lecture 23 cryptocurrency
play

Lecture 23 Cryptocurrency Stephen Checkoway University of Illinois - PowerPoint PPT Presentation

Apr 14, 2023 •132 likes •715 views

Lecture 23 Cryptocurrency Stephen Checkoway University of Illinois at Chicago CS 487 Fall 2017 Slides from Millers ECE 422 The Times 03/Jan/2009 Chancellor on brink of second bailout for banks . 11,000 reachable nodes (Nov, 2017)

  1. Lecture 23 – Cryptocurrency Stephen Checkoway University of Illinois at Chicago CS 487– Fall 2017 Slides from Miller’s ECE 422

  2. The Times 03/Jan/2009 Chancellor on brink of second bailout for banks .

  3. ≈11,000 reachable nodes (Nov, 2017) https://bitnodes.earn.com/

  4. Just kidding. Bitcoin has a $20 Billion market cap That was from March 4 source: blockchain.info

  6. Bitcoin Paper Wallet Private Key Public Key

  7. Private Key

  8. Public Key

  9. Alice and Bob are only identified by public keys Transfer 10 Bitcoins from me to Bob. 1BTC Bitcoin Network 3BTC 1BTC Alice 5BTC Signed with Alice’s private key

  15. ATMs

  16. Bitcoin is the first and largest of hundreds of cryptocurrencies

  17. Bitcoin exchanges Beware the middleman: Empirical analysis of Bitcoin-exchange risk Tyler Moore and Nicolas Christin , Financial Crypto 2013

  18. Exchanges

  19. What are the security goals? - Transactions are “valid”. Alice can’t spend more money than she has - Transactions are “authorized” Alice can’t spend Bob’s money - The service is “available” Alice can’t prevent Bob from spending his own money - Transactions are consistent, permanent Alice can’t send Bob money, and then take it back!

  20. Blockchain Data Structure

  21. Block Block Block Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction Transaction One block every 10 minutes Each “arrow” is actually a SHA2 hash The hash of the most recent “block” is a hash of ALL of the transactions

  22. An account-based ledger ( not Bitcoin) time might need to Create 25 coins and credit to Alice ASSERTED BY MINERS scan backwards until genesis! Transfer 17 coins from Alice to Bob SIGNED(Alice) Transfer 8 coins from Bob to Carol SIGNED(Bob) Transfer 5 coins from Carol to Alice SIGNED(Carol) is this valid? Transfer 15 coins from Alice to David SIGNED(Alice) SIMPLIFICATION: only one transaction per block

  23. A transaction-based ledger (Bitcoin) 1 Inputs: Ø time we implement this Outputs: 25.0 → Alice with hash pointers change address 2 Inputs: 1[0] Outputs: 17.0 → Bob, 8.0 → Alice SIGNED(Alice) finite scan to 3 Inputs: 2[0] check for validity Outputs: 8.0 → Carol, 9.0 → Bob SIGNED(Bob) 4 Inputs: 2[1] is this valid? Outputs: 6.0 → David, 2.0 → Alice SIGNED(Alice) SIMPLIFICATION: only one transaction per block

  24. Merging value time 1 Inputs: ... Outputs: 17.0 → Bob, 8.0 → Alice SIGNED(Alice) ... 2 Inputs: 1[1] Outputs: 6.0 → Carol, 2.0 → Bob SIGNED(Alice) ... Inputs: 1[0], 2[1] 3 Outputs: 19.0 → Bob SIGNED(Bob) SIMPLIFICATION: only one transaction per block

  25. Joint payments time 1 Inputs: ... Outputs: 17.0 → Bob, 8.0 → Alice SIGNED(Alice) ... 2 Inputs: 1[1] Outputs: 6.0 → Carol, 2.0 → Bob SIGNED(Alice) ... Inputs: 2[0], 2[1] 3 two signatures! Outputs: 8.0 → David SIGNED(Carol), SIGNED(Bob) SIMPLIFICATION: only one transaction per block

  26. The real deal: a Bitcoin transaction { "hash":"5a42590fbe0a90ee8e8747244d6c84f0db1a3a24e8f1b95b10c9e050990b8b6b", "ver":1, "vin_sz":2, "vout_sz":1, 1. metadata "lock_time":0, "size":404, "in":[ { "prev_out":{ "hash":"3be4ac9728a0823cf5e2deb2e86fc0bd2aa503a91d307b42ba76117d79280260", "n":0 }, "scriptSig":"30440..." }, 2. input(s) { "prev_out":{ "hash":"7508e6ab259b4df0fd5147bab0c949d81473db4518f81afc5c3f52f91ff6b34e", "n":0 }, "scriptSig":"3f3a4ce81...." } ], "out":[ { "value":"10.12287097", 3. output(s) "scriptPubKey":"OP_DUP OP_HASH160 69e02e18b5705a05dd6b28ed517716c894b3d42e OP_EQUALVERIFY OP_CHECKSIG" } ] }

  27. The real deal: 1. transaction metadata { "hash":"5a42590...b8b6b", transaction hash "ver":1, "vin_sz":2, housekeeping "vout_sz":1, "lock_time":0, “not valid before” "size":404, housekeeping ... }

  28. The real deal: 2. transaction inputs "in":[ { "prev_out":{ previous "hash":"3be4...80260", transaction "n":0 }, "scriptSig":"30440....3f3a4ce81" signature }, ... (more inputs) ],

  29. The real deal: 3. transaction outputs "out":[ { "value":"10.12287097", output value "scriptPubKey":"OP_DUP OP_HASH160 69e...3d42e recipient OP_EQUALVERIFY OP_CHECKSIG" address?? }, ... ] “Addresses” are actually programs (more outputs)

  30. Bitcoin Mining

  31. How do we commit new transactions? Why not have 1 trusted “transaction authority”? What happens if it’s compromised? Why not sample/count based on IP addresses?

  32. Mining Bitcoins in 6 easy steps 1.Join the network, listen for transactions a.Validate all proposed transactions 2.Listen for new blocks, maintain block chain a.When a new block is proposed, validate it 3.Assemble a new valid block 4.Find the nonce to make your block valid 5.Hope everybody accepts your new block 6.Profit!

  33. ... Block 1 Block 2 Block 3 ... ... ... Pending TXs - Alice: ฿ 10:Bob …. Miner Miner Miner Miner Miner 33

  34. Miners commit new transactions by solving puzzles = 0x000***... Hash( prevBlock | newTXs | nonce ) Block 3 newTXs 0xc5b9e 0x30e26 0xb9824 0x2cf24 = 0x04336a... = 0x000c3f... = 0x61e5c1... = 0xdba5fb... = 0x000***... - ฿ 12.5 bonus for Miner Each attempt has 16 -3 - Alice: ฿ 10:Bob chance of success ... ... Block 1 Block 2 Block 3 ... ... ... Miner Pending TXs - Alice: ฿ 10:Bob …. 34

  35. ... Block 1 Block 2 Block 3 Block 4 ... ... ... ... I found a block Miner Miner Alice Bob Miner Miner Miner 35

  36. One block Mining difficulty adjusts over time every 10 min bitcoinwisdom.com

  37. Evolution of mining CPU GPU FPGA ASIC gold pan sluice box placer mining pit mining

  40. Mining difficulty “target” (2016-04-24) 256 bit hash output 00000000000000003AAEA2000000000000000000000000000000000000000000 64+ leading zeroes required Current difficulty = 2 68

  41. What happens if 2 blocks found at the same time?

  42. Miners use longest chain Orphan block Two valid blocks produced Block on the chain

  43. More generally: “programmable money”

  44. Smart Contract Example (very high level) If GOOG rises to $1,000 by 30 June 2015, assign 10 shares from Alice to Bob and pay Alice $10,000

  45. Smart contracts • Smart contracts run in a virtual machine (EVM) • Turing-complete programming language • Each operation is executed by every node • Operations – Read or write data – Cryptographic primitives – Send messages to other contracts • Each operation costs “gas”

  46. Smart contract problems • Smart contracts often have exploitable vulnerabilities too • The DAO (decentralized autonomous organization) was a type of venture capital fund run as a smart contract • A bug was exploited leading to theft of ~$60M – Clawed back by a “hard fork” that cancelled the transaction

  47. Hard fork • Cryptocurrency splits into two different chains • Longest chain is supposed to be authoritative but now there are two • After DAO attack, Ethereum split into Ethereum (ETH) and Ethereum Classic (ETC) • What are the consequences of splitting the blockchain?

  48. Bitcoin is used for Crime Ransomware

  49. Bitcoin may be an important tool for freedom/privacy - A global currency that is not easily bound by borders - Resilient architecture, seems difficult to shut down - A competitive force leading banks to “blockchain” movement - Disintermediation - removing “middlemen”

  50. Global energy usage of Bitcoin mining alone Average yearly energy consumption of Bitcoin in 2017: 29 TWh That’s 0.13% of total, global energy consumption For comparison, Ireland consumes 25 TWh Morocco consumes 29 TWh https://powercompare.co.uk/bitcoin/

  53. Global energy usage of Bitcoin mining alone Average yearly energy consumption of Bitcoin in 2017: 29 TWh That’s 0.13% of total, global energy consumption For comparison, Ireland consumes 25 TWh, Morocco consumes 29 TWh 159 countries consume less energy than Bitcoin mining Other cryptocurrencies consume less energy, globally, but still a significant amount https://powercompare.co.uk/bitcoin/

  55. Brain Wallets - Derive a private key from a password secretkey = hash (salt, password) - Hash function should be: - “Random Oracle” (PRF does not apply, collision resistance not enough) - Slow-ish to compute (require space not just cpu , no amortization) - Also used for encrypting files on a hard drive - If you send a bitcoin transaction to a “low entropy” brain wallet address it will be taken within seconds

  56. Bitcoin is not completely private - Pseudonymous, not “anonymous” - Transaction graph analysis, clustering Can be traced to exchanges - Mixers….. they mix your coins, but might take them. - Cryptography can avoid this! Coinshuffle , Tumblebit, Zcash, and more…

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

QTIC - Cryptocurrency Team Content 01 The basics of cryptocurrency 02 Cryptocurrency &

QTIC - Cryptocurrency Team Content 01 The basics of cryptocurrency 02 Cryptocurrency &

QTIC - Cryptocurrency Team Content 01 The basics of cryptocurrency 02 Cryptocurrency & Tourism 03 Blockchain 04 Project deliverables The basics of cryptocurrency What is cryptocurrency? Key terms to remember: Decentralised system : not

524 views • 27 slides
CRYPTOCURRENCY C r y p t o i s m o n e y 2 . 0 , a h u g e h u g e h u g e d e a l .

CRYPTOCURRENCY C r y p t o i s m o n e y 2 . 0 , a h u g e h u g e h u g e d e a l .

CRYPTOCURRENCY C r y p t o i s m o n e y 2 . 0 , a h u g e h u g e h u g e d e a l . WHAT IS CRYPTOCURRENCY? \ A cryptocurrency (or crypto currency) is a digital asset designed to work as a medium of exchange using

454 views • 10 slides
Should cryptocurrency replace American dollars? By Isaiah Hanson What is Cryptocurrency?

Should cryptocurrency replace American dollars? By Isaiah Hanson What is Cryptocurrency?

Should cryptocurrency replace American dollars? By Isaiah Hanson What is Cryptocurrency? Digital money held in a digital wallet Started by Satoshi Nakamoto in 2008 with Bitcoin Decentralized currency Holds value

360 views • 14 slides
Layer 2 Cryptocurrency Networks Cryptocurrency transaction rates are slow. How can we build

Layer 2 Cryptocurrency Networks Cryptocurrency transaction rates are slow. How can we build

Continuous Credit Networks and Layer 2 Blockchains Ashish Goel and Geoffrey Ramseyer , Stanford University Layer 2 Cryptocurrency Networks Cryptocurrency transaction rates are slow. How can we build trusted relationships in an untrusted

454 views • 4 slides
Lecture 3: Scaling Bitcoin Andrew Miller SJTU 2017 Winter School on Cryptocurrency and

Lecture 3: Scaling Bitcoin Andrew Miller SJTU 2017 Winter School on Cryptocurrency and

Lecture 3: Scaling Bitcoin Andrew Miller SJTU 2017 Winter School on Cryptocurrency and Blockchain Technologies - Jan 14, 2017 3.2 transactions per second VISA: 2000 transactions/sec on average, (2015) peak rate of 56,000 transactions/sec

1k views • 79 slides
Cryptocurrency Crackdown: What You Need to Know about Enhanced IRS/Government Scrutiny of

Cryptocurrency Crackdown: What You Need to Know about Enhanced IRS/Government Scrutiny of

Cryptocurrency Crackdown: What You Need to Know about Enhanced IRS/Government Scrutiny of Cryptocurrency Transactions May 16, 2018 Speakers Basil Godellas Lawrence Hill Rachel Ingwer Partner and Co-Chair, Disruptive Partner and Chair,

1.1k views • 64 slides
Cryptocurrency Q o d e n Te c h n o l o g i e s L L C Exchange Engine Qoden Technologies LLC

Cryptocurrency Q o d e n Te c h n o l o g i e s L L C Exchange Engine Qoden Technologies LLC

Cryptocurrency Q o d e n Te c h n o l o g i e s L L C Exchange Engine Qoden Technologies LLC 2 What is Qodex When you integrate the Qodex platform, you get: A white labelled cryptocurrency exchange engine including all relevant source

408 views • 10 slides
1. Introduction AFRO was created in December 2016 by a group of economists, cryptocurrency

1. Introduction AFRO was created in December 2016 by a group of economists, cryptocurrency

AFRO The first cryptocurrency, dedicated to economic and societal development of Africa. Fondation AFRO 8, rue Neuve-du-Molard Genve 1204, Suisse 1. Introduction AFRO was created in December 2016 by a group of economists, cryptocurrency

514 views • 13 slides
We are AroundB We are working for the further development of cryptocurrency, Blockchain and

We are AroundB We are working for the further development of cryptocurrency, Blockchain and

We are AroundB We are working for the further development of cryptocurrency, Blockchain and innovative technologies. We organize professional events around the world and help cutting-edge companies and start-ups grow their businesses. It`s a

335 views • 9 slides
BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau,

BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau,

BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau, Edward Felten, Andrew Miller, Steven Goldfeder References Main reference: Bitcoin and Cryptocurrency Technologies, By Arvind Narayanan, Joseph

1.46k views • 77 slides
BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau,

BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau,

BIT COIN Reference Bitcoin and Cryptocurrency Technologies By Arvind Narayanan, Joseph Bonneau, Edward Felten, Andrew Miller, Steven Goldfeder References Main reference: Bitcoin and Cryptocurrency Technologies, By Arvind Narayanan, Joseph

873 views • 69 slides
Bitcoin and the Brave New World of Cryptocurrency AFP Arizona Bryce A. Suzuki Bryan Cave LLP

Bitcoin and the Brave New World of Cryptocurrency AFP Arizona Bryce A. Suzuki Bryan Cave LLP

Bitcoin and the Brave New World of Cryptocurrency AFP Arizona Bryce A. Suzuki Bryan Cave LLP Phoenix, Arizona bryce.suzuki@bryancave.com What is bitcoin? Bitcoin is a cryptocurrency that was created in 2009 by an unknown person or

273 views • 26 slides
Deanonymization and linkability of transactions based on network analysis cryptocurrency

Deanonymization and linkability of transactions based on network analysis cryptocurrency

Deanonymization and linkability of cryptocurrency Deanonymization and linkability of transactions based on network analysis cryptocurrency transactions based on Biryukov, Tikhomirov network analysis Introduction Tx clustering Parallel

735 views • 39 slides
Cryptocurrency Regulation in the EU AML Regime: the path towards effective harmonization? 2nd

Cryptocurrency Regulation in the EU AML Regime: the path towards effective harmonization? 2nd

EDUARDO SILVA DE FREITAS Cryptocurrency Regulation in the EU AML Regime: the path towards effective harmonization? 2nd Crypto Asset Lab Conference CONTEXT AND Financial Accountant , UK, 2019 RESEARCH " EU members adopt tougher crypto

597 views • 16 slides
How Tax Authorities Are Responding To Cryptocurrency By Mark Rush, Claiborne Porter, Joseph Valenti

How Tax Authorities Are Responding To Cryptocurrency By Mark Rush, Claiborne Porter, Joseph Valenti

Portfolio Media. Inc. | 111 West 19 th Street, 5th Floor | New York, NY 10011 | www.law360.com Phone: +1 646 783 7100 | Fax: +1 646 783 7161 | customerservice@law360.com How Tax Authorities Are Responding To Cryptocurrency By Mark Rush, Claiborne

279 views • 7 slides
EE817/IS893 CryptographyEngineeringand Cryptocurrency YongdaeKim

EE817/IS893 CryptographyEngineeringand Cryptocurrency YongdaeKim

EE817/IS893 CryptographyEngineeringand Cryptocurrency YongdaeKim Definition q A hashfunction isafunctionh compression

585 views • 47 slides
Mathematical Induction Proof by Programming The Fable of the Proof Deity! ( OK, I made it up :) )

Mathematical Induction Proof by Programming The Fable of the Proof Deity! ( OK, I made it up :) )

Euclid (300 BC) Mathematical Induction Proof by Programming The Fable of the Proof Deity! ( OK, I made it up :) ) You have been imprisoned in a dungeon. The guard gives you a predicate P and tells you that the next day you will be asked to

412 views • 13 slides
ts r ts

ts r ts

ts ts r ts s ts s r

471 views • 33 slides
For Tuesday Read http://www.learnprolognow.org/ chapters 1-5 of the online version

For Tuesday Read http://www.learnprolognow.org/ chapters 1-5 of the online version

For Tuesday Read http://www.learnprolognow.org/ chapters 1-5 of the online version Homework: Chapter 8, exercises 9 and 10 Prolog Handout 1 Program 1 Any questions? Axioms Axioms are the basic predicates of a knowledge

658 views • 43 slides
Combinatorial Testing Techniques for Propositional Intuitionistic Theorem Provers Paul Tarau

Combinatorial Testing Techniques for Propositional Intuitionistic Theorem Provers Paul Tarau

Combinatorial Testing Techniques for Propositional Intuitionistic Theorem Provers Paul Tarau University of North Texas CLA2018 Research supported by NSF grant 1423324 Paul Tarau ( University of North Texas ) Propositional Intuitionistic

841 views • 61 slides
Chapter 6 Achiever or Killer? Player Types and Game Patterns Overview What are the different

Chapter 6 Achiever or Killer? Player Types and Game Patterns Overview What are the different

Chapter 6 Achiever or Killer? Player Types and Game Patterns Overview What are the different players types? How do player types interact with a game? With each other? What are the different patterns of play in games? Introduction

392 views • 12 slides
Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers

Bitcoin Tom Anderson Bitcoin Network of bitcoin peers (servers) run by volunteers Peers are not trusted: may be greedy or corrupt Each peer knows about all bitcoins and transactions Transaction (sender -> receiver): sender

958 views • 23 slides
DynamicProgramming February 3, 2020 1 Lecture 9: Dynamic Programming CBIO (CSCI) 4835/6835:

DynamicProgramming February 3, 2020 1 Lecture 9: Dynamic Programming CBIO (CSCI) 4835/6835:

DynamicProgramming February 3, 2020 1 Lecture 9: Dynamic Programming CBIO (CSCI) 4835/6835: Introduction to Computational Biology 1.1 Overview and Objectives Weve so far discussed sequence alignment from the perspective of distance

685 views • 40 slides
Counting Iftach Haitner Tel Aviv University. December 2, 2014 Iftach Haitner (TAU) Application

Counting Iftach Haitner Tel Aviv University. December 2, 2014 Iftach Haitner (TAU) Application

Application of Information Theory, Lecture 6 Counting Iftach Haitner Tel Aviv University. December 2, 2014 Iftach Haitner (TAU) Application of Information Theory, Lecture 6 December 2, 2014 1 / 25 Section 1 Graph Homomorphisms Iftach

2.13k views • 187 slides

More recommend