Redactable Blockchain in the Permissionless Setting

2019 IEEE Symposium on Security and Privacy (SP) Pub Date : 2019-01-10 DOI:10.1109/SP.2019.00039

Dominic Deuber, Bernardo Magri, Sri Aravinda Krishnan Thyagarajan

{"title":"Redactable Blockchain in the Permissionless Setting","authors":"Dominic Deuber, Bernardo Magri, Sri Aravinda Krishnan Thyagarajan","doi":"10.1109/SP.2019.00039","DOIUrl":null,"url":null,"abstract":"Bitcoin is an immutable permissionless blockchain system that has been extensively used as a public bulletin board by many different applications that heavily relies on its immutability. However, Bitcoin's immutability is not without its fair share of demerits. Interpol exposed the existence of harmful and potentially illegal documents, images and links in the Bitcoin blockchain, and since then there have been several qualitative and quantitative analysis on the types of data currently residing in the Bitcoin blockchain. Although there is a lot of attention on blockchains, surprisingly the previous solutions proposed for data redaction in the permissionless setting are far from feasible, and require additional trust assumptions. Hence, the problem of harmful data still poses a huge challenge for law enforcement agencies like Interpol (Tziakouris, IEEE S&P'18). We propose the first efficient redactable blockchain for the permissionless setting that is easily integrable into Bitcoin, and that does not rely on heavy cryptographic tools or trust assumptions. Our protocol uses a consensus-based voting and is parameterised by a policy that dictates the requirements and constraints for the redactions; if a redaction gathers enough votes the operation is performed on the chain. As an extra feature, our protocol offers public verifiability and accountability for the redacted chain. Moreover, we provide formal security definitions and proofs showing that our protocol is secure against redactions that were not agreed by consensus. Additionally, we show the viability of our approach with a proof-of-concept implementation that shows only a tiny overhead in the chain validation of our protocol when compared to an immutable one.","PeriodicalId":272713,"journal":{"name":"2019 IEEE Symposium on Security and Privacy (SP)","volume":"24 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-01-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"94","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE Symposium on Security and Privacy (SP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SP.2019.00039","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 94

Abstract

Bitcoin is an immutable permissionless blockchain system that has been extensively used as a public bulletin board by many different applications that heavily relies on its immutability. However, Bitcoin's immutability is not without its fair share of demerits. Interpol exposed the existence of harmful and potentially illegal documents, images and links in the Bitcoin blockchain, and since then there have been several qualitative and quantitative analysis on the types of data currently residing in the Bitcoin blockchain. Although there is a lot of attention on blockchains, surprisingly the previous solutions proposed for data redaction in the permissionless setting are far from feasible, and require additional trust assumptions. Hence, the problem of harmful data still poses a huge challenge for law enforcement agencies like Interpol (Tziakouris, IEEE S&P'18). We propose the first efficient redactable blockchain for the permissionless setting that is easily integrable into Bitcoin, and that does not rely on heavy cryptographic tools or trust assumptions. Our protocol uses a consensus-based voting and is parameterised by a policy that dictates the requirements and constraints for the redactions; if a redaction gathers enough votes the operation is performed on the chain. As an extra feature, our protocol offers public verifiability and accountability for the redacted chain. Moreover, we provide formal security definitions and proofs showing that our protocol is secure against redactions that were not agreed by consensus. Additionally, we show the viability of our approach with a proof-of-concept implementation that shows only a tiny overhead in the chain validation of our protocol when compared to an immutable one.

查看原文本刊更多论文

无权限设置中的可读区块链

比特币是一种不可变的无权限区块链系统，已被许多严重依赖其不变性的不同应用程序广泛用作公共公告板。然而，比特币的不可变性并非没有缺点。国际刑警组织揭露了比特币区块链中存在有害和潜在非法的文件、图像和链接，从那时起，对目前存在于比特币区块链中的数据类型进行了多次定性和定量分析。尽管对区块链有很多关注，但令人惊讶的是，之前提出的无权限设置下数据编校的解决方案远非可行，并且需要额外的信任假设。因此，有害数据的问题仍然对国际刑警组织等执法机构构成巨大挑战(Tziakouris, IEEE标准普尔18)。我们提出了第一个有效的可重写区块链，用于无权限设置，可轻松集成到比特币中，并且不依赖于繁重的加密工具或信任假设。我们的协议使用基于共识的投票，并通过规定修订要求和约束的策略进行参数化;如果修订收集到足够的投票，则在链上执行操作。作为一个额外的功能，我们的协议为编校链提供了公共可验证性和问责性。此外，我们提供了正式的安全定义和证明，表明我们的协议对于未被一致同意的修订是安全的。此外，我们通过概念验证实现展示了我们方法的可行性，与不可变协议相比，该实现仅显示了我们协议的链验证中的微小开销。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2019 IEEE Symposium on Security and Privacy (SP)

自引率

0.00%

发文量