advanced network security bitcoin
play

Advanced Network Security -. Bitcoin Jaap-Henk Hoepman Digital - PowerPoint PPT Presentation

Sep 04, 2023 •1.06k likes •1.53k views

Advanced Network Security -. Bitcoin Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh Bitcoin 01-02- // Course outline 2 Jaap-Henk Hoepman // Radboud

  1. Advanced Network Security -. Bitcoin Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh

  2. Bitcoin 01-02- // Course outline 2 Jaap-Henk Hoepman // Radboud University Nijmegen //

  3. Who am I? l Tommy Koens l PhD student on Privacy & Security in Cryptocurrencies l Promotor: Bart Jacobs; Supervisor: Jaap-Henk Hoepman l Also working at ING's Cyber Security team l Contact: tkoens@cs.ru.nl 01-02- // Course outline 3 Jaap-Henk Hoepman // Radboud University Nijmegen //

  4. Today’s topics l On Bitcoin l Bitcoin transactions l The Bitcoin network and actors l Mining and incentives l Attacks and possible solutions l Other uses of a blockchain 01-02- // Course outline 4 Jaap-Henk Hoepman // Radboud University Nijmegen //

  5. Payment systems – Some properties l Cash – transactions anonymous, slow on a global scale l Online banking – central system, not anonymous l E-cash (Chaum's) – anonymous, centralized l Bitcoin – decentralized, not anynomous – Over 600 other cryptocurrencies – See: https://coinmarketcap.com/ l ZCash – decentralized, anonymous 01-02- // Course outline 5 Jaap-Henk Hoepman // Radboud University Nijmegen //

  6. On Bitcoin l Bitcoin: the paper – Satoshi Nakamoto, 2008 – Bitcoin: A Peer-to-Peer Electronic Cash System l Bitcoin: the system – A trustless payment system, backed by cryptography l bitcoin: the coin – One bitcoin (BTC; 1200 € ) consists of one hundred million Satoshis. // Course outline 6 Jaap-Henk Hoepman // Radboud University Nijmegen // 01-02-

  7. Why is Bitcoin so interesting? l Before 2009, several proposals were made for electronic cash, like E-cash (Chaum, 1983); BitGold (Szabo, 1998); b-money (Dai, 1998) l However, Bitcoin combines the best aspects of these technologies to achieve distributed consensus l To achieve distributed consensus Bitcoin uses a technology called blockchain 01-02- // Course outline 7 Jaap-Henk Hoepman // Radboud University Nijmegen //

  8. How does Bitcoin work? High level overview 01-02- // Course outline 8 Jaap-Henk Hoepman // Radboud University Nijmegen //

  9. Agenda l On Bitcoin l Transactions l Mining / incentives l Blockchain(s) and consensus l Attacks l Other uses of a blockchain 01-02- // Course outline 9 Jaap-Henk Hoepman // Radboud University Nijmegen //

  10. Regular transactions and fees Source: https://bitcoin.org/en/developer-guide#block-chain-overview 01-02- // Course outline 10 Jaap-Henk Hoepman // Radboud University Nijmegen //

  11. Transactions l A transaction frame l Version – Which protocol version is used l Inputs – Proof ownership of coins l Outputs – Set requirements to proof ownership l An Input always references to an (previous) Output 01-02- // Course outline 11 Jaap-Henk Hoepman // Radboud University Nijmegen //

  12. Transaction: Outputs frame Index number – Location in the transaction (sequential. 0, 1, etc) l Amount – Number of coins sent l Pubkey script – Conditions set to spend the Amount l 01-02- // Course outline 12 Jaap-Henk Hoepman // Radboud University Nijmegen //

  13. Transactions: Inputs frame Transaction identifier – Uniqueliy identifies a transaction l (SHA256d) Outut index number – References to a particular output from l which coins are spent Sequence number – mine tx when timelock is satified l Signature script – Provides parameters l to satisfy the Pubkey script Combining Signature script with a Pubkey script • 01-02- // Course outline 13 Jaap-Henk Hoepman // Radboud University Nijmegen //

  14. Transactions: Script validation Scripts: Stack based language 01-02- // Course outline 14 Jaap-Henk Hoepman // Radboud University Nijmegen //

  15. Transactions: Validity rules When is a transaction valid? E.g.: l It should confirm to the rules according to the current protocol version format l The amount of the transaction cannot be larger then the sum of the total inputs l Proof of ownership must be present – script validation l See: https://en.bitcoin.it/wiki/Protocol_rules#Transactions 01-02- // Course outline 15 Jaap-Henk Hoepman // Radboud University Nijmegen //

  16. Agenda l On Bitcoin l Transactions l The Bitcoin network / actors l Mining / incentives l Attacks l Other uses of a blockchain 01-02- // Course outline 16 Jaap-Henk Hoepman // Radboud University Nijmegen //

  17. The Bitcoin network / actors l P2P network l Propagation method: <inv> & <getdata> l No broadcasts. Why not? 01-02- // Course outline 17 Jaap-Henk Hoepman // Radboud University Nijmegen //

  18. The Bitcoin network / actors l Buyers – create transactions l Sellers – offer goods l Miners / Mining pools – provide network security l Core developers – Maintain Bitcoin code l Community – Discussion and direction / run DNS servers l Government / Law enforcement / Financial institutions l Other parties (servcies): Exchanges / Wallet providers / Mixers 01-02- // Course outline 18 Jaap-Henk Hoepman // Radboud University Nijmegen //

  19. Bitcoin types l Bitcoin Core Ø Vanilla Bitcoin l Bitcoin XT (fork) Ø Blocksize debate (8 MB blocks) l Bitcoin classic (fork) Ø Blocksize debate (2 MB blocks) l Bitcoin unlimited (fork) Ø Blocksize debate (block size by consensus) 01-02- // Course outline 19 Jaap-Henk Hoepman // Radboud University Nijmegen //

  20. Agenda l On Bitcoin l Transactions l The Bitcoin network / actors l Mining / incentives l Attacks l Other uses of a blockchain 01-02- // Course outline 20 Jaap-Henk Hoepman // Radboud University Nijmegen //

  21. Mining blocks How to prevent a double spend? l “The payee needs proof that at the time of each transaction, the l majority of nodes agreed it was the first received.” (Nakamoto, 2008) Miners secure the network, by timestamping sets of transactions l Set of transactions = block l 01-02- // Course outline 21 Jaap-Henk Hoepman // Radboud University Nijmegen //

  22. Mining blocks – Preparation Collect and validate transactions l – If not valid, ignore transaction Store transactions in mempool (volatile memory) l Select transactions and create a Merkle Root l Selected transactions are store in the 'block body' l The Merkle root goes into the 'block header' l A block has a fixed size (in Bitcoin, currently) of 1 MegaByte l 01-02- // Course outline 22 Jaap-Henk Hoepman // Radboud University Nijmegen //

  23. Mining blocks – Block body • Coinbase tx The block body contains: • tx1 • tx2 • Transactions • … • tx-n • Coinbase transaction • If succesfully mined (block header), the miner sends 12.5 BTC (block reward) to himself • Thus, Bitcoins are generated out of thin air, each time a block is mined • Block reward halfs every 210.000 blocks • Maximum no. of BTC to be ever produced: 21.000.000 01-02- // Course outline 23 Jaap-Henk Hoepman // Radboud University Nijmegen //

  24. Mining blocks The block header contains: l Version – current protocol version l Hash previous block – links blocks l Merkle root – from transactions in block body l Timestamp – current time (Unix time) l Bits – represents current difficulty l Nonce – 32-bit number, starts at 0 Source: https://21.co/learn/bitcoin-mining/#the-merkle-root 01-02- // Course outline 24 Jaap-Henk Hoepman // Radboud University Nijmegen //

  25. Mining blocks l Mining is finding a hash that matches the target l Target – a hash with a specific number of leading zeros l Hash the block header, if no match, nonce++, repeat. l Difficulty – How difficult it is to find the next block hash (i.e. # of zeros) l Current difficulty: approx. 515.087,178,955 (500 billion tries) Meaning: 01-02- // Course outline 25 Jaap-Henk Hoepman // Radboud University Nijmegen //

  26. Mining result Block is 'broadcast' l If a node accept the block, the block is added to the blockchain l Thus, consensus is reached; transaction and mining process l starts again 01-02- // Course outline 26 Jaap-Henk Hoepman // Radboud University Nijmegen //

  27. Blockchain forks How does Bitcoin prevent (or mitigate) this issue? 01-02- // Course outline 27 Jaap-Henk Hoepman // Radboud University Nijmegen //

  28. Mining – proof-of-methods Proof-of-Work – find a SHA256 hash, based on processor l resource (external) Proof-of-'useful'-Work PrimeCoin – find prime numbers l Proof-of-Research – protein folding l SolarCoin – Gain reward based on solar energy l 01-02- // Course outline 28 Jaap-Henk Hoepman // Radboud University Nijmegen //

  29. Mining – other proof-of-methods Proof-of-Work variations (e.g.): l – Hash variants (e.g. BlakeCoin, Blake-256) – Cuckoo hashing, ASIC resistant (Tromp, 2015) Proof-of-Stake – Coins as internal resource (e.g. Kind and Nadal, l 2012) Proof-of-Stake-time – Time as a resource (Milutinovic, 2016) l Proof-of-Space – Disk space as a resource (Dziembowski et al., l 2013) 01-02- // Course outline 29 Jaap-Henk Hoepman // Radboud University Nijmegen //

  30. Agenda l On Bitcoin l Transactions l The Bitcoin network / actors l Mining / incentives l Attacks l Other uses of a blockchain 01-02- // Course outline 30 Jaap-Henk Hoepman // Radboud University Nijmegen //

  31. Attacks and Concerns Just to mention a few: l Finney attack l 51% attack l Power concerns l Scalability (blockchain / transaction) l Privacy l Decentralization 01-02- // Course outline 31 Jaap-Henk Hoepman // Radboud University Nijmegen //

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers

Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers

Intro to Bitcoin Research or Why Bitcoin is a full employment act for security engineers Joseph Bonneau CITP, Princeton Thanks to Andrew Miller, Arvind Narayanan, Jeremy Clark, Joshua Kroll, Ed Felten Part I: Bitcoin in 6 easy steps

752 views • 32 slides
Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin

Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin

Cryptocurrency Technologies Mechanics of Bitcoin Mechanics of Bitcoin Bitcoin Transactions Bitcoin Scripts Applications of Bitcoin Scripts Bitcoin Blocks The Bitcoin Network Limitations and Improvements Mechanics of

695 views • 33 slides
Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed

Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed

Information Propagation in the Bitcoin Network Christian Decker ETH Zurich Distributed Computing Group www.disco.ethz.ch What is Bitcoin? What is Bitcoin? + What is Bitcoin? = + Whats it worth? USD / Bitcoin exchange price 300

752 views • 48 slides
Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers are not trusted: may be greedy or corrupt Each peer knows about all bitcoins and transactions Transaction (sender -&gt; receiver): sender

958 views • 23 slides
Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin?

Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin?

Bitcoin CS 161: Computer Security Prof. Raluca Ada Poipa April 24, 2018 What is Bitcoin? Bitcoin is a cryptocurrency: a digital currency whose rules are enforced by cryptography and not by a trusted party (e.g., bank) Core ideal: avoid

1.02k views • 36 slides
DoS on a Bitcoin Lightning Network channel Willem Rens July 5, 2018 MSc Systems and Network

DoS on a Bitcoin Lightning Network channel Willem Rens July 5, 2018 MSc Systems and Network

DoS on a Bitcoin Lightning Network channel Willem Rens July 5, 2018 MSc Systems and Network Engineering University of Amsterdam Research Project 2 Introduction Bitcoin has a hard time scaling. The Bitcoin Lightning Network was proposed

670 views • 21 slides
What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Economics of network security Harald Vranken 1 Economics of network security Note that

Economics of network security Harald Vranken 1 Economics of network security Note that

Advanced Network Security (2019-2020) Economics of network security Harald Vranken 1 Economics of network security Note that network in this lecture means Physical communication network (eg. Internet, telephony, fax, telegraph)

769 views • 49 slides
Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin

Introduc)on to Bitcoin CONTENTS What is Bitcoin Who created it? Who prints it? How does Bitcoin work? The characteris5cs of Bitcoin WHAT IS BITCOIN Bitcoin is a form of digital currency, created and held electronically. No one controls it.

839 views • 17 slides
VoIP Security* Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

VoIP Security* Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

VoIP Security* Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011 *Thanks to Prof. Angelos Keromytis for materials for these lecture slides. CSE545 - Advanced Network Security - Professor McDaniel Page 1 Example of

941 views • 34 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti,

Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti,

Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti, Pramod Viswanath Untraceable Bitcoin https://www.youtube.com/watch?v=k8LqlMzEe-I This is false. Blockchain sd93fjj2 Bitcoin Primer

284 views • 26 slides
23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for crash failures Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh

115 views • 8 slides
Outline Previous e-cash and techniques CSci 5271 Introduction to Computer Security Bitcoin

Outline Previous e-cash and techniques CSci 5271 Introduction to Computer Security Bitcoin

Outline Previous e-cash and techniques CSci 5271 Introduction to Computer Security Bitcoin design Missed topic: Electronic cash and Bitcoin Stephen McCamant Bitcoin experience University of Minnesota, Computer Science &amp; Engineering

351 views • 5 slides
Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011 CSE545 - Advanced Network Security - Professor McDaniel Page 1 Network Security No really good definition, so we will accept the following for

419 views • 20 slides
A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital currency Anyone can be part of the network Global distributed ledger called blockchain First Appearance Bitcoin: A Peer-to-Peer Electronic

4.02k views • 48 slides
Uncertainty, Default, and Risk (Welch, Chapter 06-2) Ivo Welch Previous Slides In Perfect

Uncertainty, Default, and Risk (Welch, Chapter 06-2) Ivo Welch Previous Slides In Perfect

Uncertainty, Default, and Risk (Welch, Chapter 06-2) Ivo Welch Previous Slides In Perfect Markets Under Uncertainty: Random Variables Means and Standard Deviaions Risk Preferences Default (Credit) Risk Most loans have credit

973 views • 68 slides
Bitcoin starring BART PRENEEL AS DR. IR. FRE VERCAUTEREN IACR SCHOOL ON DESIGN AND SECURITY OF

Bitcoin starring BART PRENEEL AS DR. IR. FRE VERCAUTEREN IACR SCHOOL ON DESIGN AND SECURITY OF

10/23/2015 Bitcoin starring BART PRENEEL AS DR. IR. FRE VERCAUTEREN IACR SCHOOL ON DESIGN AND SECURITY OF CRYPTOGRAPHIC ALGORITHMS AND DEVICES CHIARA LAGUNA, OCTOBER 2015 1 Payment instructions and currencies Payment Instruments: mechanism of

647 views • 25 slides
Cords and gumballs Mike Hearn mike@r3.com Who what why huh?! Who am I? Kotlin early adopter:

Cords and gumballs Mike Hearn mike@r3.com Who what why huh?! Who am I? Kotlin early adopter:

Cords and gumballs Mike Hearn mike@r3.com Who what why huh?! Who am I? Kotlin early adopter: first patch to Kotlin website Sept 2014, introduced to my first product Feb 2015. Lead Platform Engineer on Corda Senior engineer at Google (7.5 yrs)

556 views • 26 slides
Is Bitcoin a suitable research topic? Digital Conference Seminar Clermont-Ferrand, France

Is Bitcoin a suitable research topic? Digital Conference Seminar Clermont-Ferrand, France

Is Bitcoin a suitable research topic? Digital Conference Seminar Clermont-Ferrand, France November 13th, 2014 Jordi Herrera-Joancomart jordi.herrera@uab.cat Universitat Aut` onoma de Barcelona Introduction Bitcoin description

972 views • 49 slides
X RIPEMD-160 SHA-256 SHA-512 This is an input to a crypto- SHA-3 graphic hash function. The

X RIPEMD-160 SHA-256 SHA-512 This is an input to a crypto- SHA-3 graphic hash function. The

17 December 2019 Bart Preneel Blcokchain and Distributed Consensus: Hype or Science? Blockchain and Distributed Outline Consensus: A short history lesson Hype or Science? Highlights of Bitcoin Design - crypto problems PROF. DR. IR. BART

772 views • 19 slides
Security and Privacy of Blockchain Protocols and Applications Sergei Tikhomirov

Security and Privacy of Blockchain Protocols and Applications Sergei Tikhomirov

Security and Privacy of Blockchain Protocols and Applications Sergei Tikhomirov Esch-sur-Alzette, Luxembourg, 17 September 2020 Part 1 Introduction Problems with government-controlled money Unpredictable issuance Censorship and

763 views • 51 slides
&quot;A proof is whatever convinces me.&quot;, Shimon Even. G ROTH -S AHAI P ROOFS R EVISITED 1 /

&quot;A proof is whatever convinces me.&quot;, Shimon Even. G ROTH -S AHAI P ROOFS R EVISITED 1 /

N ON -I NTERACTIVE P ROOF S YSTEMS G ROTH -S AHAI P ROOFS C ORRECTED G ROTH -S AHAI NIWI P ROOFS G ROTH -S AHAI P ROOFS IN T YP G ROTH -S AHAI P ROOFS R EVISITED E. Ghadafi N.P. Smart B. Warinschi Department of Computer Science, University of

613 views • 29 slides
A New RSA-Based Signature Scheme Sven Sch age, J org Schwenk Horst G ortz Institute for

A New RSA-Based Signature Scheme Sven Sch age, J org Schwenk Horst G ortz Institute for

A New RSA-Based Signature Scheme Sven Sch age, J org Schwenk Horst G ortz Institute for IT-Security Africacrypt 2010 1 / 13 RSA-Based Signature Schemes Na ve RSA signature scheme not secure under the standard definition of

647 views • 51 slides

More recommend