Secure and Efficient Authentication using Linkage for permissionless Bitcoin network

IF 4.4 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Networks Pub Date : 2024-10-02 DOI:10.1016/j.comnet.2024.110840

Hsiang-Jen Hong , Sang-Yoon Chang , Wenjun Fan , Simeon Wuthier , Xiaobo Zhou

{"title":"Secure and Efficient Authentication using Linkage for permissionless Bitcoin network","authors":"Hsiang-Jen Hong , Sang-Yoon Chang , Wenjun Fan , Simeon Wuthier , Xiaobo Zhou","doi":"10.1016/j.comnet.2024.110840","DOIUrl":null,"url":null,"abstract":"<div><div>The cryptocurrency’s permissionless and large-scale broadcasting requirements prohibit the traditional authentication implementation on the blockchain’s underlying peer-to-peer (P2P) networking. Thus, blockchain networking implementations remain vulnerable to networking integrity threats such as spoofing or hijacking. We design Secure and Efficient Authentication using Linkage (SEAL) to build connection security for permissionless Bitcoin networking. SEAL uses the linkage between the packets for a symmetric operation, in contrast to the traditional authentication approach relying on identity-credential-based trust. To make it appropriate for cryptocurrency networking, SEAL utilizes the packet header, protects the end-to-end connection, and separates the online process and the offline process so that the real-time overhead is minimal for greater efficiency and practicality. We implement SEAL on a functioning Bitcoin node and demonstrate that SEAL operates efficiently with minimal overhead. Specifically, it reduces the hash rate by only 1.3% compared to an unsecured node. Additionally, we use a network simulator to emulate the Bitcoin Mainnet and analyze SEAL’s impact on block propagation delay. SEAL yields 2.04 times smaller delay and 1.25 times smaller delay in block propagation than HMAC and ChaCha20-Poly1305, respectively. The key advantage of SEAL is that it requires fewer hash computations and simpler mixing operations, resulting in significantly lower computational overhead compared to traditional authentication schemes based on message authentication codes (MACs).</div></div>","PeriodicalId":50637,"journal":{"name":"Computer Networks","volume":"254 ","pages":"Article 110840"},"PeriodicalIF":4.4000,"publicationDate":"2024-10-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Networks","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1389128624006728","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

The cryptocurrency’s permissionless and large-scale broadcasting requirements prohibit the traditional authentication implementation on the blockchain’s underlying peer-to-peer (P2P) networking. Thus, blockchain networking implementations remain vulnerable to networking integrity threats such as spoofing or hijacking. We design Secure and Efficient Authentication using Linkage (SEAL) to build connection security for permissionless Bitcoin networking. SEAL uses the linkage between the packets for a symmetric operation, in contrast to the traditional authentication approach relying on identity-credential-based trust. To make it appropriate for cryptocurrency networking, SEAL utilizes the packet header, protects the end-to-end connection, and separates the online process and the offline process so that the real-time overhead is minimal for greater efficiency and practicality. We implement SEAL on a functioning Bitcoin node and demonstrate that SEAL operates efficiently with minimal overhead. Specifically, it reduces the hash rate by only 1.3% compared to an unsecured node. Additionally, we use a network simulator to emulate the Bitcoin Mainnet and analyze SEAL’s impact on block propagation delay. SEAL yields 2.04 times smaller delay and 1.25 times smaller delay in block propagation than HMAC and ChaCha20-Poly1305, respectively. The key advantage of SEAL is that it requires fewer hash computations and simpler mixing operations, resulting in significantly lower computational overhead compared to traditional authentication schemes based on message authentication codes (MACs).

查看原文本刊更多论文

在无权限比特币网络中使用链接进行安全高效的身份验证

加密货币的无权限和大规模广播要求禁止在区块链的底层点对点（P2P）网络上实施传统的身份验证。因此，区块链网络实现仍然容易受到网络完整性威胁，如欺骗或劫持。我们设计了使用链接的安全高效认证（SEAL），为无权限比特币网络构建连接安全性。SEAL 利用数据包之间的联系进行对称操作，这与依赖基于身份凭证信任的传统认证方法截然不同。为使其适用于加密货币网络，SEAL 利用数据包头，保护端到端连接，并将在线进程和离线进程分开，从而将实时开销降至最低，以提高效率和实用性。我们在一个正常运行的比特币节点上实现了 SEAL，并证明 SEAL 能以最小的开销高效运行。具体来说，与不安全的节点相比，它只降低了 1.3% 的哈希率。此外，我们还使用网络模拟器模拟了比特币主网，并分析了 SEAL 对区块传播延迟的影响。与 HMAC 和 ChaCha20-Poly1305 相比，SEAL 产生的区块传播延迟分别小 2.04 倍和 1.25 倍。SEAL 的主要优势在于它所需的哈希计算量更少，混合操作更简单，因此与基于消息验证码 (MAC) 的传统验证方案相比，计算开销大大降低。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Networks 工程技术-电信学

CiteScore

10.80

自引率

3.60%

发文量

434

审稿时长

8.6 months

期刊介绍： Computer Networks is an international, archival journal providing a publication vehicle for complete coverage of all topics of interest to those involved in the computer communications networking area. The audience includes researchers, managers and operators of networks as well as designers and implementors. The Editorial Board will consider any material for publication that is of interest to those groups.