decreasing security threshold against double spend attack
play

Decreasing Security Threshold Against Double Spend Attack in - PowerPoint PPT Presentation

Jan 20, 2024 •104 likes •318 views

Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Lyudmila Kovalchuk 1 , 2 Joint work with Dmytro

  1. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Lyudmila Kovalchuk 1 , 2 Joint work with Dmytro Kaidalov 1 , Andrii Nastenko 1 , Mariia Rodinko 1 , 3 , Olexiy Shevtsov 1 , 3 , Roman Oliynykov 1 , 3 1 Input Output HK, Hong Kong 2 National Technical University of Ukraine ”Igor Sikorsky Kyiv Polytechnic Institute”, Kyiv, Ukraine 3 V.N. Karazin Kharkiv National University, Kharkiv, Ukraine April 29 th , 2019 1 / 18

  2. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Previous Works [Nak08, Ros14, PR16, GP17], – estimations of probability of double spend attack in model with continuous time and zero network delivery delay (prompt synchronization between honest miners); [SZ15, SLZ16] – observations that this probability significantly depends on a network delivery delay; [GKL15, GKL17] – asymptotic estimates of splitting attack probability in model with discrete time and non-zero network delivery delay; [PSS17] – some asymptotic properties of blockchain with limited delivery time; [KKN + 18] – building of (non-asymptotic) upper bounds of splitting attack probability in models with discrete time and different network delivery delays for honest and malicious miners. 2 / 18

  3. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Main Questions How exactly the security threshold depends on network parameters, especially, on intensity of block generation, honest miners’ ratio and network delivery delay ? What is the probability of double spend attack for network with given parameters? 3 / 18

  4. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Our Results Exact value for security threshold for network with arbitrary parameters. We obtained strictly proved expressions for the minimal ratio of adversary sufficient for attack is guaranteed to be successful. As we show, for some network parameters this ratio may be essentially lower than 50%. Using this result, it is possible to find the probability of double spend attack for network with arbitrary parameters. Maximum allowable block generation rate for network with arbitrary parameters (for which network is still secure against double spend attack). We obtained expressions for the maximal intensity of block creation, at which the network remains resistant to double spend attack. 4 / 18

  5. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Assumptions for The Model Presented Time is a continuous parameter. Synchronization time between honest miners is upper bounded by given arbitrary value. Adversary can: delay block delivering for honest miners within this upper bound; corrupt any nodes he choose at each moment (such that common ratio of corrupted nodes is not more than some given value). Synchronization time of the adversary is also a given arbitrary value and can be set to zero. Block generation rate is set to arbitrary value (both for honest miners and the adversary). The fraction of adversarial hashpower is arbitrary. 5 / 18

  6. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Designations and Definitions (I) α is the common intensity of block generation in network, α = α H + α M ; D H , D M are block delivery delays for honest miners and adversary, respectively, D M ≤ D H ; ∆ = D H − D M ≥ 0 is the difference between network delivery delays; p H = α H α and p M = α M α are the ratios of honest miners and the adversary, respectively; γ = γ ( α, ∆) = α · ∆ is the average number of blocks generated by all miners during the time ∆. 6 / 18

  7. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Designations and Definitions (II) Definition 1 For a given network with parameters α , α H , α M , D H and D M its security threshold p st is the minimal adversary’s ratio that guarantees success of a double spend attack (i.e. if the adversary’s ratio is not less than p st , then the probability of a successful attack is equal to 1). 7 / 18

  8. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Auxiliary Results (I) Lemma 2 For the given network with parameters α , α H , α M , D H and D M the probability p ′ M that the next block will be created by an adversary is equal to M = 1 − e − α M ∆ p H ; p ′ the probability p ′ H that the next block will be created by honest miners is equal to H = e − α M ∆ p H . p ′ 8 / 18

  9. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Auxiliary Results (II) Lemma 3 Let, at some point in time t 0 , the branch created by the adversary be n blocks shorter than the branch created by honest miners. Denote as E n the event that at some point in time t > t 0 an adversary was able to create a longer chain, and let q n = P ( E n ) . Then  1 , if p ′ M ≥ p ′ H ;  � n q n = (1) � p ′ , otherwise . M p ′  H 9 / 18

  10. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Main Result I. Security Threshold (I) Theorem 4 For a given network with the parameter γ , the security threshold p st is the solution of the equation 1 − p st = e γ · p st . (2) 2 10 / 18

  11. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Main Result I. Security Threshold (II) In the following table we give numerical results for the security threshold for various values of γ = γ ( α, ∆) = α · ∆. Table: Security Threshold for Various Values of Parameter γ = γ ( α, ∆) = α · ∆ γ 1/30 0.1 0.5 1 2 p st 0.491737 0.475643 0.391798 0.314923 0.221427 11 / 18

  12. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Interpretation E.g., for Bitcoin, if ∆ = 20 sec and α = 1 / 600, we obtain γ = 1 / 30 and the security threshold is p st = 0 . 491737. It means that if the adversary’s ratio is not less than 0 . 491737, his attack will be successful with probability 1. 12 / 18

  13. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Main Result II. Upper Bound for Intensity of Block Generation Theorem 5 For a given network with parameters p H , p M , ∆ H and ∆ M , the network is completely (with probability 1) vulnerable to a double spend attack if and only if the intensity α of block generation satisfies the following inequality: α ≥ ln(2 · p H ) (1 − p H )∆ (or α ≥ ln 2 p H p M ∆ , which is the same). 13 / 18

  14. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Numerical Results In the next table we adduce the numerical results for the minimal value of intensity of block generation, at which the probability of a double spend attack is equal to 1, for various adversary’s ratio. Table: Minimal intensity α of block generation (for various adversary’s ratios and various ∆), at which the probability of a double spend attack is equal to 1 ∆ p M 1 sec 5 sec 10 sec 20 sec 60 sec 0.1 5.878 1.176 0.588 0.294 0.098 0.2 2.350 0.470 0.235 0.118 0.039 0.3 1.122 0.224 0.112 0.056 0.019 0.4 0.456 0.091 0.046 0.023 0.008 0.45 0.212 0.042 0.021 0.011 0.004 14 / 18

  15. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Interpretation E.g., for Bitcoin, if ∆ = 20 sec and p M = 0 . 3, the intensity may be increased by 33 times to 0 . 056 blocks per second. However, in this case the probability of unintentional fork will also increase, whereby a lot of work will be wasted. 15 / 18

  16. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Formula for calculation of double spend attack probability after z confirmation blocks:  if p ′ M ≥ p ′ 1 , H ;  P ( z ) = � � z − k � � p ′ 1 − � z k =0 P z ( k ) 1 − M otherwise , ,  p ′ H k ( n − 1)! · e − α M nD H · ( α M nD H ) k p n ( n − i + 1)! · C i � H k where P n ( k ) = · , k ! ( α nD H ) i i =0 where α H , α M are the intensities of block generation by honest and malicious participants; α = α H + α M ; D H is the network delivery delay for honest participants; p H = α H α , p M = α M α are hashrates of honest and malicious participants; M = 1 − e − α M D H · α M + α H = 1 − e − α M D H · p H ; p ′ α H H = e − α M D H · α M + α H = e − α M D H · p H . p ′ α H Using these results, the probability of a double spend attack and the number of confirmation blocks can be calculated. 16 / 18

  17. Decreasing Security Threshold Against Double Spend Attack in Networks with Slow Synchronization Conclusions (I) The paper shows how the intensity of block generation affects the network security, and exact analytical expressions are adduced for both the network security threshold and the upper bound of block generation intensity. At the same time, it is essential that increase in the intensity of block generation results in making the network vulnerable to attacks, and, also the number of orphan blocks is increased, i.e. the amount of wasted work is also increased. 17 / 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Last time: Basic concepts Double spend attack Today: Block withholding attacks

Last time: Basic concepts Double spend attack Today: Block withholding attacks

T RUTH J USTICE A LGOS Cryptocurrencies II: Selfish Mining Teachers: Ariel Procaccia and Alex Psomas (this time) Last time: Basic concepts Double spend attack Today: Block withholding attacks (Selfish mining) Get a taste of

956 views • 41 slides
Comparison of different threshold values for a wavelet designed attack sensor C. Cappo 1 C.

Comparison of different threshold values for a wavelet designed attack sensor C. Cappo 1 C.

Comparison of different threshold values for a wavelet designed attack sensor C. Cappo 1 C. Schaerer 1 A. Kozakevicius 2 R. Ceretta 2 B. Mozaquattro 2 1 Polytechnic School, National University of Asuncin, Paraguay 2 Technology Center Federal

809 views • 47 slides
Pragmatic AV (or how to spend what you need to spend on what you need to spend it on)

Pragmatic AV (or how to spend what you need to spend on what you need to spend it on)

Pragmatic AV (or how to spend what you need to spend on what you need to spend it on) Andi Allan CTS-D Senior Design Engineer Introduction Reflex.co.uk creating connected workspaces Topics 4K (or not to 4K) Scaling

845 views • 58 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CSCE Intro to Computer Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies Security

472 views • 20 slides
Security & Compliance Thursday, September 4 2014 What is a security breach/attack? A

Security & Compliance Thursday, September 4 2014 What is a security breach/attack? A

Security & Compliance Thursday, September 4 2014 What is a security breach/attack? A security breach/attack is defined as an event in which a corporations network is compromised or an individuals name plus Social Security Name (SSN),

890 views • 12 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CPSC 410/611 Operating Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies

419 views • 19 slides
ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack

ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack

ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack & GOT Overwrite Attack Dr. Si Chen (schen@wcupa.edu) Review Page 2 ret2libc Attack Page 3 libc C standard library Provides

662 views • 36 slides
DARWIN Neutrinoless Double Beta Decay with The Low-Background Low-Threshold Observatory Marc

DARWIN Neutrinoless Double Beta Decay with The Low-Background Low-Threshold Observatory Marc

DARWIN Neutrinoless Double Beta Decay with The Low-Background Low-Threshold Observatory Marc Schumann U Freiburg on behalf of the DARWIN collaboration APPEC Community Meeting on 0 London, October 31, 2019

755 views • 18 slides
Attack Graphs Systems and Internet Infrastructure Security (SIIS) Laboratory Page 1 Outline Attack

Attack Graphs Systems and Internet Infrastructure Security (SIIS) Laboratory Page 1 Outline Attack

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Attack Graphs Systems and Internet Infrastructure Security (SIIS)

1.06k views • 60 slides
Effective Security Going Back To The Basics M e r i k e K a e o , C T O m e r i k e @ f s i .

Effective Security Going Back To The Basics M e r i k e K a e o , C T O m e r i k e @ f s i .

Effective Security Going Back To The Basics M e r i k e K a e o , C T O m e r i k e @ f s i . i o FARSIGHT SECURITY DISCUSSION POINTS Attack Trends A Historical View Attack Vectors in Recent Years Evolution of Mitigation

634 views • 29 slides
Security & Pie Android 9.0 & APK Security Plan of Attack Start at the hardware

Security & Pie Android 9.0 & APK Security Plan of Attack Start at the hardware

Security & Pie Android 9.0 & APK Security Plan of Attack Start at the hardware Work up to Android OS Climb into the Play Store Discuss Application (APK) Connor Tumbleson Senior Software Engineer @Sourcetoad

672 views • 56 slides
Bypassing CSRF Protections A Double Defeat of the Double-Submit Cookie Pattern About Me

Bypassing CSRF Protections A Double Defeat of the Double-Submit Cookie Pattern About Me

Bypassing CSRF Protections A Double Defeat of the Double-Submit Cookie Pattern About Me David Johansson (@securitybits) Security consultant since 2007 Helping clients design and build secure software Security training Based in

821 views • 25 slides
Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque ,

Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque ,

Problem Description Current State of the Art Our Contribution Our Scheme Summary References Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque , Alessandra Scafuro North Carolina State University May

736 views • 61 slides
Security vulnerabilities, exploits and attack patterns: 15 years of art, pseudo-science, fun &

Security vulnerabilities, exploits and attack patterns: 15 years of art, pseudo-science, fun &

15th USENIX Security Symposium | July 31st August 4th 2006 | Vancouver, B.C. - Canada Security vulnerabilities, exploits and attack patterns: 15 years of art, pseudo-science, fun & profit Ivn Arce Core Security Technologies Humboldt

767 views • 41 slides
Identifying Attack Vectors Professor Larry Heimann Web Application Security Information Systems

Identifying Attack Vectors Professor Larry Heimann Web Application Security Information Systems

Identifying Attack Vectors Professor Larry Heimann Web Application Security Information Systems Nothing is in isolation Attack surface An attack surface is the total number of possible attack vectors Think of a house, with the

309 views • 15 slides
Software Defjned Networking Security Outline Introduction What is SDN? SDN attack

Software Defjned Networking Security Outline Introduction What is SDN? SDN attack

Software Defjned Networking Security Outline Introduction What is SDN? SDN attack surface Recent vulnerabilities Security response Defensive technologies Next steps Introduction Security nerd, recovering

790 views • 39 slides
56 57

56 57

A PROJECT FOR MANKIND SCIENCE FOR PEACE THE WORLD OVER T ABLE OF C ONTENTS I T HE M OTIVATIONS AND THE S TRUCTURES ON WHICH THE P ROJECT IS FOUNDED 5 II L ET S NOT F ORGET THE R ISKS WE WERE E XPOSED TO AND WHICH WE O UGHT TO A VOID 19 III

272 views • 3 slides
Fourth Quarter & Full Year 2017 Financial Highlights January 23, 2018 (NYSE: STT) Preface

Fourth Quarter & Full Year 2017 Financial Highlights January 23, 2018 (NYSE: STT) Preface

Fourth Quarter & Full Year 2017 Financial Highlights January 23, 2018 (NYSE: STT) Preface and forward-looking statements This presentation includes certain highlights of, and also material supplemental to, State Street Corporations news

300 views • 27 slides
Case Study: The University of Utah Post-Earthquake Response April 18, 2018 Demographics

Case Study: The University of Utah Post-Earthquake Response April 18, 2018 Demographics

Post-Earthquake Reconnaissance Workshop Case Study: The University of Utah Post-Earthquake Response April 18, 2018 Demographics Post-Earthquake Reconnaissance Workshop Tier 1 Research Institution 32,000 students / 3000 faculty / 17,500

168 views • 12 slides
Addendum II: Table of Engineering Documentation Deliverables Steve Holmes Fermilab Technical

Addendum II: Table of Engineering Documentation Deliverables Steve Holmes Fermilab Technical

Addendum II: Table of Engineering Documentation Deliverables Steve Holmes Fermilab Technical Coordinator 4 January 2017 Background Action Items from July, 2016 IIFC Meeting: Prepare a table of all information related to HISPA design,

265 views • 10 slides
J ESUS IN I NDIA Jesus in India B ACKGROUND PUBLISHERS NOTES J ESUS IN I NDIA Jesus in India is

J ESUS IN I NDIA Jesus in India B ACKGROUND PUBLISHERS NOTES J ESUS IN I NDIA Jesus in India is

J ESUS IN I NDIA Jesus in India B ACKGROUND PUBLISHERS NOTES J ESUS IN I NDIA Jesus in India is the English version of Masih Hindustan Mein, an Urdu treatise Jesus in India written by the Holy Founder of the worldwide Ahmadiyya Muslim

358 views • 16 slides
Idag Kort om The Role Litteraturseminarium 3 Kort om Hertzian Tales

Idag Kort om The Role Litteraturseminarium 3 Kort om Hertzian Tales

Idag Kort om The Role Litteraturseminarium 3 Kort om Hertzian Tales Diskussionsuppgift tersamling o redovisning Olof Torgersson Interaktionsdesign - projekt 07 02 22 - 1 Interaktionsdesign - projekt 07 02 22

411 views • 3 slides
Contractual Damages Prepared by Saraswathy Shirke Deo Table of Contents Measure of Contractual

Contractual Damages Prepared by Saraswathy Shirke Deo Table of Contents Measure of Contractual

Principles & Challenges in Handling Contractual Damages Prepared by Saraswathy Shirke Deo Table of Contents Measure of Contractual Damages Quantum Meruit Calculating Expectation Loss When Cannot be forecasted Assessing Actual Loss

1.24k views • 34 slides
Begin with the End Result that you want: i.e., Healthy Soil = Healthy & Productive Trees

Begin with the End Result that you want: i.e., Healthy Soil = Healthy & Productive Trees

Begin with the End Result that you want: i.e., Healthy Soil = Healthy & Productive Trees Presentation prepared by: Rudy Garcia USDA-NRCS New Mexico State Agronomist Diaz Pecan Orchard (South of Las Cruces, NM) Visit our NM Soil Health

657 views • 40 slides

More recommend