eclipse attacks on bitcoin s peer to peer netw ork
play

Eclipse Attacks on Bitcoins Peer-to-Peer Netw ork Ethan Heilman, - PowerPoint PPT Presentation

Apr 12, 2023 •93 likes •759 views

Eclipse Attacks on Bitcoins Peer-to-Peer Netw ork Ethan Heilman, Alison Kendler Aviv Zohar, Sharon Goldberg Presented by Joonhyuk Lee ( slides adapted from Heilman ) CONTENTS 01. Introduction 02. Eclipse Attacks & Implications 03. How

  1. Eclipse Attacks on Bitcoin’s Peer-to-Peer Netw ork Ethan Heilman, Alison Kendler Aviv Zohar, Sharon Goldberg Presented by Joonhyuk Lee ( slides adapted from Heilman )

  2. CONTENTS 01. Introduction 02. Eclipse Attacks & Implications 03. How to eclipse a Bitcoin node 04. How many IPs does the attacker need? 05. Countermeasures 06. Eclipse Attack on Ethereum

  3. 1. Introduction Bitcoin Consnsus P2P Network • Bitcoin is thought to be secure if 51% of the mining power is honest. • Assuming that all miners see all Blocks/transactions: Perfect Information • Bitcoin relies on its P2P network to deliver this information Controlling the network  Controlling the blockchain • Can attacker manipulate node’s view on the Bitcoin Network?

  4. 1. Introduction - Outline • Eclipse Attacks & Implications -chapter 2 -chapter 3 • How to eclipse a Bitcoin node • How many IPs does the attacker need? -chapter 4 • Countermeasures -chapter 5 -chapter 6 • Eclipse Attack on Ethereum

  5. Chapter 2 : Eclipse Attacks & Implications

  6. Outline • Eclipse Attacks & Implications -chapter 2 - Explanation about eclipse attack - 51% attack, Selfish Mining - N-confirmation double spending -chapter 3 • How to eclipse a Bitcoin node • How many IPs does the attacker need? -chapter 4 • Countermeasures -chapter 5 -chapter 6 • Eclipse Attack on Ethereum

  7. 2. Eclipse Attacks & Implications – Bitcoin networking

  8. 2. Eclipse Attacks & Implications – Bitcoin networking

  9. 2. Eclipse Attacks & Implications – Bitcoin networking

  10. 2. Eclipse Attacks & Implications – Bitcoin networking

  11. 2. Eclipse Attacks & Implications – Eclipse Attack On Bitcoin By manipulation the P2P net, the attacker eclipses the node

  12. 2. Eclipse Attacks & Implications – Eclipse Attack On Bitcoin https://youtu.be/J-lF0zxGpu0?t=70

  13. 2. Eclipse Attacks & Implications – Eclipse Attack On Bitcoin What are the problems?

  14. 2. Eclipse Attacks & Implications – Implications 1. Engineering block races • engineering & controlling blocks propagation 2. Splitting mining pow er • Making it eaiser to launch mining attacks 3. Selfish Mining • By eclipsing miners, the attacker increases gamma • Mining Pools -> their gateways to the public bitcoin network 4. 0-Confirmation double spending • eclipse the merchant’s bitcoin node • Send the merchants a tx T, but send T’ to the rest of the network. 5. N-Confirmation double spending

  15. 2. Eclipse Attacks & Implications • N-Confirmation double spending N M N N A

  16. Chapter 3 : How to eclipse a Bitcoin node

  17. Outline • Eclipse Attacks & Implications -chapter 2 - Explanation about eclipse attack - 51% attack, Selfish Mining - N-confirmation double spending -chapter 3 • How to eclipse a Bitcoin node - P2P network of Bitcoin - How to exploit Bitcoin’s P2P networking • How many IPs does the attacker need? -chapter 4 • Countermeasures -chapter 5 -chapter 6 • Eclipse Attack on Ethereum

  18. 3. Eclipse Attack on Bitcoin – Simlpe Overview

  19. 3. Eclipse Attack on Bitcoin – 2 Tables • Each node selects its peers from IP addresses stored in two tables. - New table : IPs the node has heard about. - Tried table: IPs the node peered with at some point • Each bucket has 64 unique IP addresses. • The tables also store a timestamp for each IP • To find an IP to make an outgoing connection to: 1. Choose new or tried tables to select from 2. Select an IP biased toward “fresher” timestamps 3. Attempt an outgoing connection to that IP Attacker ensures that its IPs are fresher. They are more likely to be selected as outgoing connection

  20. 3. Eclipse Attack on Bitcoin – Peer Selection

  21. 3. Eclipse Attack on Bitcoin – Polluting 2 Tables

  22. 3. Eclipse Attack on Bitcoin – Propagating network information • Join/Re-join Case 1. DNS query New DNS Node Seeder 2. Response with around 4K IPs 0. restart (11sec) • ADDR msg up to 1K IPs with their timestamps Node Node A B Unsolicited ADDR 1. Establishing outgoing connection Node Node A B 2. Response with up to 3 ADDR, 2500 IPs Solicited ADDR Periodical Hello msg • Broadcast ADDR Choose 2 nodes Node Node Node A B C

  23. 3. Eclipse Attack on Bitcoin – Tried Table polluting 1 slot per 1 incoming connection

  24. 3. Eclipse Attack on Bitcoin – New table polluting 1000 slots of New table per 1 ADDR message -> Use trash IPs for New table pollution

  25. 3. Eclipse Attack on Bitcoin – Eclipsing target node Polluting entire New table & almost Tried Table Not finished!

  26. 3. Eclipse Attack on Bitcoin – Eclipsing target node https://youtu.be/J-lF0zxGpu0?t=425

  27. 3. Eclipse Attack on Bitcoin – Restart Target Node • Eclipse Attack requires the target/victim node restart. • Software/Security Updates - Predictable for the attacker, users are notified of upcoming updates - lose for the victim, restart or remain vulnerable • Packets of Death/Dos Attacks - Ten Dos CVEs in Bitcoin[1], many more on underlying OSes. • Power/Network Failures - Bitcoin nodes have 25% chance of going offline within 10 hours[2] After restart, victim node select new outgoing connections from the tables! [1]: https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures [2]: Biryukov, A. et al., Deanonymisation of clients in Bitcoin P2P network

  28. Chapter 4 : How many IPs does the attacker need?

  29. Outline • Eclipse Attacks & Implications -chapter 2 - Explanation about eclipse attack - 51% attack, Selfish Mining - N-confirmation double spending -chapter 3 • How to eclipse a Bitcoin node - P2P network of Bitcoin - How to exploit Bitcoin’s P2P networking • How many IPs does the attacker need? -chapter 4 - Models & Experimental Results - Botnets, Infrastructure attack • Countermeasures -chapter 5 -chapter 6 • Eclipse Attack on Ethereum

  30. 4. Eclipse Attack on Bitcoin – IP Insertion Filling New table is easy to do, even though it also does Hash-by-group

  31. 4. Eclipse Attack on Bitcoin – Use limited # of IPs • The attack gets eaiser IF 1. More attacker IPs in distinct groups 2. Few honest IPs in the tried table • Due to Hash-by-Group. Need many IPs in different group 3. Stale honest IPs in the tried table 4. Fresh attacker IPs in the tried table • can age honest IPs by investing more time • can ensure fresh IPs by continually filling the new table

  32. 4. Eclipse Attack on Bitcoin – Bucket Eviction by Investing Time Actually, move to New and deleted

  33. 4. Eclipse Attack on Bitcoin – Modeling and Simulating • Approach 1. Model Bitcoin with probability analysis & Monte-Carlo simulations 2. Use these models to determine effective attack parameters. 3. Experimentally verify these parameters against Bitcoin nodes • Botnet vs Infrastructure 1. Botnet attacker holds several IPs, each in a distinct group 2. Infrastructure attacker holds several IPs blocks (same group)

  34. 4. Eclipse Attack on Bitcoin – Botnet Attack Figure. Botnet Attack simulation results

  35. 4. Eclipse Attack on Bitcoin – Infrastructure Attack Figure. Infrastructure Attack simulation results

  36. 4. Eclipse Attack on Bitcoin – Botnet Results (Worst case) Before Attack • Artificially fill a node’s tried table • Tried table is 99.9% full of honest IPs (4093 IPs) • Botnet of 4600 IPs, 2 IPs per group • 5 hours invested, 26 min interval After Attack • Node’s tried table is now 98.8% attacker IPs • 100% attacker success rate, all 8 outgoing connections eclipsed

  37. 4. Eclipse Attack on Bitcoin – Infrastructure Results (Worst case) Before Attack • Artificially fill a node’s tried table • Tried table is 99.8% full of honest IPs (4090 IPs) • 32 groups of size /24(256 addresses), total 8192 IPs • 10 hours invested, 43 min interval After Attack • Node’s tried table is now 83.1% attacker IPs • 98% attacker success rate, all 8 outgoing connections eclipsed

  38. 4. Eclipse Attack on Bitcoin – Live Experiment Figure. # of Connections, Tried entries

  39. 4. Eclipse Attack on Bitcoin – Botnet Results (Live) Before Attack • Connected a node to the bitcoin network for +50 days • Tried table has 298 honest IPs • Botnet of 400 IPs, 1 IPs per group • 1 hours invested, 90 sec interval After Attack • Node’s tried table is still mostly empty, but 57% are attacker IPs • 84% attacker success rate, all 8 outgoing connections eclipsed

  40. 4. Eclipse Attack on Bitcoin – Infrastructure Results (Live) Before Attack • Connected a node to the bitcoin network for +50 days • Tried table has 346 honest IPs • 20 groups of size /24(256 addresses), total 5120 IPs • 1 hours invested, 27 min interval After Attack • 94% are attacker IPs (Tried Table) • 84% attacker success rate, all 8 outgoing connections eclipsed

  41. 4. Eclipse Attack on Bitcoin Which one is better? Is Bitcoin safe?

  42. Chapter 5 : Countermeasures

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Eclipse Attacks on Bitcoins Peer-to-Peer Network Presentation by Brett Holden Why I chose

Eclipse Attacks on Bitcoins Peer-to-Peer Network Presentation by Brett Holden Why I chose

Eclipse Attacks on Bitcoins Peer-to-Peer Network Presentation by Brett Holden Why I chose this paper We learned a lot about blockchain integrity and consensus What about integrity of the P2P network Bitcoin uses to communicate?

323 views • 31 slides
Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti,

Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti,

Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti, Pramod Viswanath Untraceable Bitcoin https://www.youtube.com/watch?v=k8LqlMzEe-I This is false. Blockchain sd93fjj2 Bitcoin Primer

284 views • 26 slides
Bitcoin: A Peer-to-Peer Electronic Cash System Paper review Bea Botyanszki The original bitcoin

Bitcoin: A Peer-to-Peer Electronic Cash System Paper review Bea Botyanszki The original bitcoin

Bitcoin: A Peer-to-Peer Electronic Cash System Paper review Bea Botyanszki The original bitcoin paper Published on The Cryptography Mailing list, in 2008 By Satoshi Nakamoto Identity unknown, but probably not a single person, but a

312 views • 9 slides
Bitcoin: A Peer-to-Peer Electronic Cash System By Dhruv Krishnan and Priya Holani Bitcoin: A

Bitcoin: A Peer-to-Peer Electronic Cash System By Dhruv Krishnan and Priya Holani Bitcoin: A

Bitcoin: A Peer-to-Peer Electronic Cash System By Dhruv Krishnan and Priya Holani Bitcoin: A Peer-to-Peer Electronic Cash System By Dhruv Krishnan and Priya Holani Introduction Traditional Transaction Model Bob Bank Alice Problems with

910 views • 34 slides
Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti,

Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti,

Anonymity in the Bitcoin Peer-to-Peer Network Shaileshh Bojja Venkatakrishnan, Giulia Fanti, Andrew Miller, Pramod Viswanath Why do People Use Cryptocurrencies? Technical Properties/ Currency Stability Investment Ideology Untraceable

692 views • 58 slides
Hakim Khalafi Fall 2013 Project Class: Peer -to-peer networking" Instructor: Dario Rossi

Hakim Khalafi Fall 2013 Project Class: Peer -to-peer networking" Instructor: Dario Rossi

Hakim Khalafi Fall 2013 Project Class: Peer -to-peer networking" Instructor: Dario Rossi Bitcoin becoming very popular! Most studies focus on either Bitcoin transaction graph (Harrigan et. al) Bitcoin mining weaknesses (Barber

404 views • 13 slides
A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital currency Anyone can be part of the network Global distributed ledger called blockchain First Appearance Bitcoin: A Peer-to-Peer Electronic

4.02k views • 48 slides
Ethereum and Solidity Prof. Tom Austin San Jos State University Bitcoin (BTC) Protocol

Ethereum and Solidity Prof. Tom Austin San Jos State University Bitcoin (BTC) Protocol

Ethereum and Solidity Prof. Tom Austin San Jos State University Bitcoin (BTC) Protocol designed by Satoshi Nakamoto in 2008 https://bitcoin.org/bitcoin.pdf First Bitcoin client launched in 2009 Peer-to-peer no centralized

501 views • 31 slides
Peer-to-Peer Networks 09 Random Graphs for Peer-to-Peer-Networks Christian Ortolf Technical

Peer-to-Peer Networks 09 Random Graphs for Peer-to-Peer-Networks Christian Ortolf Technical

Peer-to-Peer Networks 09 Random Graphs for Peer-to-Peer-Networks Christian Ortolf Technical Faculty Computer-Networks and Telematics University of Freiburg Peer-to-Peer Networking Facts Hostile environment - Legal situation - Egoistic

882 views • 57 slides
Comparing Hybrid Peer-to-Peer Hybrid peer-to-peer systems Systems Beverly Yang and Hector

Comparing Hybrid Peer-to-Peer Hybrid peer-to-peer systems Systems Beverly Yang and Hector

Comparing Hybrid Peer-to-Peer Hybrid peer-to-peer systems Systems Beverly Yang and Hector Garcia-Molina Pure peer-to-peer systems are hard to scale Gnutella Look at hybrids between p2p and server-client Presented by Marco Barreno Servers

282 views • 6 slides
Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt

Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt

Motivation Anonymous Communication NISAN Torsk Conclusion Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt theri@mailbox.tu-berlin.de Seminar Computer Security Technische Universitt Berlin 28 July 2011

390 views • 17 slides
A Stealthier Partitioning Attack against Bitcoin Peer-to-Peer Network Muoi Tran , Inho Choi, Gi

A Stealthier Partitioning Attack against Bitcoin Peer-to-Peer Network Muoi Tran , Inho Choi, Gi

IEEE Symposium on Security and Privacy ( IEEE S&P ) 2020 https://erebus-attack.comp.nus.edu.sg/ A Stealthier Partitioning Attack against Bitcoin Peer-to-Peer Network Muoi Tran , Inho Choi, Gi Jun Moon, Anh V. Vu, Min Suk Kang May 2020

814 views • 18 slides
THE PEER-TO-PEER NETWORK JOHN NEWBERY @jfnewbery github.com/jnewbery THE PEER-TO-PEER NETWORK

THE PEER-TO-PEER NETWORK JOHN NEWBERY @jfnewbery github.com/jnewbery THE PEER-TO-PEER NETWORK

THE PEER-TO-PEER NETWORK JOHN NEWBERY @jfnewbery github.com/jnewbery THE PEER-TO-PEER NETWORK Introduction Types of nodes Message format Control messages Transaction propagation Block propagation THE PEER TO PEER

767 views • 38 slides
Blockchain 2.0 Opportunities and Risks Patrick Valduriez The Hype 2 Bitcoin Bitcoin: A

Blockchain 2.0 Opportunities and Risks Patrick Valduriez The Hype 2 Bitcoin Bitcoin: A

Blockchain 2.0 Opportunities and Risks Patrick Valduriez The Hype 2 Bitcoin Bitcoin: A Peer-to-Peer Electronic Cash System Satoshi Nakamoto (pseudo), Oct. 31, 2008 (Halloween) Cryptocurrency and payment system Blockchain is the

551 views • 44 slides
Peer-to-peer Affine Commitment using Bitcoin Karl Crary and Michael J. Sullivan Carnegie Mellon

Peer-to-peer Affine Commitment using Bitcoin Karl Crary and Michael J. Sullivan Carnegie Mellon

Peer-to-peer Affine Commitment using Bitcoin Karl Crary and Michael J. Sullivan Carnegie Mellon University PLDI 15, Portland June 17, 2015 Massively Multiplayer Online Linear Logic Karl Crary and Michael J. Sullivan Carnegie Mellon

1.02k views • 54 slides
Serverless networking (peer-to-peer computing) Peer-to-peer models Client-server computing

Serverless networking (peer-to-peer computing) Peer-to-peer models Client-server computing

5/7/08 Serverless networking (peer-to-peer computing) Peer-to-peer models Client-server computing servers provide special services to clients clients request service from a server Pure peer-peer computing all systems have equivalent

586 views • 20 slides
Linux Chapter 8: Wireless Networks Joseph Livesay Julian Richen Wireless networks have

Linux Chapter 8: Wireless Networks Joseph Livesay Julian Richen Wireless networks have

Linux Chapter 8: Wireless Networks Joseph Livesay Julian Richen Wireless networks have become prevalent in almost every aspect of our everyday lives However as the amount of wireless communication Introduction increases, the

817 views • 65 slides
Denial of Service Attacks Types, Causes, Motives & Remedies By M. Raza ur Rehman NUST

Denial of Service Attacks Types, Causes, Motives & Remedies By M. Raza ur Rehman NUST

Denial of Service Attacks Types, Causes, Motives & Remedies By M. Raza ur Rehman NUST PAKCON 2004 Denial of Service Attacks Attempts to prevent or disturb legitimate access to co mputer resources Resources like bandwidth, services

557 views • 18 slides
Strategic Cyber Cost- Effectiveness Analysis Robin Smith Brief Introduction Arke Cost

Strategic Cyber Cost- Effectiveness Analysis Robin Smith Brief Introduction Arke Cost

Strategic Cyber Cost- Effectiveness Analysis Robin Smith Brief Introduction Arke Cost analysis, cost effectiveness and cost benefit Aim to present our thinking Cost-Effectiveness/Cost-Benefit analysis of Cyber security

300 views • 28 slides
Discriminating reflective DDoS attack tools at the reflector Fons Mijnen Max Grim

Discriminating reflective DDoS attack tools at the reflector Fons Mijnen Max Grim

Discriminating reflective DDoS attack tools at the reflector Fons Mijnen Max Grim fons.mijnen@os3.nl max.grim@os3.nl 2 DDoS attacks DDoS attacks are a problem internet users have faced for many years, and is still relevant today. 3 DDoS

531 views • 52 slides
Detecting Flood-based DoS Attacks with SNMP/RMON* William Streilein, David Fried, Robert

Detecting Flood-based DoS Attacks with SNMP/RMON* William Streilein, David Fried, Robert

Detecting Flood-based DoS Attacks with SNMP/RMON* William Streilein, David Fried, Robert Cunningham MIT Lincoln Laboratory *This work is sponsored by the U.S. Air Force under Air Force Contract F19628-00-C-0002. Opinions, interpretations,

571 views • 34 slides
CONTROLLER AREA NETWORK (CAN) DEEP PACKET INSPECTION Grkem Batmaz , Systems Engineer Ildik

CONTROLLER AREA NETWORK (CAN) DEEP PACKET INSPECTION Grkem Batmaz , Systems Engineer Ildik

CONTROLLER AREA NETWORK (CAN) DEEP PACKET INSPECTION Grkem Batmaz , Systems Engineer Ildik Pete , Systems Engineer 28 th March, 2018 Car Hacking Immediately my accelerator stopped working. As I frantically pressed the pedal and watched the

371 views • 35 slides
BARRETT: BlockchAin Regulated REmote aTTestation Michail Bampatsikos, Christoforos Ntantogian,

BARRETT: BlockchAin Regulated REmote aTTestation Michail Bampatsikos, Christoforos Ntantogian,

BARRETT: BlockchAin Regulated REmote aTTestation Michail Bampatsikos, Christoforos Ntantogian, Christos Xenakis, Stelios C. A. Thomopoulos ACKNOWLEDGEMENT: The research of the authors M. Bampatsikos and S. C. A. Thomopoulos is supported by Stavros

187 views • 15 slides
Public Scoping Meeting Public Scoping Meeting State Project No. 1 6 7 -1 0 8 State Project No. 1

Public Scoping Meeting Public Scoping Meeting State Project No. 1 6 7 -1 0 8 State Project No. 1

Public Scoping Meeting Public Scoping Meeting State Project No. 1 6 7 -1 0 8 State Project No. 1 6 7 -1 0 8 Bridge No. 0 0 7 7 3 Bridge No. 0 0 7 7 3 Heroes Tunnel Heroes Tunnel Route 1 5 W ilbur Cross Parkw ay Route 1 5 W ilbur Cross

751 views • 36 slides

More recommend