omniledger a secure scale out decentralized ledger via
play

OmniLedger: A Secure, Scale-Out, Decentralized Ledger via Sharding - PowerPoint PPT Presentation

Aug 09, 2023 •536 likes •1.09k views

OmniLedger: A Secure, Scale-Out, Decentralized Ledger via Sharding Philipp Jovanovic (@daeinar) Distributed and Decentralized Systems Lab (DEDIS) cole polytechnique fdrale de Lausanne (EPFL) IEEE International Verification and Security

  1. OmniLedger: A Secure, Scale-Out, Decentralized Ledger via Sharding Philipp Jovanovic (@daeinar) Distributed and Decentralized Systems Lab (DEDIS) École polytechnique fédérale de Lausanne (EPFL) IEEE International Verification and Security Workshop 2018-07-04, Platja D’Aro

  2. Acknowledgements Eleftherios Kokoris Kogias Nicolas Gailly Linus Gasser Ewa Syta Bryan Ford (EPFL, CH) (EPFL, CH) (EPFL, CH) (Trinity College, USA) (EPFL, CH) 2

  3. Talk Outline • Motivation • OmniLedger • Evaluation • Conclusion 3

  4. Talk Outline • Motivation • OmniLedger • Evaluation • Conclusion 4

  5. The Core of Bitcoin: Nakamoto Consensus Drawbacks Miner of the The Bitcoin p2p network latest block • Transaction confirmation delay ‣ Bitcoin: Any tx takes >10 mins until confirmed • Low throughput “Permanently” committed ‣ Bitcoin: ~4 tx/sec transactions • Weak consistency ‣ Bitcoin: You are not really certain your tx is committed until you wait >1 hour 10 mins } • Proof-of-work mining } 1 MB blocks ‣ Wastes huge amount of energy The Bitcoin blockchain 5

  6. … But Scaling Blockchains is Not Easy Miner of The Bitcoin p2p network latest block “Permanently” committed transactions Still Cannot just add 10 mins more hardware for } better performance! } Still 1 MB blocks The Bitcoin blockchain 6

  7. What we Want: Scale-Out Performance Ideal system Bitcoin Throughput [tx/sec] n 2n 3n 4n 5n 6n Number of Validators Scale-out : Throughput increases linearly with the available resources. 7

  8. Towards Scale-Out Performance via Sharding • Concept: Blockchain 1 ‣ Validators are grouped into distinct subsets ‣ Each subset processes different transactions Transactions ‣ Achieves parallelization and therefore scale-out • But: Blockchain 2 ‣ How to assign validators to shards? ‣ How to send transactions across shards? Transactions � 8

  9. Distributed Ledger Landscape Decentralization E. Kokoris Kogias et al., Enhancing L. Luu et al., A Secure Sharding Elastico Bitcoin Security and Performance with ByzCoin Protocol for Open Blockchains , Strong Consistency via Collective Signing , CCS 2016 USENIX Security 2016 OmniLedger RSCoin Scale-Out Security G. Danezis and S. Meiklejohn, Centrally Banked Cryptocurrencies , NDSS 2016 9

  10. Talk Outline • Motivation • OmniLedger • Evaluation • Conclusion 10

  11. OmniLedger – Design Goals Security Goals 1. Full Decentralization 2. Shard Robustness 3. Secure Transactions No trusted third parties or Shards process txs Txs commit atomically or single points of failure correctly and continuously abort eventually Performance Goals 4. Scale-out 5. Low Storage 6. Low Latency Throughput increases linearly in Validators do not need to store Tx are confirmed quickly the number of active validators the entire shard tx history Assumptions: <= 25% mildly adaptive Byzantine adversary, (partially) synchronous network, UTXO model 11

  12. Strawman: SimpleLedger Overview Shard coordinator conf e • Evolves in epochs e • Trusted source releases shard configuration conf e Validators • Validators: ‣ Bootstrap from the shard ledger according to conf e ‣ Process transactions in parallel using per-shard consensus Shard ledgers Shard 1 Shard 2 Shard 3 (ByzCoin group) (ByzCoin group) (ByzCoin group) 12

  13. Strawman: SimpleLedger Security Drawbacks Shard coordinator • Shard coordinator: trusted third party conf e • No tx processing during validator re-assignment Validators • No cross-shard tx support Performance Drawbacks • ByzCoin failure mode • High storage and bootstrapping cost • Throughput vs. latency trade-off Shard ledgers Shard 1 Shard 2 Shard 3 (ByzCoin group) (ByzCoin group) (ByzCoin group) 13

  14. Roadmap SimpleLedger Randomized sharding Security Secure system reconfigurations Atomic cross-shard transactions Failure-resistant Byzantine consensus Performance Blockchain pruning High-throughput low-latency transaction validation OmniLedger 14

  15. Roadmap SimpleLedger Randomized sharding Security Secure system reconfigurations Atomic cross-shard transactions Failure-resistant Byzantine consensus Performance Blockchain pruning High-throughput low-latency transaction validation OmniLedger 15

  16. Roadmap SimpleLedger Randomized sharding Security Secure system reconfigurations Atomic cross-shard transactions Failure-resistant Byzantine consensus Performance Blockchain pruning High-throughput low-latency transaction validation OmniLedger 16

  17. Shard Validator Assignment • How to assign validators to shards? ‣ Deterministically: Adversary can use predictable assignments to his advantage ‣ Randomly: Adversary cannot control or predict assignment • How to ensure long-term shard security against an adaptive adversary? ‣ Make shards large enough ‣ Periodically re-assign validators to shards 17

  18. Shard Validator Assignment • Challenge: Unbiasable, unpredictable and scalable shard validator assignment • Solution: Combine VRF-based lottery and unbiasable randomness protocol for sharding 1. Temp. leader election 
 2. Randomness generation 3. Shard assignment via VRFs (biasable) via RandHound* (unbiasable) (using rnd e ) Verifiable Temp. randomness rnd e leader PVSS 
 PVSS 
 Validators group 1 group 2 Validators (sharded) *Scalable Bias-resistant Distributed Randomness, E. Syta et al., IEEE S&P’17 18

  19. Roadmap SimpleLedger Randomized sharding Security Secure system reconfigurations Atomic cross-shard transactions Failure-resistant Byzantine consensus Performance Blockchain pruning High-throughput low-latency transaction validation OmniLedger 19

  20. Two-Phase Commits Coordinator Server Query to commit { Voting phase Vote yes / no Commit / rollback { Completion phase Acknowledgement Problem: Does not work in a Byzantine setting as malicious nodes can always abort. 20

  21. Atomix: Secure Cross-Shard Transactions • Challenge: Cross-shard transactions commit atomically or abort eventually • Solution: Atomix, a secure cross-shard transaction protocol (utilizing secure BFT shards) (1) Initialize (2a) Lock (3a) Commit Client Client cross-shard ACK 1 ACK 2 transaction tx commit tx 1 2 3 1 2 3 inputs outputs Shards Shards 1 3 2 (2b) Lock (3b) Rollback Client Client Client tx tx ACK 1 ERR 2 reclaim tx inputs 1 2 3 1 2 3 1 2 3 Shards Shards Shards 21

  22. Roadmap SimpleLedger Randomized sharding Security Secure system reconfigurations Atomic cross-shard transactions Failure-resistant Byzantine consensus Performance Blockchain pruning High-throughput low-latency transaction validation OmniLedger 22

  23. Trust-but-Verify Transaction Validation • Challenge: Latency vs. throughput trade-off • Solution: Two-level “trust-but-verify” validation to get low latency and high throughput small ( e.g. , 500KB) optimistically validated blocks large ( e.g. , 16MB), re-validated blocks tx tx clients shard ledger tx core validators optimistic validators 23

  24. Talk Outline • Motivation • OmniLedger • Evaluation • Conclusion 24

  25. Implementation & Experimental Setup Implementation DeterLab Setup • Go versions of OmniLedger and its • 48 physical machines subprotocols (ByzCoinX, Atomix, etc.) ‣ Intel Xeon E5-2420 v2 
 (6 cores @ 2.2 GHz) • Based on DEDIS code ‣ 24 GB RAM ‣ Kyber crypto library ‣ 10 Gbps network link ‣ Onet network library • Realistic network configurations ‣ Cothority framework ‣ 20 Mbps bandwidth • https://github.com/dedis ‣ 200 ms round-trip latency 25

  26. Evaluation: Scale-Out 100'000 OmniLedger Bitcoin 10'000 5'850 Throughput [tx/sec] 3'240 1'000 1'674 869 439 100 10 4 4 4 4 4 1 70 / 1 140 / 2 280 / 4 560 / 8 1120 / 16 Number of Validators / Number of Shards For a 12.5%-adversary 26

  27. Evaluation: Maximum Throughput Results for 1800 validators 27

  28. Evaluation: Latency Transaction confirmation latency in seconds for regular and mutli-level validation #shards, adversary 4, 1% 25, 5% 70, 12.5% 600, 25% OmniLedger 1 MB blocks 1.38 5.99 8.04 14.52 regular OmniLedger 500 KB blocks 1.38 1.38 1.38 4.48 confirmation OmniLedger 16 MB blocks 1.38 55.89 41.89 62.96 consistency Bitcoin 1 MB blocks 600 600 600 600 confirmation Bitcoin 3600 3600 3600 3600 consistency latency increase since optimistically validated blocks are batched into larger blocks for final validation to get better throughput � 28

  29. Talk Outline • Motivation • OmniLedger • Experimental Results • Conclusion 29

  30. Conclusion Epoch randomness rnd e (RandHound) Validators OmniLedger – Secure scale-out distributed ledger framework • ‣ Sharding via unbiasable randomness for linearly-scaling throughput ‣ Atomix: Client-managed cross-shard transactions ‣ ByzCoinX: Robust intra-shard BFT consensus ‣ Trust-but-verify validation for low latency 
 Shard and high throughput ledgers ‣ For PoW, PoS, permissioned, etc. Shard 1 Shard 3 Shard 2 (ByzCoinX group) (ByzCoinX group) (ByzCoinX group) Paper: ia.cr/2017/406 (published at IEEE S&P’18) • tx 2,in Code: https://github.com/dedis • tx 1,in tx 3,out Client (Atomix coordinator) Thanks! philipp.jovanovic@epfl.ch – @daeinar 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

OmniLedger: A Secure, Scale-Out, Decentralized Ledger via Sharding Lefteris Kokoris-Kogias

OmniLedger: A Secure, Scale-Out, Decentralized Ledger via Sharding Lefteris Kokoris-Kogias

OmniLedger: A Secure, Scale-Out, Decentralized Ledger via Sharding Lefteris Kokoris-Kogias (@LefKok) Decentralized and Distributed Systems Lab (DEDIS) Swiss Federal Institute of Technology Lausanne (EPFL) IEEE Security &amp; Privacy 2018-05-22,

643 views • 29 slides
OmniLedger Master Semester Project Pablo Lorenceau Supervisor: Linus Gasser Responsible: Prof.

OmniLedger Master Semester Project Pablo Lorenceau Supervisor: Linus Gasser Responsible: Prof.

OmniLedger OmniLedger Master Semester Project Pablo Lorenceau Supervisor: Linus Gasser Responsible: Prof. Dr. Bryan Ford DEDIS, EPFL June 2018 1 / 21 OmniLedger Overview Table of Contents Overview Background Implementation 2 / 21

236 views • 21 slides
On the way to Omniledger: adding transaction batching and ByzcoinX to skipchains Raphal Dunant

On the way to Omniledger: adding transaction batching and ByzcoinX to skipchains Raphal Dunant

On the way to Omniledger: adding transaction batching and ByzcoinX to skipchains Raphal Dunant DEDIS lab Supervisor: Linus Gasser Responsible: Prof. Bryan Ford Omniledger improvements Block state storing Transaction Batching

2.26k views • 11 slides
COIN Secure and Anonymous Decentralized Bitcoin Mixing PARTY Jan

COIN Secure and Anonymous Decentralized Bitcoin Mixing PARTY Jan

COIN Secure and Anonymous Decentralized Bitcoin Mixing PARTY Jan Henrik Ziegeldorf, Roman Matzu7, Fred Grossmann, Mar;n Henze, Klaus Wehrle Communica;on and

492 views • 28 slides
Profiling and diagnosing large-scale decentralized systems David Oppenheimer ROC Retreat

Profiling and diagnosing large-scale decentralized systems David Oppenheimer ROC Retreat

Profiling and diagnosing large-scale decentralized systems David Oppenheimer ROC Retreat Thursday, June 5, 2003 1 Why focus on P2P systems? There are a few real ones file trading, backup, IM Look a lot like other decentralized

685 views • 22 slides
Secure Scuttlebutt: An Identity-Centric Protocol for Subjective and Decentralized Applications

Secure Scuttlebutt: An Identity-Centric Protocol for Subjective and Decentralized Applications

Secure Scuttlebutt: An Identity-Centric Protocol for Subjective and Decentralized Applications Dominic Tarr (SSB, New Zealand) Erick Lavoie (McGill University, Montreal) Aljoscha Meyer (TU Berlin, Germany) Christian Tschudin (U of

501 views • 18 slides
Demystifying Blockchains: Decentralized, Secure and Fault-tolerant Storage Amr El Abbadi

Demystifying Blockchains: Decentralized, Secure and Fault-tolerant Storage Amr El Abbadi

Demystifying Blockchains: Decentralized, Secure and Fault-tolerant Storage Amr El Abbadi University of California, Santa Barbara In Collaboration with: Mohammad Amiri, Sujaya Maiyya, Victor Zakhary, and Divyakant Agrawal. Brown 2019 1

458 views • 41 slides
sqrrl sqrrl Secure. Scale. Adapt Secure. Scale. Adapt. Adam

sqrrl sqrrl Secure. Scale. Adapt Secure. Scale. Adapt. Adam

sqrrl sqrrl Secure. Scale. Adapt Secure. Scale. Adapt. Adam Fuchs, CTO 11 April, 2013 Sqrrl Data, Inc. All Rights Reserved Who Who We Are re

894 views • 21 slides
Web Interface for Secure Decentralized Collaboration Platform Rehan Mulakhel EPFL 2017-06-21

Web Interface for Secure Decentralized Collaboration Platform Rehan Mulakhel EPFL 2017-06-21

Web Interface for Secure Decentralized Collaboration Platform Rehan Mulakhel EPFL 2017-06-21 Outline Introduction Architecture The tools used Issues Rights File System Future Work (http://shareaza.sourceforge.net/mediawiki/index.php/P2P

661 views • 21 slides
From DNS to DPKI a.k.a. Why secure decentralized namespaces are the future A presentation

From DNS to DPKI a.k.a. Why secure decentralized namespaces are the future A presentation

From DNS to DPKI a.k.a. Why secure decentralized namespaces are the future A presentation by Greg Slepak at Greg Slepak @taoe ff ect DNSChain / DPKI okTurtles GroupIncome Espionage Group Currency Target Audience (You) Most of

959 views • 85 slides
Building Secure Decentralized Applications the DECENT Way Haofan Zheng Xiaowei Chu University

Building Secure Decentralized Applications the DECENT Way Haofan Zheng Xiaowei Chu University

Building Secure Decentralized Applications the DECENT Way Haofan Zheng Xiaowei Chu University of California, Santa Cruz Owen Arden Remote Attestation A process for the enclave to gain the trust of a remote service, so that the remote

212 views • 18 slides
A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital

A Technical Introduction to Bitcoin Niklas Fors, 2018-02-20 Bitcoin Decentralized digital currency Anyone can be part of the network Global distributed ledger called blockchain First Appearance Bitcoin: A Peer-to-Peer Electronic

4.02k views • 48 slides
A Decentralized Solution for Integrating Large Scale UAS Operations into Future Aviation System

A Decentralized Solution for Integrating Large Scale UAS Operations into Future Aviation System

ICAO DRONE ENABLE/2 Symposium Chengdu, China September 13, 2018 White Paper Presentation A Decentralized Solution for Integrating Large Scale UAS Operations into Future Aviation System Presentation is Developed in Technical Collaboration with

269 views • 8 slides
NEW LEDGER REVIEW SYSTEM TRAINING MANAGEMENT LEDGER REVIEW (MLR) JULY 2015 JIM HEWLETT ANALYST

NEW LEDGER REVIEW SYSTEM TRAINING MANAGEMENT LEDGER REVIEW (MLR) JULY 2015 JIM HEWLETT ANALYST

NEW LEDGER REVIEW SYSTEM TRAINING MANAGEMENT LEDGER REVIEW (MLR) JULY 2015 JIM HEWLETT ANALYST Note on this Training This training module focuses on details and functionality of Management Ledger Review (MLR) and how to interpret and

549 views • 33 slides
Smart contracts and DApps Motiv tivation ation Bitcoin Distributed ledger of financial

Smart contracts and DApps Motiv tivation ation Bitcoin Distributed ledger of financial

Smart contracts and DApps Motiv tivation ation Bitcoin Distributed ledger of financial transactions (currency transfers) Provides secure, immutable, global ordering of financial transactions What if a &quot;transaction&quot; were

683 views • 53 slides
Distributed Ledger Technologies (Blockchain ) Ecosystem and Decentralization 3-6 September

Distributed Ledger Technologies (Blockchain ) Ecosystem and Decentralization 3-6 September

ITU Asia-Pacific Centre of Excellence Training On Distributed Ledger Technologies (Blockchain ) Ecosystem and Decentralization 3-6 September 2018, Bangkok, Thailand Distributed Ledger Technologies (Blockchain) Security Aspects of DLTs

463 views • 30 slides
Git Workshop Peter Lundgren September 6, 2016 . . . . . . . . . . . . . . . . .

Git Workshop Peter Lundgren September 6, 2016 . . . . . . . . . . . . . . . . .

. Introductions Weve got a lot to talk about today Weve also got a lot of time Ask questions Tell me if Im going too fast Git Workshop Peter Lundgren September 6, 2016 . . . . . . . . . . . . . . . .

1.37k views • 119 slides
PARALLEL CONSENSUS PROTOCOL Joint work with Sajjad Rizvi and Srinivasan Keshav CONSENSUS PROBLEM

PARALLEL CONSENSUS PROTOCOL Joint work with Sajjad Rizvi and Srinivasan Keshav CONSENSUS PROBLEM

CANOPUS: A SCALABLE AND MASSIVELY Bernard Wong CoNEXT 2017 PARALLEL CONSENSUS PROTOCOL Joint work with Sajjad Rizvi and Srinivasan Keshav CONSENSUS PROBLEM Agreement between a set of nodes in the presence of failures Asynchronous

321 views • 30 slides
Designing, Modeling, and Optimizing Transactional Data Structures PhD Dissertation Defense Ahmed

Designing, Modeling, and Optimizing Transactional Data Structures PhD Dissertation Defense Ahmed

Designing, Modeling, and Optimizing Transactional Data Structures PhD Dissertation Defense Ahmed Hassan Electrical and Computer Engineering Department Virginia Tech September 1, 2015 State of the Art Multi-core architectures.

1.41k views • 139 slides
Multi-Data Center Consistency Authors: Tim Kraska, Gene Pang, Michael J. Franklin, Samuel Madden,

Multi-Data Center Consistency Authors: Tim Kraska, Gene Pang, Michael J. Franklin, Samuel Madden,

MDCC: Multi-Data Center Consistency Authors: Tim Kraska, Gene Pang, Michael J. Franklin, Samuel Madden, Alan Fekete Presenter: Kavish Doshi 1/33 Outline Introduction Architecture The MDCC Protocol Guarantees Evaluation 2/33

377 views • 33 slides
verification Frdric Tessier EGSnrc update and Monte Carlo simulation verification Ernesto

verification Frdric Tessier EGSnrc update and Monte Carlo simulation verification Ernesto

EGSnrc update and Monte Carlo simulation verification Frdric Tessier EGSnrc update and Monte Carlo simulation verification Ernesto Mainegra-Hing Atomic relaxation and PE cross sections Frdric Tessier Reid Townson Radionuclide

1.03k views • 57 slides
NUCLEAR DISARMAMENT AND THE CONFERENCE ON DISARMAMENT Presentation to inform

NUCLEAR DISARMAMENT AND THE CONFERENCE ON DISARMAMENT Presentation to inform

Palais des Nations Phone +41 (0)22 917 34 28 CH-1211 Geneva 10 Fax +41 (0)22 917 0176 www.unidir.org @unidir Switzerland NUCLEAR DISARMAMENT AND THE CONFERENCE ON

388 views • 25 slides
DDR Design and Implementation Innovating to Win Date 06/19/2006 Jos M. Cantera jmcf@tid.es

DDR Design and Implementation Innovating to Win Date 06/19/2006 Jos M. Cantera jmcf@tid.es

Morfeo P R O J E C T DDR Design and Implementation Innovating to Win Date 06/19/2006 Jos M. Cantera jmcf@tid.es Telefnica I+D Introduction Developing high quality and optimized mobile web applications requires content adaptation

243 views • 13 slides
1 UC San Diego Office of Research Compliance and Integrity Oversight and Responsibility for:

1 UC San Diego Office of Research Compliance and Integrity Oversight and Responsibility for:

1 UC San Diego Office of Research Compliance and Integrity Oversight and Responsibility for: Conflict of Interest (COI) Office Dual Use Research of Concern (DURC) Export Control and Facility Security Institutional

763 views • 42 slides

More recommend