Block-Supply Chain: A New Anti- Counterfeiting Supply Chain Using - - PowerPoint PPT Presentation

Block-Supply Chain: A New Anti- Counterfeiting Supply Chain Using NFC and Blockchain

By: Naif Alzahrani Nirupama Bulusu Portland State University

• World Health Organization (WHO) 2008 [1]: 30% of

medical products are counterfeit in developing countries

• MarkMonitor, 2011 [2]: counterfeit sales cost about

$135 billion in online shopping

• 2017: 40–50% of antimalarials are counterfeit in

countries like SoutheastAsia and Africa [3]

Motivation

Products’ Counterfeiting

Existing Solutions

Existing Approaches Cryptographic Track &Trace

Challenge Response Protocol

Challenge Response Protocol

Sever Tag

• 1. Generates a random Challenge

Challenge

4

Challenge Response Protocol

Sever Tag

• 1. Generates a random Challenge

Challenge Response Challenge Sign Private key Response 2.

5

Challenge Response Protocol

Sever Tag

• 1. Generates a random Challenge

Challenge Response Challenge Sign Private key Response 2. Verify Public key Response 3. Challenge

6

7

Existing Solutions

• 1. Modification

Genuine Product Legitimate Tag

Expiration Date

Modifies Data

8

Counterfeiting Attacks

• 2. Cloning

Genuine Product Counterfeit Product Copies and Writes Data

9

Counterfeiting Attacks

• 3. Tag Reapplication

Genuine Product Legitimate Tag Counterfeit Product Removes and Reapplies Tag

10

Counterfeiting Attacks

Block-Supply Chain: decentralized supply chain to:

• Track and trace product
• Detect:

Modifiction Cloning Tag reapplication

Contribution

Block-Supply Chain

Initialization Phase Verification Phase

Initialization Phase

B0

Manufacturer

Initialization Phase

B0 B0 B0 B0 B0 B0

Initialization Phase

B0 B0 B0 B0 B0 B0

Initialization Phase

Initialization Phase

B0 B0 B0 B0 B0 B0

Block-Supply Chain

Initialization Phase Verification Phase

Verification Phase

B0 B0 B0 B0 B0 B0

Verification Phase

B1 B1 B1 B1 B1 B1 B0 B0 B0 B0 B0 B0

Verification Phase

B1 B1 B1 B1 B1 B1 B0 B0 B0 B0 B0 B0

Local Authentication

B2

Verification Phase

B1 B1 B1 B1 B1 B1 B0 B0 B0 B0 B0 B0

B2 B2 B2 B2 B2 B2

Verification Phase

B1 B1 B1 B1 B1 B1 B0 B0 B0 B0 B0 B0

B2

Verification Phase

B1 B1 B1 B1 B1 B1 B0 B0 B0 B0 B0 B0

Global Authentication Global Authentication Global Authentication Global Authentication Global Authentication

B2

Verification Phase

B1 B1 B1 B1 B1 B1 B0 B0 B0 B0 B0 B0

Global Authentication Global Authentication Global Authentication Global Authentication

B2 Valid?

Global Authentication

B2

Verification Phase

B1 B1 B1 B1 B1 B1 B0 B0 B0 B0 B0 B0 B2 B2 B2 B2 B2

• 1. Trace-and-track products
• 2. Detects:
• Modification
• Cloning
• Tag reapplication

Local Authentication Global Authentication

+

Verification Phase

Consensus Protocol

Existing Protocols

Proof of Work (PoW)

• Solve a challenge: compute a cryptographic

hashes

• If succeed, submit the block to the network

Existing Protocols

Proof of Work (PoW)

• Issues:
• 1. Huge computational effort
• 2. Energy and computing resources

consumption

• 3. Relies on a few mining pools (raises

doubts on the decentralization)

• 4. Frequently fork

Existing Protocols

Fixed-Validators Decentralization

• Small fixed number of nodes chosen to be

validators

• Proof of Stake (PoS): e.g. the voting power
• Committee size —> Computation and

communication overhead

Existing Protocols

Fixed-Validators Decentralization

• Examples:
• 1. Tendermint
• 2. Hyperledger Fabric
• 1/3 byzantine nodes

Existing Protocols

Fixed-Validators Decentralization

• Issues:
• 1. Strong trust assumption
• 2. Fixed committee of validators is

vulnerable to adversarial attacks

• DoS attack
• Powerful adversary can corrupt or

bribe most of them over time

Existing Protocols

Fixed-Validators Decentralization

• Issues:
• 3. Fairness of selection
• 4. Small committee + massive number of

transactions —> performance bottleneck

Design Goals

• 1. Efficiency:
• Small number of validators
• 2. Security:
• Random rotating-validators’ selection
• 3. Validators’ selection fairness
• Selection with equal probability

New consensus protocol that:

• Utilizes different set of validators
• n every block proposal
• Maintains security by employing

random validators’ selection

• Achieves efficiency by employing

small number of validators

Contribution

Proposed Protocol

• Based on Tendermint
• Select different set of validators on every

block proposal

• Balances between efficiency and security

• Four types of nodes:
• 1. Proposer: proposes the new block
• 2. Validation-leader: selects the validators
• 3. Validator: validates the proposed block
• 4. Idle: waits for the consensus on the block

Proposed Protocol

• At the genesis state
• Each proposer is randomly mapped to a

validation-leader

• The validation-leader is activated upon

receiving the block from its proposer

Proposer to validation-leader mapping

Proposed Protocol

• On proposing a new block
• Each validation-leader randomly selects Log

n validators

• A validator is activated upon receiving a

‘validate’ message from its validation-leader

Validators Selection

Proposed Protocol

Evaluation

Security

0.33% random malicious nodes

Evaluation

Efficiency

• Limitation 1: the number of validators is static

Future solution: dynamic variable number of validators based on a risk likelihood

• Limitation 2: Malicious or lazy validation-

leaders Future solution: a game theoretical model to reward and punish validation-leaders

Limitations

Future Work

• Limitation 1: the number of validators is static

Future solution: dynamic variable number of validators based on a risk likelihood

• Limitation 2: Malicious or lazy validation-

leaders Future solution: a game theoretical model to reward and punish validation-leaders

• Limitation 1: the number of validators is static

Future solution: dynamic variable number of validators based on a risk likelihood

• Limitation 2: Malicious or lazy validation-

leaders Future solution: a game theoretical model to reward and punish validation-leaders

Limitations

Future Work

• Limitation 1: the number of validators is static

Future solution: dynamic variable number of validators based on a risk likelihood

• Limitation 2: Malicious or lazy validation-

leaders Future solution: a game theoretical model to reward and punish validation-leaders

• Limitation 3: always-validation mode

Future solution: a game theoretical model to validate with probability according to the proposing node risk likelihood

• Limitation 4: validation-leaders know their

proposers in advance Future solution: blind proposers validation- leaders mapping.

Limitations

Future Work

• Limitation 3: always-validation mode

Future solution: a game theoretical model to validate with probability according to the proposing node risk likelihood

• Limitation 4: validation-leaders know their

proposers in advance Future solution: blind proposers validation- leaders mapping.

• Limitation 3: always-validation mode

Future solution: a game theoretical model to validate with probability according to the proposing node risk likelihood

• Limitation 4: validation-leaders know their

proposers in advance Future solution: blind proposers validation- leaders mapping.

Limitations

Future Work

• Limitation 3: always-validation mode

Future solution: a game theoretical model to validate with probability according to the proposing node risk likelihood

• Limitation 4: validation-leaders know their

proposers in advance Future solution: blind proposers validation- leaders mapping.

Tianks Questjons