a perspective on cryptocurrencies
play

A Perspective on Cryptocurrencies BART PRENEEL IMEC-COSIC KU - PowerPoint PPT Presentation

Jul 27, 2023 •123 likes •685 views

A Perspective on Cryptocurrencies BART PRENEEL IMEC-COSIC KU LEUVEN BART.PRENEEL(AT)ESAT.KULEUVEN.BE 4 SEPTEMBER 2017 1 Currencies = maintaining memory Envelope and contents from Susa, Iran, ca 3300 BCE Each lenticular disc stands

  1. A Perspective on Cryptocurrencies BART PRENEEL IMEC-COSIC KU LEUVEN BART.PRENEEL(AT)ESAT.KULEUVEN.BE 4 SEPTEMBER 2017 1

  2. Currencies = maintaining memory “Envelope and contents from Susa, Iran, ca 3300 BCE ” “Each lenticular disc stands for “a flock” (perhaps 10 animals). The large cone represents a very large measure of grain; the small cones designate small measures of grain.” Tensions between centralized and de-centralized ways to remember value exchanges, debts, and what is due • Centralization (clay tablet): economies of scale, high-integrity, vulnerable • Decentralized (coins): high-availability, difficult to destroy as a system, forgery Slide credit: George Danezis Image provided courtesy of Denise Schmandt-Besseratand Musée du Louvre, Département des Antiquités Orientales 2

  3. Hash functions (1975): one-way easy to compute but hard to invert RIPEMD-160 SHA-256 SHA-512 This is an input to a crypto- SHA-3 graphic hash function. The input is a very long string, that is reduced by the hash function to a string of fixed f 1A3FD4128A198FB3CA345932 length. There are additional security conditions: it should be very hard to find an input hashing to a given value (a preimage) or to find two colliding inputs (a collision). 3

  4. Digital signatures (1975): “equivalent” to manual signature Donald agrees to Public key pay to Hillary 100 Bitcoins on Feb. 22 2017 Private key 4

  5. Timestamping (1990) Collect documents and hash them with a Merkle tree Chain these trees together with a hash chain Publish intermediate values on a regular basis hash f f f chain 0 t2 t3 t1 5

  6. Timestamping: Surety Technologies (  1994) http://www.surety.com/ https://www.belspo.be/belspo/organisation/Publ/pub_ostc/NO/rNOb007_en.pdf Belgian TIMESEC project (1997-1999) Estonia: Cybernetica 6

  7. Bitcoin? (white paper Oct’08 – live Jan ‘09) http://www.bitcoin.org http://www.blokchain.info E-currency with distributed generation and verification of money Transactions ◦ irreversible ◦ inexpensive ◦ over anonymous peer-to-peer network ◦ broadcast within seconds and verified within 10 to 60 minutes by inclusion in hash chain ◦ pay using private key (digital signature); verify with public key ◦ double spending prevention using a public decentralized ledger (chaining mechanism) Pseudonymous ◦ Money is linked to public key – can generate arbitrary key pairs and move money around ◦ But in many cases identification is possible 7

  8. Market price in USD (market cap  81 B$) 1 Bitcoin = 4,620.06$ 2011 bubble 8

  9. Bitcoin Transaction: send money from one public key (address) to another one Transaction A Transaction C 50 BTC 8 BTC In Out In Out 10 BTC Out 42 BTC Out 7 BTC In Transaction B Out 6 BTC 10 BTC In Out 15 BTC 5 BTC In Slide credit: F. Vercauteren 9

  10. Block Chain: a public decentralized ledger Bitcoin transactions Block 1 Block 2 Block 3 block chain (130 nonce2 nonce3 nonce1 f f f Gbyte) “small” “small” “small” 0 t2 t3 t1 Also include in every block timestamp and difficulty level of puzzle 10

  11. first transaction in a block is a coinbase transaction: transfers reward + all transaction fees to the miner 11

  12. Mining Rewards: coinbase + fees Total number of Bitcoins is limited to 21 million, each divided in 8 decimal places leading to 21×10 14 units Figure by Chris Pacia 12

  13. Bitcoin summary ◦ Public decentralized ledger (block chain) ◦ Of transactions that transfer value (bitcoin) from ◦ one or more “senders” or inputs ◦ to one or more “recipients” or outputs ◦ protected by a digital signature ◦ Integrity of ledger is secured by miners ◦ audit transactions ◦ use proof-of-work to arrive at consensus about the transactions ◦ successful miner receives reward creating new bitcoin 13

  14. Mining hash rate of Bitcoin network 7.5 EH/s = 7.5 ExaHash per second = 7.5 10 18 hash/second = 2 62.7 hash/second = 2 79 hash/day Exa Peta Tera Giga Mega 14

  15. Mining has become industrial Slide credit: Joseph Bonneau 15

  16. Mining equipment on Amazon today $4500.00 16

  17. Miners Revenue 17

  18. Cost of Leaderless Consensus Distributed consensus protocol: ◦ whichever coalition deploys most hash power, has control of the block chain ◦ 7.5 10 18 hash/second is a significant cost. ◦ not performing any useful task! Electricity + Networking costs: ◦ 0.10 W/GH/s or 750 MWatt (3/4 of a nuclear plant) ◦ @10 cent per KWh: 1 block costs 12,500$ electricity (12.5 BTC = +/-57,750$) Profit calculator: http://www.vnbitcoin.org/bitcoincalculator.php 18

  19. Number of Transactions Per Day 3.5 transactions/s transaction fee/block: 3 BTC average cost per transaction 6$ transaction fees: 0.15% of volume large share goes to a few addresses Bank card payments: around 10.000 per second? 19

  20. Block Chain Forks ◦ Miners check for double spending before including a transaction ◦ Miners broadcast a new valid block to their neighbours immediately, who then propagate it to some of their neighbours etc… ◦ The block chain normally is one long chain ◦ Distributed nature of the network can lead to forks: Block n+1 Block n+2 Block n+3 Block n Block n+1 ◦ Miners choose on which of 2 possible extensions to work ◦ Longest chain will become the main chain, transactions in orphan blocks are rebroadcast ◦ The more block that follow the harder it becomes to change a particular block ◦ Transaction is typically accepted after it is included in 6 blocks (60 minutes) Slide credit: F. Vercauteren 20

  21. Number of Orphaned blocks 21

  22. Bitcoin Crypto Hash functions: ◦ SHA-256: ◦ Computing ID of block: double hash to avoid length extension ◦ Hashing transaction before it is digitally signed (double hash) ◦ Computing address given public key or script ◦ RIPEMD-160: ◦ Computing address after SHA-256 to get 20-byte result Digital signature algorithm: ◦ ECDSA-SHA256 using curve y 2 = x 3 + 7 modulo p where p = 2 256 − 2 32 − 2 9 − 2 8 − 2 7 − 2 6 − 2 4 – 1 ◦ Private key: 256-bit scalar k, Public key: point [k]G on the curve E, with G base point ◦ Signature consists of two scalars (r,s) each having max 256 bits ◦ Can be verified using public key [k]G and the message m that was signed Slide credit: F. Vercauteren 22

  23. 23

  24. Is Bitcoin Anonymous? ◦ Betcoin gambling site was hacked in April 2012 ◦ 3,171 BTC were stolen in total (2902, 165, 17, and 87 BTC) ◦ Did not move until March 15 2013 (BTC goes up) ◦ Aggregated with other small addresses into one large address ◦ Then began a peeling chain ◦ After 10 hops, a peel went to Bitcoin-24 ◦ And in another 10 hops a peel went to Mt. Gox in total, 374.49 BTC go to known exchanges, all directly off the main peeling chain, which originated directly from the addresses known to belong to the thief. S. Meiklejohn, M. Pomarole, G. Jordan, K. Levchenko, D. McCoy, G.M. Voelker, S. Savage: A fistful of bitcoins: characterizing payments among men with no names. Internet Measurement Conference 2013: 127-140 Slide credit: George Danezis 24

  25. Alt CoinsToday: 700+ currencies derived from Bitcoin (see http://mapofcoins.com/bitcoin) Slide credit: F. Vercauteren 25

  26. > 180 are being mined https://www.coinwarz.com/charts/network-hashrate-charts 26

  27. Ethereum (ETH) https://www.ethereum.org/ https://etherscan.io/ White paper 2013, live July 2015 Smart contract (scripting) functionality: deterministic exchange mechanisms controlled by digital means that can carry out the direct transaction of value between untrusted agents ◦ E.g. self-contained fair casinos, currency swaps… Decentralized Turing-complete virtual machine Currency is called “ether” – internal transaction pricing with “gas” (anti-DDOS and spam) Ethereum forks ◦ 2016: DAO hack led to ETC fork (Ethereum classic) ◦ Q4/2016: 2 additional forks Quorum: permissioned ledger developed by Morgan-Stanley on top of Ethereum 27

  28. Ethereum (ETH) (compared to Bitcoin) block time of 12 s (600 s) memory hard algorithm based on Keccak-256 – almost SHA-3 (SHA-256 on ASICs) 70 transactions per block (2000-2500) smart contracts (limited scripting) more complex reward scheme, linear volume (decreasing to limit of 21 million BTC) ◦ reward 5 ETH per block (12.5 BTC per block but decreasing) ◦ uncles get reward so no pools (orphans get no reward) proof-of-work may evolve to proof of stake (no plans) 1 ETH = 10 18 wei (1 BTC = 10 8 satoshi) 28

  29. Ethereum (ETH) graphs 1 ETH = 330$ 91 THash/sec Market cap 31 B$ 29

  30. 2017 Some observations on Bitcoin Bitcoin community aspires to be mainstream but behaves as rebels ◦ this is not sustainable Volatile Paying and secure storage somewhat complex No peace of mind for users: if you are hacked, tough luck Most miners are in China (70%) Incentives system complex Not clear that the system will survive, but some ideas will for sure 30

  31. Open issues: Bitcoin Is Bitcoin incentive compatible? ◦ Convergence ◦ Fairness: mining power fraction  revenue fraction ◦ Liveliness ◦ Sybil attack: attacker controls many nodes in network, can refuse relaying or can favour her own blocks ◦ Selfish mining attack ◦ Bribery Some proofs exist in simplified models e.g. [Garay-Kiayias-Leonardos, Crypto’17] 31

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cryptocurrencies Course: EPL682 Advanced Security Topics Instructor: Elias Athanasopoulos

Cryptocurrencies Course: EPL682 Advanced Security Topics Instructor: Elias Athanasopoulos

Cryptocurrencies Course: EPL682 Advanced Security Topics Instructor: Elias Athanasopoulos SoK: Research perspective and challenges for Bitcoin and cryptocurrency Joseph Bonneau , Andrew Miller , Jeremy Clark, Arvind Narayanan

794 views • 43 slides
Attacks on Mining Protocol Yujin Kwon KAIST 2018.03.22 1 Cryptocurrencies Cryptocurrencies

Attacks on Mining Protocol Yujin Kwon KAIST 2018.03.22 1 Cryptocurrencies Cryptocurrencies

Attacks on Mining Protocol Yujin Kwon KAIST 2018.03.22 1 Cryptocurrencies Cryptocurrencies Increa rease! se! Cryptocurrencies Increa rease! se! 1 BTC $8.5K 1 ETH $180 Proof-of-Work Mining They use blockcha kchain to run

992 views • 64 slides
Intro to Cryptography and Cryptocurrencies Cryptographic Hash Functions Hash Pointers and

Intro to Cryptography and Cryptocurrencies Cryptographic Hash Functions Hash Pointers and

Cryptocurrency Technologies Cryptography and Cryptocurrencies Intro to Cryptography and Cryptocurrencies Cryptographic Hash Functions Hash Pointers and Data Structures Block Chains Merkle Trees Digital Signatures Public

489 views • 27 slides
Feasibility of Cryptocurrencies on Mobile devices Anas Younis & Sander Lentink University of

Feasibility of Cryptocurrencies on Mobile devices Anas Younis & Sander Lentink University of

Feasibility of Cryptocurrencies on Mobile devices Anas Younis & Sander Lentink University of Amsterdam MSc System and Network Engineering RP1 06-02-2018 1 Disclaimer Assumed knowledge; Cryptocurrencies The principle of

618 views • 28 slides
Incentives in cryptocurrencies Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to:

Incentives in cryptocurrencies Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to:

ECRYPT Workshop on Cryptocurrencies Incentives in cryptocurrencies Joseph Bonneau Recap: Bitcoin miners Bitcoin depends on miners to: Store and broadcast the block chain Validate new transactions Vote (by hash power) on consensus

939 views • 68 slides
Cryptocurrencies Outline and Distributed Electronic payments Consensus Secure transactions

Cryptocurrencies Outline and Distributed Electronic payments Consensus Secure transactions

Cryptocurrencies and Distributed Consensus May 2019 Cryptocurrencies Outline and Distributed Electronic payments Consensus Secure transactions Secure execution: contracts PROF. DR. IR. BART PRENEEL COSIC KU LEUVEN, BELGIUM AND IMEC

248 views • 21 slides
The First Perspective Image Perspective in Art Giotto, 1300 Campin, 1430 (before perspective)

The First Perspective Image Perspective in Art Giotto, 1300 Campin, 1430 (before perspective)

Italian Art in the Late Middle Ages In the Renaissance Filippo Brunelleschi Before the Discovery of Perspective Discovered Perspective Perspective is nothing else than the seeing of an object through a sheet of glass, on the surface of

344 views • 6 slides
Cryptocurrencies bitcoin, blockchain & beyond Roger Wattenhofer ETH Zurich Distributed

Cryptocurrencies bitcoin, blockchain & beyond Roger Wattenhofer ETH Zurich Distributed

Cryptocurrencies bitcoin, blockchain & beyond Roger Wattenhofer ETH Zurich Distributed Computing Group Cryptocurrencies What is Bitcoin? = + + Technology The Bank of Bitcoin The Bank of Bitcoin User Balance A 2 B 5 C 8

1.25k views • 104 slides
A Security & Privacy Perspective through Hyperledger/fabric Elli Androulaki Staff member,

A Security & Privacy Perspective through Hyperledger/fabric Elli Androulaki Staff member,

Blockchain for Enterprise: A Security & Privacy Perspective through Hyperledger/fabric Elli Androulaki Staff member, IBM Research, Zurich Workshop on cryptocurrencies Athens, 06.03.2016 Blockchain systems Introduced in 2008

707 views • 23 slides
Cryptocurrencies Dr. Mohammad Abu Omar Head of CIS Department Faculty of Technology Al-Quds

Cryptocurrencies Dr. Mohammad Abu Omar Head of CIS Department Faculty of Technology Al-Quds

Information Technology behinds the Cryptocurrencies Dr. Mohammad Abu Omar Head of CIS Department Faculty of Technology Al-Quds Open University Nov.29.2018 Information Technology is behind the Cryptocurrencies In the previous era, no one can

326 views • 14 slides
Green Mining: toward a less energe1c impact of cryptocurrencies

Green Mining: toward a less energe1c impact of cryptocurrencies

Green Mining: toward a less energe1c impact of cryptocurrencies Philippe Jacquet (Nokia Bell Labs) Bernard Mans (Macquarie University) Cryblock Infocom 2019

197 views • 19 slides
New Defence Perspective New Defence Perspective New Defence Perspective New Defence Perspective

New Defence Perspective New Defence Perspective New Defence Perspective New Defence Perspective

New Defence Perspective New Defence Perspective New Defence Perspective New Defence Perspective Innovative technology, knowledge, problem solving are critical for Canada and its allies to mitigate new threats, stay ahead of potential

469 views • 18 slides
Who Am I? Secure Identity Registration on Distributed Ledgers Sarah Azouvi Mustafa Al-Bassam

Who Am I? Secure Identity Registration on Distributed Ledgers Sarah Azouvi Mustafa Al-Bassam

Who Am I? Secure Identity Registration on Distributed Ledgers Sarah Azouvi Mustafa Al-Bassam Sarah Meiklejohn (University College London) 1 Cryptocurrencies 2 Cryptocurrencies Pseudonyms 2 Cryptocurrencies Pseudonyms tx(pk A pk B ) 2

719 views • 43 slides
Momentum or Contrarian. Which Is the Most Valid in the Case of Cryptocurrencies? Krzysztof Ko

Momentum or Contrarian. Which Is the Most Valid in the Case of Cryptocurrencies? Krzysztof Ko

Momentum or Contrarian. Which Is the Most Valid in the Case of Cryptocurrencies? Krzysztof Ko s c Pawe Sakowski Robert Slepaczuk QFRG Seminar 2018-01-16 1 / 28 Motivation What? Investigate the presence and potential strength

698 views • 28 slides
Next Gen Gifting Inc. Investor Presentation Cryptocurrencies are a nascent set of currencies and

Next Gen Gifting Inc. Investor Presentation Cryptocurrencies are a nascent set of currencies and

Next Gen Gifting Inc. Investor Presentation Cryptocurrencies are a nascent set of currencies and markets for storing value and transacting. Their growth is striking, their permanence is established and companies/facilities are ramping up

621 views • 17 slides
Perspective LanguaL Structured Vocabulary: USDA Perspective Joanne Holden Perspective: Earth

Perspective LanguaL Structured Vocabulary: USDA Perspective Joanne Holden Perspective: Earth

Perspective LanguaL Structured Vocabulary: USDA Perspective Joanne Holden Perspective: Earth Rise from the Moon Perspective: Population Density Perspective: Lightening Strikes Perspective: Pollution in the Atmosphere Perspective: Water

473 views • 44 slides
Peer-to-peer Affine Commitment using Bitcoin Karl Crary and Michael J. Sullivan Carnegie Mellon

Peer-to-peer Affine Commitment using Bitcoin Karl Crary and Michael J. Sullivan Carnegie Mellon

Peer-to-peer Affine Commitment using Bitcoin Karl Crary and Michael J. Sullivan Carnegie Mellon University PLDI 15, Portland June 17, 2015 Massively Multiplayer Online Linear Logic Karl Crary and Michael J. Sullivan Carnegie Mellon

1.02k views • 54 slides
BLOCKCHAIN The foundation behind Bitcoin Sourav Sen Gupta Indian Statistical Institute, Kolkata

BLOCKCHAIN The foundation behind Bitcoin Sourav Sen Gupta Indian Statistical Institute, Kolkata

BLOCKCHAIN The foundation behind Bitcoin Sourav Sen Gupta Indian Statistical Institute, Kolkata CRYPTOGRAPHY Backbone of Blockchain Technology Component 1 : Cryptographic Hash Functions HASH FUNCTIONS Map variable-length input to

1.96k views • 100 slides
BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau,

BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau,

BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau, Edward Felten, Andrew Miller, Steven Goldfeder References Main reference: Bitcoin and Cryptocurrency Technologies, By Arvind Narayanan, Joseph

1.46k views • 77 slides
Cryptocurrency Brings New Battles into the Currency Market Yingjie Zhao Betreuer: Heiko

Cryptocurrency Brings New Battles into the Currency Market Yingjie Zhao Betreuer: Heiko

Lehrstuhl Netzarchitekturen und Netzdienste Institut fr Informatik Technische Universitt Mnchen Cryptocurrency Brings New Battles into the Currency Market Yingjie Zhao Betreuer: Heiko Niedermayer Content Brief introduction to

444 views • 15 slides
Introducing Blockchain Oct. 12, 2017 12 p.m. EDT www.thecompanydime.com Questions? Click

Introducing Blockchain Oct. 12, 2017 12 p.m. EDT www.thecompanydime.com Questions? Click

Introducing Blockchain Oct. 12, 2017 12 p.m. EDT www.thecompanydime.com Questions? Click the chat icon at right or email us: team@thecompanydime.com Hosts Jay Campbell The Company Dime Journalist, Co-Founder David Jonas The Company Dime

812 views • 17 slides
Cryptographic Currency Dr George Danezis University College London <gdanezis@ucl.ac.uk>

Cryptographic Currency Dr George Danezis University College London <gdanezis@ucl.ac.uk>

The Irresistible Rise of Cryptographic Currency Dr George Danezis University College London <gdanezis@ucl.ac.uk> Payment Instruments and Currencies Payment Instruments: Mechanism of how we transfer value. Cash. Letters of

504 views • 23 slides
CS425/ECE428 Distributed Systems Spring 2013 2011-12-01

CS425/ECE428 Distributed Systems Spring 2013 2011-12-01

CS425/ECE428 Distributed Systems Spring 2013 2011-12-01 Nikita Borisov - UIUC 1 Two problems Unforgeable electronic currency Secure, globally unique

641 views • 28 slides
East and West: Blockchain and Compliance Strategies October 15, 2019 What is the Internet ? 2

East and West: Blockchain and Compliance Strategies October 15, 2019 What is the Internet ? 2

Privacy + Security Forum East and West: Blockchain and Compliance Strategies October 15, 2019 What is the Internet ? 2 Part 1: Demographics of Economic Growth the Millennials Dad What is this? 4 Generational Gap Views of Bitcoin

589 views • 32 slides

More recommend