alert system retirement
play

Alert system retirement You are now Building on Bitcoin Bryan - PowerPoint PPT Presentation

Sep 13, 2022 •23 likes •213 views

Alert system retirement You are now Building on Bitcoin Bryan Bishop <kanzure@gmail.com> 0E4C A12B E16B E691 56F5 40C9 984F 10CC 7716 9FD2 2018-07-03 Talk outline History and background Vulnerabilities Alternatives Key

  1. Alert system retirement You are now Building on Bitcoin Bryan Bishop <kanzure@gmail.com> 0E4C A12B E16B E691 56F5 40C9 984F 10CC 7716 9FD2 2018-07-03

  2. Talk outline ● History and background ● Vulnerabilities ● Alternatives ● Key disclosure

  3. What alert system? ● Well, it was removed a long time ago. ● Used bitcoin's p2p network messaging layer ● Node peers would relay alert messages between each other on a flood network ● Public-key cryptography (public-private key pair) ● Alert key (private key) was given to a number of developers for safekeeping and it was to be used in the event of extreme emergencies

  4. Alert message fields int32_t nVersion; int64_t nRelayUntil; // when newer nodes stop relaying to newer nodes int64_t nExpiration; int32_t nID; int32_t nCancel; std::set<int32_t> setCancel; int32_t nMinVer; // lowest version inclusive int32_t nMaxVer; // highest version inclusive std::set<std::string> setSubVer; // empty matches all int32_t nPriority; ● Alert message is a serialized object consisting of the above + vchSig ● Identified by sha256(serialize(alertmessage))

  5. Conceptual and actual problems with the alert system ● Surprisingly a lot of problems and issues in something so simple ● Somewhat at odds with the idea of a decentralized p2p network ● Caused confusion and misconceptions ● Requires secure storage of the key proportional to the value of the key (e.g. potential for market disruption...). Becomes a target for thefts. ● Altcoins copying the public key (both intentionally and unintentionally) ● Alert + partition attacks etc...

  6. Version history ● bitcoin v0.3.11 introduced alert system (2010) ● bitcoin v0.10.3 and later had -alerts=0 to disable or opt-out of the alert system ● bitcoin v0.12.1 disabled the alert system ● bitcoin v0.13.0 removed alert system completely ● bitcoin v0.14.0 final alert "Alert Key Compromised" hardcoded

  7. Original implementation ● Satoshi introduced the alert system in August 2010, bitcoin v0.3.11 ● https://github.com/bitcoin/bitcoin/commit/40192 6283a200994ecd7df8eae8ced8e0b067c46

  8. Early DoS vulnerabilities ● Two alert system vulnerabilities reported by Sergio Lerner (August 2012) (CVE-2012-4684) ● https://github.com/bitcoin/bitcoin/commit/d5a52d9b3edaae6c 273b732456d98e6b28ed7b31 ● https://en.bitcoin.it/wiki/CVE-2012-4684 ● Malleable BER/DER-encoded signatures ● Solutions: – Exclude signature from hashing – Check setKnown before checking signatures – Disconnect peers that are spamming alerts

  9. Final alert concept (2012) ● Maximum sequence final alert such that other alerts cannot override the message ● Meant to be a permanent final alert... ● https://github.com/bitcoin/bitcoin/ea2fda46c3d1 2a17ebba07c139b4cd65ea0b63d9

  10. Removal proposed (June 2015) ● Removal was proposed in https://github.com/bitcoin/bitcoin/pull/6260 but was not merged ● Instead, alert system was made opt-out option https://github.com/bitcoin/bitcoin/pull/6274

  11. Removal (March 2016) ● Self-explanatory ● https://github.com/bitcoin/bitcoin/pull/7692

  12. Completing the retirement of the alert system (late 2016) ● https://lists.linuxfoundation.org/pipermail/bitcoin- dev/2016-September/013104.html ● https://bitcoin.org/en/alert/2016-11-01-alert-retirement ● Pre-final alert broadcasted ● Final alert: Max sequence Alert to disable the alert system ("Alert Key Compromised") ● Eventually, final alert was hardcoded https://bitcoin.org/en/release/v0.14.0#final-alert ● Alert key disclosure postponed

  13. Infinitely sized map (CVE-2016- 10724) ● Attacker spams a node with a large number of alerts ● No limit on size of the map structure in memory ● Node runs out of memory and dies ● basic Denial of Service (DoS) attack

  14. Infinitely sized alerts ● Alert system used bitcoin p2p network messages, imposing a limit of 32 megabytes on the size of messages ● setCancel field (list of integers, spam with many integers) ● setSubVer field (lits of std::string values, no length limit per string) ● bitcoin prior to v0.10.0 did not length limit on a handful of other fields (strComment, strStatusBar, and strReserved) ● DoS attack

  15. Multiple final alerts ● Alerts are identified by H(serialize(alertmessage)) ● Final alert definition is missing a few fields of the message structure ● Multiple final alerts can be generated by varying the value of some of the fields not required in the final alert definition ● Each final alert gets stored in memory ● See https://github.com/bitcoin/bitcoin/commit/ea2fda46c3d12a17 ebba07c139b4cd65ea0b63d9 ● Another DoS attack

  16. Final alert cancellation (CVE-2016- 10725) ● Final alert was meant to be uncancelable, but it is in fact cancelable ● Alerts are checked in the following order: – Check whether this alert cancels any other alerts – Check whether any other alerts cancel the current alert ● Attacker can cancel a final alert by another alert allowing a node (with the alert system) to again be vulnerable to these disclosed vulnerabilities

  17. Alternative alert system proposals ● Building on p2p layer is an okay idea, didn't require consensus rules... but there are other designs that could have done better. ● "Todd-lerts": OP_RETURN + burn BTC on different forks of the chain (proof-of-burn?) ● n-of-m multisig alerts, ring signatures, certificate authority, … ● Just use traditional news outlets, mailing lists, twitter, etc.

  18. Alert key disclosure (announcements) ● IRC, twitter, email, etc. ● Looked through other source code of altcoins etc. ● Asked around for any concerns etc. ● https://lists.linuxfoundation.org/pipermail/bitcoin- dev/2018-June/016123.html ● https://www.coindesk.com/long-secret-bitcoin-key- finally-revealed/ ● https://bitcoincore.org/en/meetings/2018/06/21/

  19. Alert key disclosure name value mainnet alert key (public) 04fc9702847840aaf195de8442ebecedf5b095cdbb9bc716b da9110971b28a49e0ead8564ff0db22209e0374782c093bb 899692d524e9d6a6956e7c5ecbcd68284 mainnet alert key (private) 5JTCEcgNthSUemCNERKp21MRxXD46RLq56St4VztDH (WIF) QNM1NQytv testnet alert key (public) 04302390343f91cc401d56d68b123028bf52e5fca1939df12 7f63c6467cdf9c8e2c14b61104cf817d0b780da337893ecc4 aaff1309e536162dabbdb45200ca2b0a testnet alert key (private) 928KUNGSTZnL17VeBMCSwwKEWaVFdJD5Lq6joBFR4 (WIF) EuQgbrb4FP

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Teacher Retirement System, the Public Employee Retirement System, Supplemental Benefits System

Teacher Retirement System, the Public Employee Retirement System, Supplemental Benefits System

Teacher Retirement System, the Public Employee Retirement System, Supplemental Benefits System and 403b Plans Prepared by Dan Polta S uperintendent Denali Borough S chool District Updated for AS A, November 2018 Disclaimer This

965 views • 58 slides
Pedestrian Alert System (PAS) Improve safety for pedestrians with PAS - a proximity alert system

Pedestrian Alert System (PAS) Improve safety for pedestrians with PAS - a proximity alert system

Pedestrian Alert System (PAS) Improve safety for pedestrians with PAS - a proximity alert system for forklifts and pedestrians TRACK, MEASURE , MANAGE Pedestrian Alert System Improve safety for pedestrians with PAS a proximity alert

353 views • 14 slides
Multi- -Tool CAP Tool CAP- -Based Alert Based Alert Multi and Warning System and Warning

Multi- -Tool CAP Tool CAP- -Based Alert Based Alert Multi and Warning System and Warning

I nternational Telecom m unication Union ITU-T Multi- -Tool CAP Tool CAP- -Based Alert Based Alert Multi and Warning System and Warning System Efraim Petel President, Hormann America, Inc. I TU-T/ OASI S W orkshop and Dem onstration of

745 views • 23 slides
South Dakota Retirement System Appropriations Hearing 2019 I. Overview The South Dakota

South Dakota Retirement System Appropriations Hearing 2019 I. Overview The South Dakota

South Dakota Retirement System Appropriations Hearing 2019 I. Overview The South Dakota Retirement System (SDRS) is a cost-sharing, multiple-employer public employee retirement system established to provide retirement, disability, and

105 views • 6 slides
Smart Passenger Alert System PROBLEM AT HAND Smart Passenger Alert System Time wasted waiting

Smart Passenger Alert System PROBLEM AT HAND Smart Passenger Alert System Time wasted waiting

CSP315 Project Smart Passenger Alert System PROBLEM AT HAND Smart Passenger Alert System Time wasted waiting for buses. Unpredictable traffic conditions. Waiting time for bus decides the quality of service. Need for an early

342 views • 22 slides
Implementing an Early Alert System: Faculty Engagement, System Design, Resource Planning, and

Implementing an Early Alert System: Faculty Engagement, System Design, Resource Planning, and

Implementing an Early Alert System: Faculty Engagement, System Design, Resource Planning, and Assessment Issues Early Alert Systems are critical to many institutions plans for enhancing student success. They identify at -risk students at an

261 views • 4 slides
Montana Teachers Retirement System Agency Profile The Montana Teachers Retirement System

Montana Teachers Retirement System Agency Profile The Montana Teachers Retirement System

Montana Teachers Retirement System Agency Profile The Montana Teachers Retirement System serves active and retired teachers and educators in the State of Montana. Its primary purpose is to administer their pension plan, which includes (but

380 views • 9 slides
SFERS City and County of San Francisco Employees' Retirement System San Francisco Employees'

SFERS City and County of San Francisco Employees' Retirement System San Francisco Employees'

~ SFERS City and County of San Francisco Employees' Retirement System San Francisco Employees' Retirement System RETIREMENT BOARD CALENDAR SHEET Retirement Board Meeting of May 23, 2018 Retirement Board To: From: Jay Huish Executive Director May

399 views • 13 slides
E.A.R.N Early Alert Retention Network UTSAs Academic Early Alert System Powered by: EARN at

E.A.R.N Early Alert Retention Network UTSAs Academic Early Alert System Powered by: EARN at

E.A.R.N Early Alert Retention Network UTSAs Academic Early Alert System Powered by: EARN at UTSA Who is Starfish? They help academic A collaborative I made a institutions. difference for effort between Identify. Which students that

455 views • 7 slides
Americas Retirement Architecture: Americas Retirement Architecture: Strains in the System

Americas Retirement Architecture: Americas Retirement Architecture: Strains in the System

Americas Retirement Architecture: Americas Retirement Architecture: Strains in the System Strains in the System Sujit M. CanagaRetna The Council of State Governments Southern Office, the Southern Legislative Conference (SLC) Testimony

466 views • 7 slides
KRS administers retirement benefits for over 386,000 state and local government employees DID

KRS administers retirement benefits for over 386,000 state and local government employees DID

Kentucky Employees County Employees Retirement System State Police Retirement System Hazardous | Non-hazardous Retirement System Hazardous | Non-hazardous These employees include state employees, state police officers, firefighters, city

1.36k views • 114 slides
KRS administers retirement benefits for over 379,000 state and local government employees DID

KRS administers retirement benefits for over 379,000 state and local government employees DID

Kentucky Employees County Employees Retirement System State Police Retirement System Hazardous | Non-hazardous Retirement System Hazardous | Non-hazardous These employees include state employees, state police officers, firefighters, city

1.23k views • 112 slides
Sentinel and alert system (detection of new WRDs), by the network of French Occupational Diseases

Sentinel and alert system (detection of new WRDs), by the network of French Occupational Diseases

Methodologies to identify work-related diseases (WRD) Review on sentinel and alert systems Seminar to discuss the current approaches, Brussels 18 May 2017 Sentinel and alert system (detection of new WRDs), by the network of French Occupational

1.03k views • 60 slides
Retirement Preparing for Retirement Your UCRP Retirement Monthly Retirement Income

Retirement Preparing for Retirement Your UCRP Retirement Monthly Retirement Income

Preparing for Retirement Preparing for Retirement Your UCRP Retirement Monthly Retirement Income Lump Sum Cashout Retirement payment vs Employee paycheck Other sources of retirement income Retiree health

1.17k views • 73 slides
New Hampshire Retirement System Group I (Employee and Teacher) Member Education Session 1

New Hampshire Retirement System Group I (Employee and Teacher) Member Education Session 1

New Hampshire Retirement System Group I (Employee and Teacher) Member Education Session 1 Overview Ov erview of Program of Program Retirement Terms Type of Retirement Plan Retirement Benefits Death Benefits Filing for

453 views • 44 slides
FCS Pre-Retirement Seminars FCS Retirement Services For TRS Members only Agenda Team

FCS Pre-Retirement Seminars FCS Retirement Services For TRS Members only Agenda Team

FCS Pre-Retirement Seminars FCS Retirement Services For TRS Members only Agenda Team Introductions and Overview Teachers Retirement System What happens to my accumulated leave from FCS? What about my other benefits? What do I

610 views • 41 slides
Outline Problem Approach Integration with IDSs Demo 1 Attack 160 158 47

Outline Problem Approach Integration with IDSs Demo 1 Attack 160 158 47

Combinatorial Analysis Utilizing Logical Dependencies Residing On Networks (CAULDRON) Outline Problem Approach Integration with IDSs Demo 1 Attack 160 158 47 Target Vulns Vulns Vulns 107 Vulns Vulnerability Scanner 60

309 views • 19 slides
Percona Backup for MongoDB Akira Kurogane Percona 3 - 2 - 1 MongoDB Percona Server for

Percona Backup for MongoDB Akira Kurogane Percona 3 - 2 - 1 MongoDB Percona Server for

Percona Backup for MongoDB Akira Kurogane Percona 3 - 2 - 1 MongoDB Percona Server for MongoDB Community Edition MongoDB Enterprise Edition Replica Set Cluster Percona Backup for MongoDB 2 Elements of MongoDB Backups 3 MongoDB oplog

1.43k views • 38 slides
The OMRAS2 project Bringing together semantic audio, music informatics and computational

The OMRAS2 project Bringing together semantic audio, music informatics and computational

The OMRAS2 project Bringing together semantic audio, music informatics and computational musicology Mark Sandler Centre for Digital Music Queen Mary University of London Music Information Retrieval is maturing Components for Beat

251 views • 12 slides
Masher: Mapping Long(er) Reads with Hash-based Genome Indexing on GPUs Anas Abu-Doleh 1,2 , Erik

Masher: Mapping Long(er) Reads with Hash-based Genome Indexing on GPUs Anas Abu-Doleh 1,2 , Erik

Masher: Mapping Long(er) Reads with Hash-based Genome Indexing on GPUs Anas Abu-Doleh 1,2 , Erik Saule 1 , Kamer Kaya 1 and mit V. atalyrek 1,2 1 Department of Biomedical Informatics 2 Department of Electrical and Computer Engineering The

782 views • 28 slides
Student Success A Journey Best Taken Together (Early

Student Success A Journey Best Taken Together (Early

Student Success A Journey Best Taken Together (Early Alerts-Case Study) Pam Thorburn Director, Student Academic Services Victoria University of Wellington Presenta=on Overview Victoria

377 views • 22 slides
Public warnings on public displays Presentation to the W3C Workshop on Web-based Signage The

Public warnings on public displays Presentation to the W3C Workshop on Web-based Signage The

Public warnings on public displays Presentation to the W3C Workshop on Web-based Signage The Ericsson interest Ericsson has a vision about the networked society Where connectivity helps you make sense and more of your world

105 views • 10 slides
Improvements to in silico predictivity after access to proprietary data Donna Macmillan

Improvements to in silico predictivity after access to proprietary data Donna Macmillan

Improvements to in silico predictivity after access to proprietary data Donna Macmillan Scientist Virtual ICGM - 6 th April 2016 donna.macmillan@lhasalimited.org Agenda (1) Why data sharing is important and how data is used (2) Case study using

252 views • 21 slides
Talk to me Drupal Talk to me Drupal Using Drupal to power a Voice App Hello My Name Is Frank

Talk to me Drupal Talk to me Drupal Using Drupal to power a Voice App Hello My Name Is Frank

Talk to me Drupal Talk to me Drupal Using Drupal to power a Voice App Hello My Name Is Frank Hello My Name Is Frank I am a Christian, Father, and Technology Enthusiast. Online my name is frob (IRC, d.o, github) On Twitter I am @frobdfas My Blog

616 views • 44 slides

More recommend