A New Look at Blockchain Leader Election: Simple, Efficient, Sustainable and Post-Quantum

Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security Pub Date : 2023-07-10 DOI:10.1145/3579856.3595792

Muhammed F. Esgin, O. Ersoy, Veronika Kuchta, J. Loss, A. Sakzad, Ron Steinfeld, Xiangwen Yang, Raymond K. Zhao

{"title":"A New Look at Blockchain Leader Election: Simple, Efficient, Sustainable and Post-Quantum","authors":"Muhammed F. Esgin, O. Ersoy, Veronika Kuchta, J. Loss, A. Sakzad, Ron Steinfeld, Xiangwen Yang, Raymond K. Zhao","doi":"10.1145/3579856.3595792","DOIUrl":null,"url":null,"abstract":"In this work, we study the blockchain leader election problem. The purpose of such protocols is to elect a leader who decides on the next block to be appended to the blockchain, for each block proposal round. Solutions to this problem are vital for the security of blockchain systems. We introduce an efficient blockchain leader election method with security based solely on standard assumptions for cryptographic hash functions (rather than public-key cryptographic assumptions) and that does not involve a racing condition as in Proof-of-Work based approaches. Thanks to the former feature, our solution provides the highest confidence in security, even in the post-quantum era. A particularly scalable application of our solution is in the Proof-of-Stake setting, and we investigate our solution in the Algorand blockchain system. We believe our leader election approach can be easily adapted to a range of other blockchain settings. At the core of Algorand’s leader election is a verifiable random function (VRF). Our approach is based on introducing a simpler primitive which still suffices for the blockchain leader election problem. In particular, we analyze the concrete requirements in an Algorand-like blockchain setting to accomplish leader election, which leads to the introduction of indexed VRF (iVRF). An iVRF satisfies modified uniqueness and pseudorandomness properties (versus a full-fledged VRF) that enable an efficient instantiation based on a hash function without requiring any complicated zero-knowledge proofs of correct PRF evaluation. We further extend iVRF to an authenticated iVRF with forward-security, which meets all the requirements to establish an Algorand-like consensus. Our solution is simple, flexible and incurs only a 32-byte additional overhead when combined with the current best solution to constructing a forward-secure signature (in the post-quantum setting). We implemented our (authenticated) iVRF proposal in C language on a standard computer and show that it significantly outperforms other quantum-safe VRF proposals in almost all metrics. Particularly, iVRF evaluation and verification can be executed in 0.02 ms, which is even faster than ECVRF used in Algorand.","PeriodicalId":156082,"journal":{"name":"Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-07-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3579856.3595792","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

In this work, we study the blockchain leader election problem. The purpose of such protocols is to elect a leader who decides on the next block to be appended to the blockchain, for each block proposal round. Solutions to this problem are vital for the security of blockchain systems. We introduce an efficient blockchain leader election method with security based solely on standard assumptions for cryptographic hash functions (rather than public-key cryptographic assumptions) and that does not involve a racing condition as in Proof-of-Work based approaches. Thanks to the former feature, our solution provides the highest confidence in security, even in the post-quantum era. A particularly scalable application of our solution is in the Proof-of-Stake setting, and we investigate our solution in the Algorand blockchain system. We believe our leader election approach can be easily adapted to a range of other blockchain settings. At the core of Algorand’s leader election is a verifiable random function (VRF). Our approach is based on introducing a simpler primitive which still suffices for the blockchain leader election problem. In particular, we analyze the concrete requirements in an Algorand-like blockchain setting to accomplish leader election, which leads to the introduction of indexed VRF (iVRF). An iVRF satisfies modified uniqueness and pseudorandomness properties (versus a full-fledged VRF) that enable an efficient instantiation based on a hash function without requiring any complicated zero-knowledge proofs of correct PRF evaluation. We further extend iVRF to an authenticated iVRF with forward-security, which meets all the requirements to establish an Algorand-like consensus. Our solution is simple, flexible and incurs only a 32-byte additional overhead when combined with the current best solution to constructing a forward-secure signature (in the post-quantum setting). We implemented our (authenticated) iVRF proposal in C language on a standard computer and show that it significantly outperforms other quantum-safe VRF proposals in almost all metrics. Particularly, iVRF evaluation and verification can be executed in 0.02 ms, which is even faster than ECVRF used in Algorand.

查看原文本刊更多论文

区块链领袖选举的新视角:简单、高效、可持续和后量子

在这项工作中，我们研究了区块链领袖选举问题。这些协议的目的是为每个区块提案轮选出一个领导者来决定下一个区块要添加到区块链上。这个问题的解决方案对于区块链系统的安全性至关重要。我们引入了一种高效的区块链领导者选举方法，其安全性仅基于加密哈希函数的标准假设(而不是公钥加密假设)，并且不涉及基于工作量证明的方法中的竞赛条件。由于前者的特性，我们的解决方案即使在后量子时代也能提供最高的安全信心。我们的解决方案的一个特别可扩展的应用是在权益证明设置中，我们在Algorand区块链系统中研究我们的解决方案。我们相信，我们的领导人选举方法可以很容易地适应一系列其他区块链设置。Algorand领导人选举的核心是可验证随机函数(VRF)。我们的方法是基于引入一个更简单的原语，它仍然足以解决区块链领导人选举问题。特别是，我们分析了在类似algorand的区块链设置中实现领导者选举的具体要求，从而引入了索引VRF (iVRF)。iVRF满足修改后的唯一性和伪随机性属性(相对于成熟的VRF)，它支持基于哈希函数的有效实例化，而不需要任何复杂的零知识证明来正确评估PRF。我们进一步将iVRF扩展为具有前向安全性的经过认证的iVRF，它满足建立类似algorand共识的所有要求。我们的解决方案简单、灵活，与当前构建前向安全签名(在后量子设置中)的最佳解决方案结合使用时，只会产生32字节的额外开销。我们在一台标准计算机上用C语言实现了我们的(经过认证的)iVRF提案，并表明它在几乎所有指标上都明显优于其他量子安全VRF提案。特别是，iVRF的评估和验证可以在0.02 ms内执行，甚至比Algorand中使用的ECVRF更快。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security

自引率

0.00%

发文量