Constructing an Adversary Solver for Equihash

Proceedings 2019 Network and Distributed System Security Symposium Pub Date : 2019-01-01 DOI:10.14722/ndss.2019.23337

X. Bai, Jian Gao, Chenglong Hu, L. Zhang

{"title":"Constructing an Adversary Solver for Equihash","authors":"X. Bai, Jian Gao, Chenglong Hu, L. Zhang","doi":"10.14722/ndss.2019.23337","DOIUrl":null,"url":null,"abstract":"Blockchain networks, especially cryptocurrencies, rely heavily on proof-of-work (PoW) systems, often as a basis to distribute rewards. These systems require solving specific puzzles, where Application Specific Integrated Circuits (ASICs) can be designed for performance or efficiency. Either way, ASICs surpass CPUs and GPUs by orders of magnitude, and may harm blockchain networks. Recently, Equihash is developed to resist ASIC solving with heavy memory usage. Although commercial ASIC solvers exist for its most popular parameter set, such solvers do not work under better ones, and are considered impossible under optimal parameters. In this paper, we inspect the ASIC resistance of Equihash by constructing a parameterindependent adversary solver design. We evaluate the product, and project at least 10x efficiency advantage for resourceful adversaries. We contribute to the security community in two ways: (1) by revealing the limitation of Equihash and raising awareness about its algorithmic factors, and (2) by demonstrating that security inspection is practical and useful on PoW systems, serving as a start point for future research and development.","PeriodicalId":20444,"journal":{"name":"Proceedings 2019 Network and Distributed System Security Symposium","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2019-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings 2019 Network and Distributed System Security Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.14722/ndss.2019.23337","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Blockchain networks, especially cryptocurrencies, rely heavily on proof-of-work (PoW) systems, often as a basis to distribute rewards. These systems require solving specific puzzles, where Application Specific Integrated Circuits (ASICs) can be designed for performance or efficiency. Either way, ASICs surpass CPUs and GPUs by orders of magnitude, and may harm blockchain networks. Recently, Equihash is developed to resist ASIC solving with heavy memory usage. Although commercial ASIC solvers exist for its most popular parameter set, such solvers do not work under better ones, and are considered impossible under optimal parameters. In this paper, we inspect the ASIC resistance of Equihash by constructing a parameterindependent adversary solver design. We evaluate the product, and project at least 10x efficiency advantage for resourceful adversaries. We contribute to the security community in two ways: (1) by revealing the limitation of Equihash and raising awareness about its algorithmic factors, and (2) by demonstrating that security inspection is practical and useful on PoW systems, serving as a start point for future research and development.

查看原文本刊更多论文

构造Equihash的对手求解器

区块链网络，尤其是加密货币，严重依赖于工作量证明(PoW)系统，通常作为分配奖励的基础。这些系统需要解决特定的难题，其中专用集成电路(asic)可以设计为性能或效率。无论哪种方式，asic都超过了cpu和gpu的数量级，并可能损害区块链网络。最近，Equihash被开发用来抵抗大量内存使用的ASIC解决方案。尽管针对其最流行的参数集存在商用ASIC求解器，但这种求解器不能在更好的参数集下工作，并且在最优参数下被认为是不可能的。在本文中，我们通过构造一个参数无关的对手求解器设计来检验Equihash的ASIC抗性。我们评估了产品，并为足智多谋的对手预测了至少10倍的效率优势。我们通过两种方式为安全社区做出贡献:(1)通过揭示Equihash的局限性并提高对其算法因素的认识，以及(2)通过展示安全检查在PoW系统上是实用和有用的，作为未来研究和开发的起点。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings 2019 Network and Distributed System Security Symposium

自引率

0.00%

发文量