication and its application e-mails Proof-of-work for fighting spam Proof-of- communication Location generation Preparing proofs Verifying proof Marek Klonowski Tomasz Strumi nski Open

348 views • 23 slides
PoM @ Breaking Bitcoin Kevin Loaec @kloaec kevin@chainsmiths.com The Proof of Work Mechanism A

PoM @ Breaking Bitcoin Kevin Loaec @kloaec kevin@chainsmiths.com The Proof of Work Mechanism A

PoM @ Breaking Bitcoin Kevin Loaec @kloaec kevin@chainsmiths.com The Proof of Work Mechanism A proof: no doubt possible Work: defined in physics, S.I. unit is the Joule. Gaspard-Gustave Coriolis The Proof of Work Mechanism Electrical work

705 views • 16 slides
Proofs for Satisfiability Problems Marijn J.H. Heule Joint work with Armin Biere X . X ,

Proofs for Satisfiability Problems Marijn J.H. Heule Joint work with Armin Biere X . X ,

Proofs for Satisfiability Problems Marijn J.H. Heule Joint work with Armin Biere X . X , July 18, 2014 1/32 Outline Introduction Proof Systems Proof Search Proof Formats Proof Production Proof Consumption Applications Conclusions

574 views • 36 slides
Equihash: Asymmetric Proof-of-Work based on the Generalized Birthday Problem Alex Biryukov

Equihash: Asymmetric Proof-of-Work based on the Generalized Birthday Problem Alex Biryukov

Equihash: Asymmetric Proof-of-Work based on the Generalized Birthday Problem Alex Biryukov Dmitry Khovratovich University of Luxembourg February 22nd, 2016 Proof (Prover) Verifiers Proof of Work in cryptocurrencies PoW certificate of

550 views • 27 slides
Proof of Luck: an Efficient Blockchain Consensus Protocol Mitar Milutinovic, Warren He, Howard

Proof of Luck: an Efficient Blockchain Consensus Protocol Mitar Milutinovic, Warren He, Howard

Proof of Luck: an Efficient Blockchain Consensus Protocol Mitar Milutinovic, Warren He, Howard Wu, Maxinder Kanwal Outline Background: blockchains, consensus, and SGX Existing consensus mechanisms Our paper: 3 basic consensus primitives Proof

527 views • 50 slides
Blockchains: Peering Through the Hype Elaine Ou Qcon London March 8 2017 Blockchains and

Blockchains: Peering Through the Hype Elaine Ou Qcon London March 8 2017 Blockchains and

Blockchains: Peering Through the Hype Elaine Ou Qcon London March 8 2017 Blockchains and Distributed Ledgers Some Blockchain History o Crypto Anarchy o Early Distributed Ledgers Bitcoin Blockchain o Threat Model o What Makes a

590 views • 40 slides
Blockchains, the web and standardization: the big opportunity conversation starter Keynote

Blockchains, the web and standardization: the big opportunity conversation starter Keynote

Blockchains, the web and standardization: the big opportunity conversation starter Keynote Arvind Narayanan Princeton University @random_walker Standardization: is it too soon? Are Bitcoin and other blockchains sound? Academic research on

445 views • 27 slides
Proof-of-Work? Scenarios Inspired by the Bitcoin Currency Can we Afford Integrity by

Proof-of-Work? Scenarios Inspired by the Bitcoin Currency Can we Afford Integrity by

Can we Afford Integrity by Proof-of-Work? Scenarios Inspired by the Bitcoin Currency Can we Afford Integrity by Proof-of-Work? Jrg Becker, Dominic Breuker, Tobias Heide, Justus Holler, Hans Peter Rauer, Rainer Bhme Motivation Electronic

301 views • 28 slides
Proof of Honesty: Coalition-Proof Blockchain Validation without Proof of Work or Stake John P.

Proof of Honesty: Coalition-Proof Blockchain Validation without Proof of Work or Stake John P.

Proof of Honesty: Coalition-Proof Blockchain Validation without Proof of Work or Stake John P. Conley Vanderbilt University Sirius Sirius Group Group Meeting Meeting Cheriton School Cheriton School of of Computer Computer Science

444 views • 26 slides
PROOF installation/usage Attila Krasznahorkay for the Tier3 PROOF WG Wednesday, June 9, 2010

PROOF installation/usage Attila Krasznahorkay for the Tier3 PROOF WG Wednesday, June 9, 2010

PROOF installation/usage Attila Krasznahorkay for the Tier3 PROOF WG Wednesday, June 9, 2010 Overview PROOF recap The work done in the WG WG Recommendations PROOF installation/configuration Using PROOF efficiently Usage

773 views • 28 slides
Simple Proofs of Sequential Work Bram Cohen Krzysztof Pietrzak Eurocrypt 2018, Tel Aviv, May 1st

Simple Proofs of Sequential Work Bram Cohen Krzysztof Pietrzak Eurocrypt 2018, Tel Aviv, May 1st

Simple Proofs of Sequential Work Bram Cohen Krzysztof Pietrzak Eurocrypt 2018, Tel Aviv, May 1st 2018 Outline What Proofs of Sequential Work How Sketch of Construction & Proof Why Sustainable Blockchains Outline What

812 views • 60 slides
CS5412/LECTURE 14 Ken Birman BLOCKCHAINS FOR I O T (PART 1) CS5412 Spring 2020

CS5412/LECTURE 14 Ken Birman BLOCKCHAINS FOR I O T (PART 1) CS5412 Spring 2020

CS5412/LECTURE 14 Ken Birman BLOCKCHAINS FOR I O T (PART 1) CS5412 Spring 2020 HTTP://WWW.CS.CORNELL.EDU/COURSES/CS5412/2020SP 1 BLOCKCHAINS FOR I O T Lucas Mearian. Not afraid of hyperbole! What is blockchain? The most disruptive tech in

636 views • 49 slides
TOURNAMENT PAPER WORK REVIEW TOURNAMENT PLAYER VERIFICATION FORM Proof of Age Proof of

TOURNAMENT PAPER WORK REVIEW TOURNAMENT PLAYER VERIFICATION FORM Proof of Age Proof of

TOURNAMENT PAPER WORK REVIEW TOURNAMENT PLAYER VERIFICATION FORM Proof of Age Proof of Residency School Enrollment Player Information Proof of Age (BC) Proof of Residency OR School Enrollment Waivers Signatures Proof of Residency:

480 views • 32 slides
PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros:

PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros:

Towards Secure and Scalable Permissionless Blockchains The PoW Experience Dr. Ghassan Karame NEC Laboratories Europe PoW-based Blockchains Pros: Open permissionless system. No need for identity management. Scales to millions

456 views • 28 slides
Securing Proof-of-Work Ledgers via Checkpointing Dimitris Karakostas, Aggelos Kiayias

Securing Proof-of-Work Ledgers via Checkpointing Dimitris Karakostas, Aggelos Kiayias

Securing Proof-of-Work Ledgers via Checkpointing Dimitris Karakostas, Aggelos Kiayias Bitcoins novelties Hash chain + Proof-of-Work + Incentives for participation Bitcoins novelties Hash chain + Proof-of-Work

1.26k views • 37 slides
3515ICT Theory of Computation Some sample proofs 4-0 Proof types 1. Proof

3515ICT Theory of Computation Some sample proofs 4-0 Proof types 1. Proof

Griffith University 3515ICT Theory of Computation Some sample proofs 4-0 Proof types 1. Proof by construction 2. Proof by equivalence 3. Proof by contradiction 4. Proof by case analysis 5. Proof by induction

549 views • 11 slides
Hyperledger Fabric: a Distributed Operating System for Permissioned Blockchains. (2018) Authors:

Hyperledger Fabric: a Distributed Operating System for Permissioned Blockchains. (2018) Authors:

Hyperledger Fabric: a Distributed Operating System for Permissioned Blockchains. (2018) Authors: Elli Androulaki, Artem Barger, et al. Presented by Chi Chen 1/11 Why Fabric? Permissioned blockchains require every peer to execute every

574 views • 11 slides
Proof of work, Hash chaining CS 161: Computer Security Prof. David Wagner April 13, 2016 A

Proof of work, Hash chaining CS 161: Computer Security Prof. David Wagner April 13, 2016 A

Crypto tricks: Proof of work, Hash chaining CS 161: Computer Security Prof. David Wagner April 13, 2016 A Tangent: How Can I Prove I Am Rich? Math Puzzle Proof of Work Problem. To prove to Bob Im not a spammer, Bob wants me to do 10

488 views • 29 slides
CERES for Propositional Proof Schemata Mikheil Rukhaia joint work with T. Dunchev, A. Leitsch and

CERES for Propositional Proof Schemata Mikheil Rukhaia joint work with T. Dunchev, A. Leitsch and

CERES for Propositional Proof Schemata Mikheil Rukhaia joint work with T. Dunchev, A. Leitsch and D. Weller Institute of Computer Languages, Vienna University of Technology. Workshop on Structural and Computational Proof Theory, Innsbruck,

1.01k views • 57 slides
Case Study: Alternate Blockchains Jeremy Rand Lead Application Engineer, The Namecoin Project

Case Study: Alternate Blockchains Jeremy Rand Lead Application Engineer, The Namecoin Project

Case Study: Alternate Blockchains Jeremy Rand Lead Application Engineer, The Namecoin Project https://www.namecoin.org/ OpenPGP: 5174 0B7C 732D 572A 3140 4010 6605 55E1 F8F7 BF85 Presented at QCon London 2017 There are a lot of blockchains.

753 views • 54 slides
Arend Proof Assistant Assisted Pegagogy A graphical proof assistant for undergraduate computer

Arend Proof Assistant Assisted Pegagogy A graphical proof assistant for undergraduate computer

Background Proof assistants in education Arend System description Implementation Future work Arend Proof Assistant Assisted Pegagogy A graphical proof assistant for undergraduate computer science education Andrew V. Clifton

564 views • 52 slides

More recommend