Shlomi Dolev,Bingyong Guo,Jianyu Niu,Ziyu Wang

DOI: https://doi.org/10.1109/tdsc.2023.3243588

2024-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:We present a new framework for asynchronous permissioned blockchain with high performance and post-quantum security. The framework contains two quantum-secure asynchronous Byzantine fault tolerance (aBFT) protocols, SodsBC and SodsBC++. We leverage concurrent preprocessing to accelerate the preparation of three cryptographic objects for the repeated consensus procedure, including common random coins as the needed randomness, secret shares of symmetric encryption keys for censorship resilience, and nested hash values for external validation predicates. The key idea behind our design is that the concurrent preprocessing mechanism can be well-supported by the consensus process of blockchains. The consumed objects in a block have been generated and globally agreed upon in a previous block. All our preprocessed objects utilize proven or commonly believed to be post-quantum cryptographic tools to resist an adversary equipped with quantum computation capabilities. We evaluate our protocols and their competitors in AWS in a typical setting where, the number of participants is 100 and each block part has 20,000 transactions. The results show that SodsBC and SodsBC++ reduce the latency of two state-of-the-art but quantum-sensitive competitors Honeybadger and Dumbo by 53% and 6%, respectively.

Shlomi Dolev,Ziyu Wang

DOI: https://doi.org/10.1109/blockchain50366.2020.00038

2020-01-01

Abstract:SodsBC is the first asynchronous blockchain consensus utilizing the concurrent preprocessing model to achieve high performance and quantum-safety. Each participant proposes one block part by a reliable broadcast (RBC), and n parallel RBCs are finalized by n parallel binary Byzantine agreement (BBA) instances, rendering a consistent block part union. Each asynchronous and randomized BBA will consume common random coins to keep liveness. In a preprocessing stage, SodsBC continuously produces a stream of distributed secrets shared by a novel quantum-safe and asynchronous weak secret sharing (AWSS) scheme. The finished secret shares are ordered in the same asynchronous consensus architecture and combined to form coins for future online stages. In an online stage (simultaneously as a preprocessing stage), SodsBC makes a consensus block for transactions which consumes the agreed one-time used coins (generated in previous preprocessing stages) to support the BBA usage. SodsBC demonstrates the possibility to support the preprocessing activity by the agreement capabilities of the online activity. Ongoing concurrent preprocessing and online activities are continuously executed in a producer-consumer fashion to support the quantum-safe coin-flipping protocol. AWSS also helps to distribute the keys of a symmetric encryption scheme which encrypts the proposed block parts to avoid transaction censorship. After deploying the concurrent preprocessing model and equipping our quantum-safe building blocks, the SodsBC implementation shows a better throughput rate than VISA in a four-node-LAN network, i.e., a typical consortium blockchain. SodsBC also outperforms the open-source asynchronous blockchain, Honeybadger, when we deploy worldwide 100 AWS t2.medium nodes to construct a global WAN network.

Shlomi Dolev,Ziyu Wang

DOI: https://doi.org/10.1109/nca51143.2020.9306699

2020-01-01

Abstract:SodsMPC is a quantum-safe smart contract system. SodsMPC permissioned servers (verification nodes) execute contracts by secure multi-party computation (MPC) protocols. MPC ensures the contract execution correctness while trivially keeping the data privacy. Moreover, SodsMPC accomplishes the contract business logic privacy while protecting the contract user anonymous identity simultaneously. We express the logic of a contract by a finite state machine (FSM). A state transition of the FSM is represented by a blind polynomial with secret-shared coefficients. When using MPC to compute this blind polynomial, the contract business logic privacy is obtained. These coefficients which control the logic are binary secret shares. We also propose a base conversion method among binary and integer secret shares by MPC. Our contract anonymity comes from the "mixing-then-contract" paradigm. The online phase of the SodsMPC mixing is a multiplication between a preprocessed permutation matrix and an input vector in the form of secret sharing, which accomplishes a fully randomized shuffle of the inputs and keeps the secret share form for the following contract execution. All SodsMPC components, including a verifiable secret sharing scheme, are quantum-safe, asynchronous, coping with t < n/3 compromised servers, and robust (tolerates Byzantine servers) in both preprocessing and online phases.

Dev Gurung,Shiva Raj Pokhrel,Gang Li

DOI: https://doi.org/10.48550/arXiv.2306.14772

2023-07-01

Abstract:Post-quantum security is critical in the quantum era. Quantum computers, along with quantum algorithms, make the standard cryptography based on RSA or ECDSA over FL or Blockchain vulnerable. The implementation of post-quantum cryptography (PQC) over such systems is poorly understood as PQC is still in its standardization phase. In this work, we propose a hybrid approach to employ PQC over blockchain-based FL (BFL), where we combine a stateless signature scheme like Dilithium (or Falcon) with a stateful hash-based signature scheme like the extended Merkle Signature Scheme (XMSS). We propose a linear-based formulaic approach to device role selection mechanisms based on multiple factors to address the performance aspect. Our holistic approach of utilizing a verifiable random function (VRF) to assist in the blockchain consensus mechanism shows the practicality of the proposed approaches. The proposed method and extensive experimental results contribute to enhancing the security and performance aspects of BFL systems.

Cryptography and Security

Jian Liu,Peilun Li,Raymond Cheng,N. Asokan,Dawn Song

DOI: https://doi.org/10.1109/tpds.2021.3095234

IF: 5.3

2021-01-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Today's blockchains suffer from low throughput and high latency, which impedes their widespread adoption of more complex applications like smart contracts. In this article, we propose a novel paradigm for smart contract execution. It distinguishes between consensus nodes and execution nodes: different groups of execution nodes can execute transactions in parallel; meanwhile, consensus nodes can asynchronously order transactions and process execution results. Moreover, it requires no coordination among execution nodes and can effectively prevent livelocks. We show two ways of applying this paradigm to blockchains. First, we show how we can make Ethereum support parallel and asynchronous contract execution without hard-forks . Then, we propose a new public, permissionless blockchain. Our benchmark shows that, with a fast consensus layer, it can provide a high throughput even for complex transactions like Cryptokitties gene mixing. It can also protect simple transactions from being starved by complex transactions.

Oscar G. Bautista,Mohammad Hossein Manshaei,Richard Hernandez,Kemal Akkaya,Soamar Homsi,Selcuk Uluagac,Bautista, Oscar G.,Manshaei, Mohammad Hossein,Hernandez, Richard,Akkaya, Kemal,Uluagac, Selcuk

DOI: https://doi.org/10.1007/s10922-023-09739-y

2023-07-22

Journal of Network and Systems Management

Abstract:Secure Multiparty Computation (MPC) offers privacy-preserving computation that could be critical in many health and finance applications. Specifically, two or more parties jointly compute a function on private inputs by following a protocol executed in rounds. The MPC network typically consists of direct peer-to-peer (P2P) connections among parties. However, this significantly increases the computation time as parties need to wait for messages from each other, thus making network communication a bottleneck. Most recent works tried to address the communication efficiency by focusing on optimizing the MPC protocol rather than the underlying network topologies and protocols. In this paper, we propose the MPC over Algorand Blockchain (MPC-ABC) protocol that packs messages into Algorand transactions and utilizes its fast gossip protocol to transmit them efficiently among MPC parties. Our approach, therefore, reduces the delay and complexity associated with the fully connected P2P network while assuring the integrity of broadcasted data. We implemented MPC-ABC and utilized it to outsource the SPDZ (SPDZ—pronounced "Speedz"—is the nickname of the MPC protocol of Damgård et al. in (European Symposium on Research in Computer Security, pp 1–18, 2013)) protocol across multiple Cloud Service Providers (CSP). Experimental results show that our approach outperforms the commonly adopted approaches over the P2P TCP/IP network in terms of the average delay and network complexity.

computer science, information systems,telecommunications

S Garg,R Vashisht

DOI: https://doi.org/10.1088/1742-6596/1998/1/012003

2021-08-01

Journal of Physics: Conference Series

Abstract:Abstract Permissioned blockchain is the blockchain network that requires access to be part of the network. Participant’s actions are governed by the control layer that runs on top of the blockchain. This type of blockchains is preferred by individuals who need role description, identity, and security within the blockchain. Secure multi-party computation (MPC) is a part of cryptography that involves the modeling of procedures for two or more participants who want to work together. These participants involve sharing of input and required computational data for a particular function without sharing their confidential data actively to each other and achieving a common goal which is beneficial to both as the outcome achieved is only revealed to the participants and is highly required for their functional purpose. In this work, SPDZ (Speedz) implementation is explored leveraging additive secret sharing on the private blockchain (Hyperledger fabric). SPDZ protocol is chosen over any other computational protocol as it is highly secured from any active deceptive n-1 participant among the n participants. In this work, a backend is developed that uses a fabric SDK node.js library that interacts with the Hyperledger Fabric network. The proposed solution is shown through a demonstration. This paper concludes that for business-to-business scenarios, using SPDZ protocol on permissioned blockchain provides more security against adversaries as permissioned blockchain provides transparency over the participants of the network. As a result, permissioned blockchain is a more secure choice for enterprises to compute confidential data rather than permissionless blockchain.

Mandeep Kumar,Bhaskar Mondal

DOI: https://doi.org/10.1007/s11128-024-04316-x

IF: 1.965

2024-03-12

Quantum Information Processing

Abstract:Quantum blockchain (QBC) is a novel decentralised concept anticipated to offer an alternative to the classical blockchain to provide transaction security and transparency. The QBC frameworks can offer the most tangible advantage against the security threat posed by quantum computers on the classical blockchain. The proposed scheme offers a new QBC framework in which voting is performed by the Quantum-Secured Yet Another Consensus (QSYAC) algorithm to create a fast decentralised QBC. QSYAC algorithm is also used to ensure the reliability and fault tolerance of the blockchain framework. The classical information and the chaining are provided using a single qubit state and quantum entanglement. The transactions are signed via a cyclic permutation of the computational distinguishability of the quantum states problem, and quantum key distribution protocol is used for secure key sharing. Assuring the security of the key and the blockchain, the suggested model is more effective and safe from potential quantum assaults than earlier systems.

physics, multidisciplinary,quantum science & technology, mathematical

Shiwei Xu,Ao Sun,Zhengwei Ren,Yizhi Zhao,Qiufen Ni,Yan Tong

DOI: https://doi.org/10.1007/s10878-023-01047-0

Abstract:Consortium blockchains offer privacy for members while allowing supervision peers access to on-chain data under certain circumstances. However, current key escrow schemes rely on vulnerable traditional asymmetric encryption/decryption algorithms. To address this issue, we have designed and implemented an enhanced post-quantum key escrow system for consortium blockchains. Our system integrates NIST post-quantum public-key encryption/KEM algorithms and various post-quantum cryptographic tools to provide a fine-grained, single-point-of-dishonest-resistant, collusion-proof and privacy-preserving solution. We also offer chaincodes, related APIs, and invoking command lines for development. Finally, we perform detailed security analysis and performance evaluation, including the consumed time of chaincode execution and the needed on-chain storage space, and we also highlight the security and performance of related post-quantum KEM algorithms on consortium blockchain.

Jiapeng Zhou,Yuxiang Feng,Zhenyu Wang,Danyi Guo

DOI: https://doi.org/10.3390/s21041540

2021-02-23

Abstract:The development of information technology has brought great convenience to our lives, but at the same time, the unfairness and privacy issues brought about by traditional centralized systems cannot be ignored. Blockchain is a peer-to-peer and decentralized ledger technology that has the characteristics of transparency, consistency, traceability and fairness, but it reveals private information in some scenarios. Secure multi-party computation (MPC) guarantees enhanced privacy and correctness, so many researchers have been trying to combine secure MPC with blockchain to deal with privacy and trust issues. In this paper, we used homomorphic encryption, secret sharing and zero-knowledge proofs to construct a publicly verifiable secure MPC protocol consisting of two parts-an on-chain computation phase and an off-chain preprocessing phase-and we integrated the protocol as part of the chaincode in Hyperledger Fabric to protect the privacy of transaction data. Experiments showed that our solution performed well on a permissioned blockchain. Most of the time taken to complete the protocol was spent on communication, so the performance has a great deal of room to grow.

Wusheng Wang,Yang Yu,Lingjie Du

DOI: https://doi.org/10.1038/s41598-022-12412-0

IF: 4.6

2022-01-01

Scientific Reports

Abstract:Abstract As emerging next-generation information technologies, blockchains have unique advantages in information transparency and transaction security. They have attracted great attentions in social and financial fields. However, the rapid development of quantum computation and the impending realization of quantum supremacy have had significant impacts on the advantages of traditional blockchain based on traditional cryptography. Here, we propose a blockchain algorithm based on asymmetric quantum encryption and a stake vote consensus algorithm. The algorithm combines a consensus algorithm based on the delegated proof of stake with node behaviour and Borda count (DPoSB) and quantum digital signature technology based on quantum state computational distinguishability with a fully flipped permutation ( $${\text{QSC}}{\text{D}}_{\text{ff}}$$ QSCD ff ) problem. DPoSB is used to generate blocks by voting, while the quantum signature applies quantum one-way functions to guarantee the security of transactions. The analysis shows that this combination offers better protection than other existing quantum-resistant blockchains. The combination can effectively resist the threat of quantum computation on blockchain technology and provide a new platform to ensure the security of blockchain.

Fan Zhang,Philip Daian,Iddo Bentov

2018-01-01

Abstract:Conventional (M,N )-threshold signature schemes leave users with a painful choice. SettingM = N offers maximum resistance to key compromise. With this choice, though, loss of a single key renders the signing capability unavailable, creating paralysis in systems that use signatures for access control. Lower M improves availability, but at the expense of security. For example, a (3, 3)-multisignature cryptocurrency wallet experiences access-control paralysis upon loss of a single key, but a (2, 3)-multisig allows any two players to collude and steal funds from the third. In this paper, we introduce techniques that address this impasse by making general cryptographic access structures dynamic. Our schemes permit, e.g., a (3, 3)-multisig, to be downgraded to a (2, 3)multisig if a player goes missing. This downgrading is secure in the sense that it occurs only if a player is provably unavailable. Our main tool is what we call a Paralysis Proof, evidence that players, i.e., key holders, are unavailable or incapacitated. Using Paralysis Proofs, we show how to construct a Dynamic Access Structure System, which can securely and flexibly update target access structures without a trusted third party such as a system administrator. We present DASS constructions that combine a trust anchor (a trusted execution environment or smart contract) with a censorshipresistant channel in the form of a blockchain. We offer a formal framework for specifying DASS policies, and define and show how to achieve critical security and usability properties (safety, liveness, and paralysis-freeness) in a DASS. Paralysis Proofs can help address pervasive key-management challenges in many different settings. We present DASS schemes for three important example use cases: recovery of cryptocurrency funds should players become unavailable, returning funds to users when cryptocurrency custodians fail, and remediating critical smartcontract failures such as frozen funds. We report on practical implementations for Bitcoin and Ethereum.

Faisal Mehmood,Abdullah Ayub Khan,Han Wang,Shahid Karim,Umara Khalid,Feng Zhao

DOI: https://doi.org/10.1016/j.csi.2024.103876

IF: 3.721

2024-05-29

Computer Standards & Interfaces

Abstract:An examination of different distributed real-time applications operating on the blockchain platform is conducted. These applications can be broadly classified into three types: permissionless public, permissioned private, and consortium chains. In order for a decentralized network to function independently, consensus mechanisms are needed to facilitate the delivery of transactions and keep track of them in a ledger. But the fundamental idea behind Blockchain technology is the use of several consensus protocols, like Proof of Stake, Proof of Elapsed Time, etc., which requires greater processing power. In order to arrange transactions, it increases the demand for buying more computing units. Furthermore, present consortia blockchain consensus mechanisms lack a policy to collect socio-economic financial levies, including monies for charitable donations, education, and social activities. To collect socio-economic taxes, this study suggests a lightweight Plenum consensus algorithm called "BLPCA" for consortium blockchains built on Hyperledger Indy. The Byzantine Fault Tolerance concept combined with optimization is used in the suggested BLPCA systems to manage large-scale decentralized traffic of socioeconomic hierarchy. Because there are no transaction costs, BLPCA encourages government analysts to review funds using fewer resources. By including a multithreading heterogeneous technique, the BLPCA can effectively handle multi-transaction needs and execute this protocol in an industrial setting that operates in real-time. It is observed from the simulations that even in the worst-case network scenario—such as a fork—the suggested consortium blockchain does not crash a single transaction. In order to guarantee node scalability, a high propagation speed is determined. Furthermore, the BLPCA shows an excellent average time while constructing socioeconomic transaction blocks.

computer science, software engineering, hardware & architecture

Junchao Chen,Alberto Sonnino,Lefteris Kokoris-Kogias,Mohammad Sadoghi

2024-10-27

Abstract:In the realm of blockchain, smart contracts have achieved widespread adoption due to their inherent programmability. However, smart contracts suffer from long execution delays, resulting from the analysis of the contract code. Consequently, the development of a system capable of facilitating high throughput and scalability holds paramount importance. Sharding represents a prevalent technique that enhances performance by horizontally scaling storage into individual shards. However, existing sharding methods rely on 2PC to handle cross-shard transactions through data locking, necessitating the provision of read/write sets in advance, which poses impractical challenges for smart contracts. This paper introduces Thunderbolt, a novel sharding architecture that integrates the Execute-Order-Validate(EOV) and Order-Execute(OE) models to manage single-shard transactions (Single-shard TXs) and cross-shard transactions (Cross-shard TXs) without coordinating the transactions by 2PC. Shards in Thunderbolt share all the replicas, and Thunderbolt assigns each replica as the shard submitter to propose the transactions. Each shard submitter employs the EOV model to execute Single-shard TXs concurrently while applying the OE model for executing Cross-shard TXs. We leverage the DAG-based protocol as the consensus protocol and modify the consensus logic to ensure correctness between Single-shard TXs and Cross-shard TXs. We implemented a concurrent executor to execute the Single-shard TXs locally to dynamically assign the scheduling order without any read/write set knowledge. Additionally, we introduce a novel shard reconfiguration to withstand censorship attacks by relocating the shards from the current DAG to a new DAG and rotating the shard submitters. Our comparison of the results on SmallBank with serial execution on Narwhal-Tusk revealed a remarkable 50x speedup with 64 replicas.

Databases

Bryan Ford,Philipp Jovanovic,Ewa Syta

DOI: https://doi.org/10.48550/arXiv.2003.02291

2020-03-04

Distributed, Parallel, and Cluster Computing

Abstract:It is commonly held that asynchronous consensus is much more complex, difficult, and costly than partially-synchronous algorithms, especially without using common coins. This paper challenges that conventional wisdom with que sera consensus QSC, an approach to consensus that cleanly decomposes the agreement problem from that of network asynchrony. QSC uses only private coins and reaches consensus in $O(1)$ expected communication rounds. It relies on "lock-step" synchronous broadcast, but can run atop a threshold logical clock (TLC) algorithm to time and pace partially-reliable communication atop an underlying asynchronous network. This combination is arguably simpler than partially-synchronous consensus approaches like (Multi-)Paxos or Raft with leader election, and is more robust to slow leaders or targeted network denial-of-service attacks. The simplest formulations of QSC atop TLC incur expected $O(n^2)$ messages and $O(n^4)$ bits per agreement, or $O(n^3)$ bits with straightforward optimizations. An on-demand implementation, in which clients act as "natural leaders" to execute the protocol atop stateful servers that merely implement passive key-value stores, can achieve $O(n^2)$ expected communication bits per client-driven agreement.

Junchao Chen,Suyash Gupta,Alberto Sonnino,Lefteris Kokoris-Kogias,Mohammad Sadoghi

2024-07-19

Abstract:Decentralized systems built around blockchain technology promise clients an immutable ledger. They add a transaction to the ledger after it undergoes consensus among the replicas that run a Proof-of-Stake (PoS) or Byzantine Fault-Tolerant (BFT) consensus protocol. Unfortunately, these protocols face a long-range attack where an adversary having access to the private keys of the replicas can rewrite the ledger. One solution is forcing each committed block from these protocols to undergo another consensus, Proof-of-Work(PoW) consensus; PoW protocol leads to wastage of computational resources as miners compete to solve complex puzzles. In this paper, we present the design of our Power-of-Collaboration (PoC) protocol, which guards existing PoS/BFT blockchains against long-range attacks and requires miners to collaborate rather than compete. PoC guarantees fairness and accountability and only marginally degrades the throughput of the underlying system.

Cryptography and Security,Databases,Distributed, Parallel, and Cluster Computing

Rui Hao,Xiaohai Dai,Xia Xie

DOI: https://doi.org/10.1016/j.sysarc.2024.103087

IF: 5.836

2024-02-11

Journal of Systems Architecture

Abstract:The integration of blockchain technology with Cyber-Physical Systems (CPS) has gained significant attention across various industry domains such as manufacturing, healthcare, transportation, and energy management. The consensus mechanism serves as the fundamental component of decentralized blockchain systems, and the efficiency of the consensus algorithm greatly impacts the practicality of the entire system. One of the most well-known representative algorithms in the field of Byzantine Fault Tolerance (BFT) consensus is PBFT, which operates through successive views where a replica is designated as the leader in each view. The leader assumes the responsibility of proposing new requests and gathering votes from other replicas. However, in cases where the leader becomes Byzantine or faulty, a view-change process is triggered after a Δ timer expires, transitioning to the next view. Requests that failed to commit in a previous view may experience a delay of up to Δ+6δ ( δ representing the actual network delay) before being committed in the new view. Given that Δ is typically set to a large value, this latency becomes unacceptable for CPS, which necessitates real-time transaction processing or data exchange. Following PBFT, several works, including SBFT, have aimed to improve consensus performance. However, all these works primarily focus on reducing latency in the normal case and overlook the aforementioned issue that existed during the view-change process. To address this issue, we propose Doppel, an approach that reduces the latency caused by a faulty leader. Doppel achieves this by introducing two leaders, namely L1 and L2 , in each view and enabling request commitment during the view-change process. These leaders are assigned different priorities. If L1 is non-faulty, Doppel can commit requests within 5δ , which is equivalent to PBFT and SBFT. Conversely, if L1 is faulty but L2 is non-faulty, Doppel significantly reduces latency to 7δ , which is notably smaller than Δ+6δ in PBFT and SBFT. We have implemented a system prototype of Doppel and conducted multiple experiments to evaluate its performance. The experimental results consistently demonstrate Doppel's outperformance over PBFT and SBFT.

computer science, software engineering, hardware & architecture

Zhitao Guan,Xiao Zhou,Peng Liu,Longfei Wu,Wenti Yang

DOI: https://doi.org/10.1109/jiot.2021.3061107

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:Unlike a traditional centralized and producer-controlled power grid, the smart grid is a more complicated distributed power system consisted of many resources and applications. In smart grid, huge amounts of data generated by edge devices are collected by different parties. To achieve high operation efficiency, it is important to enable the data sharing and cooperative computation among different parties. How to protect the security and privacy of the utility data and the identities of their owners has become a major concern. There have been some studies on this issue. However, most of these works failed to consider the privacy protection in the dual sides of the data owner and receiver. In this article, we propose BPM4SG, a blockchain-based dual-side privacy-preserving multiparty computation (MPC) scheme for edge-enabled smart grid. In BPM4SG, the data segmentation method is adopted to ensure the security of MPC (e.g., summation) in edge nodes. The consortium blockchain and smart contract are used to further increase the system security and avoid the dependency on trusted third parties. Additionally, a data obfuscation method based on the ring signatures and a new one-time address scheme are proposed to protect the privacy of both the data owner and data receiver. The analysis shows that BPM4SG can meet the security and privacy requirements of smart grid. The experimental evaluation results demonstrate that our scheme has a better performance compared with other popular schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jing Wu,Yuhan Yang,Lijun Wei,C. Long

DOI: https://doi.org/10.1145/3390566.3391664

2020-03-12

Abstract:With the rapid development of Internet of Things, the demand of data sharing is not only to ensure the data integrity, but also to protect user's individual privacy. Secure multi-party computation, as a technology paradigm based on cryptography technology, enables privacy protection in data sharing among multiple parties, while the implement of secure multi-party computation is limited due to the inefficient, complex computation protocol and frequent interaction. Fortunately, the emergence of blockchain technology provides excellent properties of decentralization, verifiability and high reliability for secure multi-party computation. In this paper, we propose a blockchain-based secure multi-party computation architecture for data sharing, where we design an aggregator consortium for data storage, verification and joint computation. Moreover, we introduce a straightforward secure multi-party computation scheme based on homomorphic encryption. In addition, we analyze and discuss this scheme in terms of data security, access flexibility, attack resistance and potential applications.

Computer Science,Engineering

Yuxin Tong,Xiang Xie,Kang Yang,Rui Zhang,Rui Xue

DOI: https://doi.org/10.1007/s10623-024-01379-w

IF: 1.4

2024-03-28

Designs Codes and Cryptography

Abstract:Ethereum, one of the most prominent and widely deployed blockchain systems, is undergoing a significant upgrade that adopts sharding for capacity expansion and secure multi-party computation (MPC) to enable distributed validator technology (DVT). However, it faces a data availability problem, where an adversary can cheat honest-but-lazy validators to propagate invalid blocks, thereby exposing Ethereum Sharding to vulnerabilities. To address this issue, proof of custody (PoC) was proposed. Regrettably, no practically effective MPC protocol is designed to securely and distributively compute PoC. In this paper, we present a concrete and efficient MPC protocol that enables the secure computation of PoC in the dishonest-majority malicious setting. First, we construct an efficient conversion protocol to convert secret sharings in two different prime fields using the doubly authenticated bits (daBits) technique. Second, an efficient MPC protocol is designed to compute scalar multiplication over an elliptic-curve group without requiring MPC to compute branching programs. Furthermore, we employ affine coordinates to compute group operations over an elliptic curve, leading to significant performance boosts compared to other coordinate systems. Finally, a concrete end-to-end implementation of the protocol is built, and its performance is evaluated. When the operations of a validator are collaboratively performed by seven parties, the online (resp., total) running time to generate one proof of custody is 0.02 s (resp., 559.6 s ) in LAN and 0.39 s (resp., 7904.2 s ) in WAN. The results demonstrate the practicality of the proposed protocol for Ethereum Sharding over a long period of time, such as 73 days.

mathematics, applied,computer science, theory & methods