Proof-of-Stake Sidechains

2019 IEEE Symposium on Security and Privacy (SP) Pub Date : 2019-05-01 DOI:10.1109/SP.2019.00040

Peter Gazi, A. Kiayias, Dionysis Zindros

{"title":"Proof-of-Stake Sidechains","authors":"Peter Gazi, A. Kiayias, Dionysis Zindros","doi":"10.1109/SP.2019.00040","DOIUrl":null,"url":null,"abstract":"Sidechains have long been heralded as the key enabler of blockchain scalability and interoperability. However, no modeling of the concept or a provably secure construction has so far been attempted. We provide the first formal definition of what a sidechain system is and how assets can be moved between sidechains securely. We put forth a security definition that augments the known transaction ledger properties of liveness and safety to hold across multiple ledgers and enhance them with a new “firewall” security property which safeguards each blockchain from its sidechains, limiting the impact of an otherwise catastrophic sidechain failure. We then provide a sidechain construction that is suitable for proof-of-stake (PoS) sidechain systems. As an exemplary concrete instantiation we present our construction for an epoch- based PoS system consistent with Ouroboros (Crypto 2017), the PoS blockchain protocol used in Cardano which is one of the largest pure PoS systems by market capitalisation, and we also comment how the construction can be adapted for other protocols such as Ouroboros Praos (Eurocrypt 2018), Ouroboros Genesis (CCS 2018), Snow White and Algorand. An important feature of our construction is merged-staking that prevents “goldfinger” attacks against a sidechain that is only carrying a small amount of stake. An important technique for pegging chains that we use in our construction is cross-chain certification which is facilitated by a novel cryptographic primitive we introduce called ad-hoc threshold multisignatures (ATMS) which may be of independent interest. We show how ATMS can be securely instantiated by regular and aggregate digital signatures as well as succinct arguments of knowledge such as STARKs and bulletproofs with varying degrees of storage efficiency.","PeriodicalId":272713,"journal":{"name":"2019 IEEE Symposium on Security and Privacy (SP)","volume":"19 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"128","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE Symposium on Security and Privacy (SP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SP.2019.00040","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 128

Abstract

Sidechains have long been heralded as the key enabler of blockchain scalability and interoperability. However, no modeling of the concept or a provably secure construction has so far been attempted. We provide the first formal definition of what a sidechain system is and how assets can be moved between sidechains securely. We put forth a security definition that augments the known transaction ledger properties of liveness and safety to hold across multiple ledgers and enhance them with a new “firewall” security property which safeguards each blockchain from its sidechains, limiting the impact of an otherwise catastrophic sidechain failure. We then provide a sidechain construction that is suitable for proof-of-stake (PoS) sidechain systems. As an exemplary concrete instantiation we present our construction for an epoch- based PoS system consistent with Ouroboros (Crypto 2017), the PoS blockchain protocol used in Cardano which is one of the largest pure PoS systems by market capitalisation, and we also comment how the construction can be adapted for other protocols such as Ouroboros Praos (Eurocrypt 2018), Ouroboros Genesis (CCS 2018), Snow White and Algorand. An important feature of our construction is merged-staking that prevents “goldfinger” attacks against a sidechain that is only carrying a small amount of stake. An important technique for pegging chains that we use in our construction is cross-chain certification which is facilitated by a novel cryptographic primitive we introduce called ad-hoc threshold multisignatures (ATMS) which may be of independent interest. We show how ATMS can be securely instantiated by regular and aggregate digital signatures as well as succinct arguments of knowledge such as STARKs and bulletproofs with varying degrees of storage efficiency.

查看原文本刊更多论文

Proof-of-Stake Sidechains

长期以来，侧链一直被誉为区块链可扩展性和互操作性的关键推动者。然而，到目前为止，还没有尝试对该概念或可证明的安全结构进行建模。我们提供了侧链系统的第一个正式定义，以及如何在侧链之间安全地移动资产。我们提出了一个安全定义，增强了已知的交易分类账的活动性和安全性，以跨多个分类账持有，并通过一个新的“防火墙”安全属性来增强它们，该属性可以保护每个区块链免受其侧链的影响，从而限制了灾难性侧链故障的影响。然后，我们提供了一个适用于权益证明(PoS)侧链系统的侧链构造。作为一个典型的具体实例，我们提出了与Ouroboros (Crypto 2017)一致的基于时代的PoS系统的构建，该PoS区块链协议在卡尔达诺使用，是市值最大的纯PoS系统之一，我们还评论了如何将该结构适用于其他协议，如Ouroboros Praos (Eurocrypt 2018)， Ouroboros Genesis (CCS 2018)，白雪公主和Algorand。我们构建的一个重要特征是合并权益，它可以防止“金手指”攻击只携带少量权益的侧链。我们在构建中使用的一种重要的链标记技术是跨链认证，这是由我们引入的一种新的加密原语促进的，称为ad-hoc阈值多重签名(ATMS)，这可能是独立的兴趣。我们展示了如何通过规则和聚合数字签名安全地实例化ATMS，以及具有不同存储效率程度的stark和bulletproofs等简洁的知识论证。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2019 IEEE Symposium on Security and Privacy (SP)

自引率

0.00%

发文量