{"title":"NEO dBFT协议的形式化安全性分析","authors":"Qin Wang, Rujia Li, Shiping Chen, Yang Xiang","doi":"10.1145/3568314","DOIUrl":null,"url":null,"abstract":"\n NEO is one of the top public chains worldwide. It adopts a new consensus algorithm called\n delegated Byzantine Fault Tolerance\n (dBFT). In this paper, we formalize dBFT via the state machine replication model and point out its potential issues. Our theoretical analysis indicates that dBFT could guarantee neither\n liveness\n nor\n safety\n , even if the number of Byzantine nodes is no more than the threshold, which has contradicted the established security claim. Then, we identify two attacks and successfully simulate them. Finally, we provide recommendations. Notably, NEO official team has accepted our suggested fixes.\n","PeriodicalId":377055,"journal":{"name":"Distributed Ledger Technol. Res. Pract.","volume":"60 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-05-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Formal Security Analysis on dBFT Protocol of NEO\",\"authors\":\"Qin Wang, Rujia Li, Shiping Chen, Yang Xiang\",\"doi\":\"10.1145/3568314\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"\\n NEO is one of the top public chains worldwide. It adopts a new consensus algorithm called\\n delegated Byzantine Fault Tolerance\\n (dBFT). In this paper, we formalize dBFT via the state machine replication model and point out its potential issues. Our theoretical analysis indicates that dBFT could guarantee neither\\n liveness\\n nor\\n safety\\n , even if the number of Byzantine nodes is no more than the threshold, which has contradicted the established security claim. Then, we identify two attacks and successfully simulate them. Finally, we provide recommendations. Notably, NEO official team has accepted our suggested fixes.\\n\",\"PeriodicalId\":377055,\"journal\":{\"name\":\"Distributed Ledger Technol. Res. Pract.\",\"volume\":\"60 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-05-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Distributed Ledger Technol. Res. Pract.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3568314\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Distributed Ledger Technol. Res. Pract.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3568314","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
NEO is one of the top public chains worldwide. It adopts a new consensus algorithm called
delegated Byzantine Fault Tolerance
(dBFT). In this paper, we formalize dBFT via the state machine replication model and point out its potential issues. Our theoretical analysis indicates that dBFT could guarantee neither
liveness
nor
safety
, even if the number of Byzantine nodes is no more than the threshold, which has contradicted the established security claim. Then, we identify two attacks and successfully simulate them. Finally, we provide recommendations. Notably, NEO official team has accepted our suggested fixes.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
