mechanising blockchain consensus
play

Mechanising Blockchain Consensus George Prlea and Ilya Sergey - PowerPoint PPT Presentation

Jan 08, 2023 •920 likes •1.32k views

Mechanising Blockchain Consensus George Prlea and Ilya Sergey Monday, 8 January 2018 CPP2018 1 Context Hundreds of deployed public blockchains $600 625 675 735 755 780 820 billion total market cap (7 day progression since Jan 1 st )

  1. Mechanising Blockchain Consensus George Pîrlea and Ilya Sergey Monday, 8 January 2018 CPP2018 1

  2. Context • Hundreds of deployed public blockchains • $600 625 675 735 755 780 820 billion total market cap (7 day progression since Jan 1 st ) Monday, 8 January 2018 CPP2018 2

  3. This work • Formalised a blockchain consensus protocol in Coq • Proved eventual consistency in a clique topology Monday, 8 January 2018 CPP2018 3

  4. Motivation 1. Understand blockchain consensus • what it is • how it works: example • why it works: our formalisation 2. Lay foundation for verified practical implementation • verified Byzantine-tolerant consensus layer Future work • platform for verified smart contracts Monday, 8 January 2018 CPP2018 4

  5. What it does Monday, 8 January 2018 CPP2018 5

  6. transactions can • transforms a set of be anything consensus protocol transactions into a blockchain globally-agreed sequence • “distributed timestamp server” (Nakamoto2008) Monday, 8 January 2018 CPP2018 6

  7. Monday, 8 January 2018 CPP2018 7

  8. Monday, 8 January 2018 CPP2018 8

  9. GB = genesis block Monday, 8 January 2018 CPP2018 9

  10. How it works Monday, 8 January 2018 CPP2018 10

  11. what everyone eventually agrees on • distributed • multiple nodes view of all participants’ state • all start with same GB Monday, 8 January 2018 CPP2018 11

  12. • distributed • multiple nodes • message-passing over a network • all start with same GB Monday, 8 January 2018 CPP2018 12

  13. • distributed • multiple nodes • message-passing over a network • all start with same GB • have a transaction pool Monday, 8 January 2018 CPP2018 13

  14. • distributed • multiple nodes • message-passing over a network • all start with same GB • have a transaction pool • can mint blocks Monday, 8 January 2018 CPP2018 14

  15. • distributed => concurrent • multiple nodes • message-passing over a network • multiple transactions can be issued and propagated concurrently Monday, 8 January 2018 CPP2018 15

  16. • distributed => concurrent • multiple nodes • message-passing over a network • blocks can be minted without full knowledge of all transactions Monday, 8 January 2018 CPP2018 16

  17. • chain fork has happened, but nodes don’t know Monday, 8 January 2018 CPP2018 17

  18. • as block messages propagate, nodes become aware of the fork Monday, 8 January 2018 CPP2018 18

  19. Problem: need to choose • blockchain “promise” = one globally-agreed chain • each node must choose one chain • nodes with the same information must choose the same chain Monday, 8 January 2018 CPP2018 19

  20. Problem: need to choose • blockchain “promise” = one globally-agreed chain • each node must choose one chain • nodes with the same information must choose the same chain Monday, 8 January 2018 CPP2018 20

  21. Problem: need to choose • blockchain “promise” = one globally-agreed chain • each node must choose one chain • nodes with the same information must choose the same chain Monday, 8 January 2018 CPP2018 21

  22. Problem: need to choose • blockchain “promise” = one globally-agreed chain • each node must choose one chain • nodes with the same information must choose the same chain Monday, 8 January 2018 CPP2018 22

  23. Solution: fork choice rule • Fork choice rule (FCR, >): • given two blockchains, says which one is “heavier” • imposes a strict total order on all possible blockchains • same FCR shared by all nodes • Nodes adopt “heaviest” chain they know Monday, 8 January 2018 CPP2018 23

  24. FCR (>) … > [GB, A, C] > … > [GB, A, B] > … > [GB, A] > … > [GB] > … Bitcoin: FCR based on “most cumulative work” Monday, 8 January 2018 CPP2018 24

  25. Quiescent consistency • distributed • multiple nodes • all start with GB • message-passing over a network • equipped with same FCR • quiescent consistency: when all block messages have been delivered, everyone agrees Monday, 8 January 2018 CPP2018 25

  26. Why it works Monday, 8 January 2018 CPP2018 26

  27. Definitions • blocks, chains, block forests Parameters and • hashes are collision-free • FCR imposes strict total order assumptions Invariant • local state + messages “in flight” = global Quiescent • when all block messages are delivered, consistency everyone agrees Monday, 8 January 2018 CPP2018 27

  28. Blocks and chains links blocks together proof that this block proof-of-work was minted in accordance to the proof-of-stake rules of the protocol Monday, 8 January 2018 CPP2018 28

  29. Minting and verifying try to generate a proof = “ask the protocol for permission” to mint validate a proof = ensure protocol rules were followed Monday, 8 January 2018 CPP2018 29

  30. Resolving conflict Monday, 8 January 2018 CPP2018 30

  31. Assumptions • Hash functions are collision-free • FCR imposes a strict total order on all blockchains Monday, 8 January 2018 CPP2018 31

  32. Invariant: local state + “in - flight” = global global system step Monday, 8 January 2018 CPP2018 32

  33. Invariant: local state + “in - flight” = global global system step Monday, 8 January 2018 CPP2018 32

  34. Invariant is inductive invariant holds state 1 system step invariant holds state 2 state 3 system step invariant holds system step state 4 invariant holds system step invariant holds state 5 Monday, 8 January 2018 CPP2018 34

  35. Invariant implies QC • QC: when all blocks delivered, everyone agrees How: • local state + “in - flight” = global • use FCR to extract “heaviest” chain out of local state • since everyone has same state & same FCR ➢ consensus Monday, 8 January 2018 CPP2018 35

  36. Reusable components • Reference implementation of block forests • Per-node protocol logic • Network semantics • Clique invariant, QC property, various theorems https://github.com/certichain/toychain Monday, 8 January 2018 CPP2018 36

  37. Future work • Network semantics with nodes joining/leaving at will • Improved invariants: • non-clique topologies • network partitions • Byzantine faults • Verified smart contracts platform Monday, 8 January 2018 CPP2018 37

  38. Take away • Formalisation of a blockchain consensus protocol in Coq: • minimal set of required security primitives • per-node protocol logic & data structures • network semantics • global eventual consistency in a clique topology https://github.com/certichain/toychain Monday, 8 January 2018 CPP2018 38

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

bluzelle What is Blockchain? Blockchain is a combination of multiple technologies 4 3 2

bluzelle What is Blockchain? Blockchain is a combination of multiple technologies 4 3 2

MAKE BLOCKCHAIN WORK FOR YOU bluzelle What is Blockchain? Blockchain is a combination of multiple technologies 4 3 2 Consensus 1 Encryption P2P Networks Time Stamp Challenges addressed by blockchain Regulatory and compliance pressures

669 views • 14 slides
Proof of Luck: an Efficient Blockchain Consensus Protocol Mitar Milutinovic, Warren He, Howard

Proof of Luck: an Efficient Blockchain Consensus Protocol Mitar Milutinovic, Warren He, Howard

Proof of Luck: an Efficient Blockchain Consensus Protocol Mitar Milutinovic, Warren He, Howard Wu, Maxinder Kanwal Outline Background: blockchains, consensus, and SGX Existing consensus mechanisms Our paper: 3 basic consensus primitives Proof

527 views • 50 slides
Streamlet: A Textbook Blockchain Protocol Elaine Shi Joint work with Benjamin Chan Blockchain

Streamlet: A Textbook Blockchain Protocol Elaine Shi Joint work with Benjamin Chan Blockchain

Streamlet: A Textbook Blockchain Protocol Elaine Shi Joint work with Benjamin Chan Blockchain (a.k.a. state machine replication, consensus) Blockchain (a.k.a. state machine replication, consensus) Consistency: Honest nodes agree on log

513 views • 15 slides
Distributed Consensus Motiv tivation ation A rogue blockchain Consider Peer B wishing to

Distributed Consensus Motiv tivation ation A rogue blockchain Consider Peer B wishing to

Distributed Consensus Motiv tivation ation A rogue blockchain Consider Peer B wishing to tamper with Block #3 https://anders.com/blockchain/distributed Modifies data, then re-calculates hashes How can you pick between two

1.18k views • 59 slides
G-PBFT: A Location-based and Scalable Consensus Protocol for IoT-Blockchain Applications

G-PBFT: A Location-based and Scalable Consensus Protocol for IoT-Blockchain Applications

G-PBFT: A Location-based and Scalable Consensus Protocol for IoT-Blockchain Applications Contents Introduction Problem Statement Protocol Design Performance Analysis Conclusion 2 Introduction Blockchain

430 views • 20 slides
Hybrid Consensus: Efficient Consensus in the Permissionless Model Rafael Pass and Elaine Shi

Hybrid Consensus: Efficient Consensus in the Permissionless Model Rafael Pass and Elaine Shi

Hybrid Consensus: Efficient Consensus in the Permissionless Model Rafael Pass and Elaine Shi IC3 1 Blockchains Satoshi Nakamoto, 2009 Public database Shared & maintained between network participants Blockchain agreement protocol

296 views • 15 slides
Implementation of a robust and scalable consensus protocol for blockchain Raphal Dunant DEDIS

Implementation of a robust and scalable consensus protocol for blockchain Raphal Dunant DEDIS

Implementation of a robust and scalable consensus protocol for blockchain Raphal Dunant DEDIS lab Supervisors: Linus Gasser, Eleftherios Kokoris-Kogias Responsible: Prof. Bryan Ford Proposal cosigning Time or timestamp services

582 views • 15 slides
Candidates Day 2016 Modeling the Energy Consumption of Blockchain Consensus Algorithms Daniel

Candidates Day 2016 Modeling the Energy Consumption of Blockchain Consensus Algorithms Daniel

Candidates Day 2016 Modeling the Energy Consumption of Blockchain Consensus Algorithms Daniel Lopresti, Interim Dean P.C. Rossin College of Engineering and Applied Science April 15, 2016 July 30, 2018 Ryan Cole Liang Cheng CSE Department

453 views • 12 slides
Consensus and Dissent or: Meta - Consensus Consensus about what we have consensus

Consensus and Dissent or: Meta - Consensus Consensus about what we have consensus

Consensus and Dissent or: Meta - Consensus Consensus about what we have consensus on Building on Bitcoin Lisboa, Portugal -- 4 July 2018 Paul Sztorc Twitter: @truthcoin paul@tierion.com 16C8 1597 E76E 86E6 C01E F037 AA4B 3330

619 views • 37 slides
Kaizen: Building a Performant Blockchain System Verified for Consensus and Integrity Faria Kalim

Kaizen: Building a Performant Blockchain System Verified for Consensus and Integrity Faria Kalim

Kaizen: Building a Performant Blockchain System Verified for Consensus and Integrity Faria Kalim , Karl Palmskog , Jayasi Mehar , Adithya Murali , P. Madhusudan and Indranil Gupta University of Illinois at

423 views • 21 slides
Blockchain consensus Protocols in the Wild Tao Wang, Lihang Pan ECS 265 Apache Kafka

Blockchain consensus Protocols in the Wild Tao Wang, Lihang Pan ECS 265 Apache Kafka

Blockchain consensus Protocols in the Wild Tao Wang, Lihang Pan ECS 265 Apache Kafka (CFT) PBFT (BFT) Kafka Architecture ISR (in- sync) {b1,b2,b3} b1 b2 b3 Photo credit to Apache

2.57k views • 32 slides
An Overview of Blockchain Technologies and Uses Andy Dolan Computer Science Department

An Overview of Blockchain Technologies and Uses Andy Dolan Computer Science Department

An Overview of Blockchain Technologies and Uses Andy Dolan Computer Science Department Colorado State University Outline An Introduction to Bitcoin The Core Features: What is a Blockchain? Distributed Consensus Image:

678 views • 39 slides
Adventures in Mechanising and Verifying WebAssembly Conrad Watt University of Cambridge, UK

Adventures in Mechanising and Verifying WebAssembly Conrad Watt University of Cambridge, UK

Adventures in Mechanising and Verifying WebAssembly Conrad Watt University of Cambridge, UK Formal Methods Meets JavaScript, VeTSS Conrad Watt (Cambridge, UK) Mechanising WebAssembly VeTSS 1 / 21 The webs evolution We want richer web

521 views • 21 slides
Melbourne Tax Discussion Group 19 June 2019 Taxation of Cryptocurrencies What is blockchain?

Melbourne Tax Discussion Group 19 June 2019 Taxation of Cryptocurrencies What is blockchain?

Melbourne Tax Discussion Group 19 June 2019 Taxation of Cryptocurrencies What is blockchain? What is blockchain? Public v private Decentralised network Consensus protocols (e.g. Proof of Work, Proof of Stake) Smart contracts

270 views • 16 slides
Consensus Building Consensus is Consensus is finding an acceptable proposal that all members

Consensus Building Consensus is Consensus is finding an acceptable proposal that all members

Consensus Building Consensus is Consensus is finding an acceptable proposal that all members can support. Consensus is not A unanimous vote A majority vote Everyone 100% satisfied Consensus requires Time Active

351 views • 7 slides
X RIPEMD-160 SHA-256 SHA-512 This is an input to a crypto- SHA-3 graphic hash function. The

X RIPEMD-160 SHA-256 SHA-512 This is an input to a crypto- SHA-3 graphic hash function. The

17 December 2019 Bart Preneel Blcokchain and Distributed Consensus: Hype or Science? Blockchain and Distributed Outline Consensus: A short history lesson Hype or Science? Highlights of Bitcoin Design - crypto problems PROF. DR. IR. BART

772 views • 19 slides
How gas shapes Milky Way-sized galaxies in cosmological simulations : mergers, accretion and

How gas shapes Milky Way-sized galaxies in cosmological simulations : mergers, accretion and

How gas shapes Milky Way-sized galaxies in cosmological simulations : mergers, accretion and feedback Rob Grand (Heidelberg Institute for Theoretical studies, Astronomisches Recheninstitut, Heidelberg) The Auriga Project

304 views • 19 slides
Multicore Synchronization a pragmatic introduction Multicore Synchronization This is a talk on

Multicore Synchronization a pragmatic introduction Multicore Synchronization This is a talk on

Multicore Synchronization a pragmatic introduction Multicore Synchronization This is a talk on mechanical sympathy of parallel systems on modern multicore systems. Understanding both your workload and your environment allows for effective

1.21k views • 107 slides
Inter&Integrated*Circuit*Bus (I 2 C*Serial*Bus) http://www.i2c&bus.org/ 1 I 2 C*OVERVIEW

Inter&Integrated*Circuit*Bus (I 2 C*Serial*Bus) http://www.i2c&bus.org/ 1 I 2 C*OVERVIEW

Inter&Integrated*Circuit*Bus (I 2 C*Serial*Bus) http://www.i2c&bus.org/ 1 I 2 C*OVERVIEW The'name'stands'for'Inter'3 Integrated'Circuit'Bus' (Developed'by'Philips'in'the'early'1980s)

393 views • 26 slides
Comparison of & for AGN Caroline A. Roberts Misty Ben: Stellar Dynamical (SD) Modeling

Comparison of & for AGN Caroline A. Roberts Misty Ben: Stellar Dynamical (SD) Modeling

Comparison of & for AGN Caroline A. Roberts Misty Ben: Stellar Dynamical (SD) Modeling Step 1 Stellar Dynamical (SD) Modeling luminosity * H ~ ! stellar mass distribution ! distribution ! V U M BH + stellar mass ~ ! distribution

419 views • 18 slides
Exploiting COF Vulnerabilities in the Linux kernel Vitaly Nikolenko @vnik5287 Ruxcon - 2016

Exploiting COF Vulnerabilities in the Linux kernel Vitaly Nikolenko @vnik5287 Ruxcon - 2016

Exploiting COF Vulnerabilities in the Linux kernel Vitaly Nikolenko @vnik5287 Ruxcon - 2016 Who am I? Security researcher @ SpiderLabs Exploit dev / bug hunting / reverse engineering Agenda 1. Counter overflows in the kernel

1.02k views • 70 slides
Read-Copy Update (RCU) Don Porter CSE 506 Logical Diagram Binary Memory Threads Formats

Read-Copy Update (RCU) Don Porter CSE 506 Logical Diagram Binary Memory Threads Formats

Read-Copy Update (RCU) Don Porter CSE 506 Logical Diagram Binary Memory Threads Formats Allocators User Todays Lecture System Calls Kernel RCU File System Networking Sync Memory CPU Device Management Scheduler Drivers

733 views • 25 slides
Jarkko Kari Department of Mathematics, University of Turku, Finland TUCS(Turku Centre for

Jarkko Kari Department of Mathematics, University of Turku, Finland TUCS(Turku Centre for

Tilings and undecidability in cellular automata Jarkko Kari Department of Mathematics, University of Turku, Finland TUCS(Turku Centre for Computer Science), Turku, Finland Outline of the talk Cellular Automata: definitions Topolgy &

1.75k views • 149 slides
GALACTIC CENTER IN X-RAYS Wang et al Main Categories of Compact Binary Systems Stellar

GALACTIC CENTER IN X-RAYS Wang et al Main Categories of Compact Binary Systems Stellar

The Astrophysics of Stellar Mass Compact Objects Observational Properties Formation of Stellar Compact Objects Compact Objects as Cosmic Laboratories Future Work GALACTIC CENTER IN X-RAYS Wang et al Main Categories of Compact

692 views • 35 slides

More recommend