Upgrade to Pro — share decks privately, control downloads, hide ads and more …

TPS&51%Attack

Taiki
June 30, 2018
Research
0
250

 TPS&51%Attack

Taiki

June 30, 2018
Tweet

More Decks by Taiki

See All by Taiki
Blenderで作るCG VR
r_etx
1
72
Slush✖️Privacy
r_etx
0
110
WeArelookingForYou.pdf
r_etx
1
670
Zk-SNRAKS1~4
r_etx
0
37
hakone_hackthon
r_etx
0
74
Dynamics of Blockchain
r_etx
1
54
Lightning network
r_etx
0
97
BancorProtocol
r_etx
4
750
GHZstate
r_etx
0
44

Other Decks in Research

See All in Research
データサイエンティストをめぐる環境の違い 2024年版〈一般ビジネスパーソン調査の国際比較〉
datascientistsociety
PRO
0
580
RSJ2024「基盤モデルの実ロボット応用」チュートリアルA(河原塚)
haraduka
3
650
Weekly AI Agents News!
masatoto
25
24k
「並列化時代の乱数生成」
abap34
3
830
SNLP2024:Planning Like Human: A Dual-process Framework for Dialogue Planning
yukizenimoto
1
330
Weekly AI Agents News! 10月号 プロダクト/ニュースのアーカイブ
masatoto
1
120
EBPMにおける生成AI活用について
daimoriwaki
0
180
Active Adaptive Experimental Design for Treatment Effect Estimation with Covariate Choices
masakat0
0
220
研究の進め方 ランダムネスとの付き合い方について
joisino
PRO
55
19k
snlp2024_multiheadMoE
takase
0
430
工学としてのSRE再訪 / Revisiting SRE as Engineering
yuukit
19
11k
Weekly AI Agents News! 8月号 プロダクト/ニュースのアーカイブ
masatoto
1
190

Featured

See All Featured
Practical Orchestrator
shlominoach
186
10k
Raft: Consensus for Rubyists
vanstee
136
6.6k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
27
4.3k
Scaling GitHub
holman
458
140k
Into the Great Unknown - MozCon
thekraken
32
1.5k
The Straight Up "How To Draw Better" Workshop
denniskardys
232
140k
GraphQLの誤解/rethinking-graphql
sonatard
67
10k
Fantastic passwords and where to find them - at NoRuKo
philnash
50
2.9k
[RailsConf 2023] Rails as a piece of cake
palkan
52
4.9k
The Pragmatic Product Professional
lauravandoore
31
6.3k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
232
17k
How To Stay Up To Date on Web Technology
chriscoyier
788
250k

Transcript

  1. ABOUT TPS & 51% ATTACK CRYPGEEK 30/6/2018 Blockchainษڧձ #10 @r_etx

  2. Proof of Workͷ࿮૊ΈͰɺTPSΛ͍࣋ͬͨ͋͛ͨ

  3. TPSͱ͸ɺ

  4. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ VISA 2000TPS( daily peak rate

    of 4000 TPS) Pay Pal 115TPS so let’s take 4000 TPS as starting goal!!

  5. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ VISA 2000TPS( daily peak rate

    of 4000 TPS) Pay Pal 115TPS BTC 7TPS

  6. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ more over Online game 100000TPS

  7. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ Ωπ͍͡ΌΜ!

  8. Proof of Workͷ࿮૊ΈͰɺTPSΛ͍࣋ͬͨ͋͛ͨ

  9. TPSͷఆࣜԽ TPS(λ, b) = β(λ, b) ⋅ b ⋅ K

    K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)

  10. TPS(λ, b) = β(λ, b) ⋅ b ⋅ K ҰඵؒͰ࢖͑ΔKB

    1/KB ͋ͨΓͷTx K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB) TPSͷఆࣜԽ

  11. TPS(λ, b) = β(λ, b) ⋅ b ⋅ K ҰඵؒͰ࢖͑ΔKB

    1/KB ͋ͨΓͷTx TPSͷఆࣜԽ β ͸ɺɹ ͷؔ਺ɻ ͱɹ ͷҧ͍͸? β λ λ

  12. ωοτϫʔΫͰ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱ ฏۉ10෼(=600[s])ʹͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ λ ; Block Treeʹblock͕௥Ճ͞ΕΔׂ߹ ϒϩοΫ͕஍ٿ্Ͱڞ༗͞ΕΔͷʹ͔͔Δ࣌ؒΑΓ΋ ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱͷ͔͔Δ ฏۉͷ͕࣌ؒ௕͘ͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ BitcoinͰ͸ɺ

    λ = 1 600

  13. ωοτϫʔΫͰ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱ ฏۉ10෼(=600[s])ʹͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ λ = 1 600 β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ (Networkʹ͓͚Δ஗Ԇ΍ForkΛߟྀ͍ͯ͠Δ) λ

    ; Block Treeʹblock͕௥Ճ͞ΕΔׂ߹

  14. ωοτϫʔΫͰ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱ ฏۉ10෼(=600[s])ʹͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ λ ; Block Treeʹblock͕௥Ճ͞ΕΔׂ߹ BitcoinͰ͸ɺ λ = 1

    600 β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ (NetworkͰͷ஗Ԇ΋ؚΜͰ͍Δ) β(λ, b)

  15. 0OFNPSF

  16. Topology of network

  17. Topology of network ࠓճ͸ߟ͑ͳ͍ɻ

  18. TPSͷఆࣜԽ TPS(λ, b) = β(λ, b) ⋅ b ⋅ K

    TPSΛ૿΍͔ͨͬͨ͠Βɺࡾͭͷํ๏͕͋Δ ҰඵؒͰ࢖͑ΔKB 1/KB ͋ͨΓͷTx K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  19. Txͷ༰ྔΛখ͘͢͞Δɻ SegwitͳͲ K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  20. Big Block Bitcoin CashͳͲͰ࠾༻ K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b

    ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  21. 10෼ؒʹҰ౓Ͱ͸ͳ͘ɺ ΋ͬͱ୹͍࣌ؒ಺ʹBlock͕ੜ੒͞ΕΔΑ͏ʹ͢Δ K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  22. K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢ 5ISPVHIQVU 514

    #MPDLTJ[F C #MPDLSBUF Е 'PSLJO #MPDL5SFF 4FDVSJUZ ЌЕ

  23. K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢ ͲͪΒͷ৔߹΋ɺϑΥʔΫ͕ى͖΍͘͢ͳΓ ҆શੑ͕௿Լ͢Δɻ(51%

    Atttackʹऑ͘ͳΔ)

  24. 51% Attack

  25. Security Attacker͕ɺHonest nodeͷ computational power ͷ q ͷׂ߹ʹ૬౰͢Δcomputational power Λ͍࣋ͬͯΔͱ͢Δɻ

    λh β(λh , b) > qλh AttackerͷBlock Creation rate honest nodeͷmain chain creation rate Ͱ͋Ε͹҆શɻ

  26. Larger Blocks Blockͷେ͖͕͞૿͑Δͱɺάϥϑʹࣔ͢Α͏ʹɺ ஗Ԇ͕࣌ؒ૿Ճ͢ΔɻͦͷͨΊɺ৽͍͠Bock͕ੜ੒͞Εͨnode ͔Β཭Εͨnodeͷup date͕஗͘ͳΔɻ β(λh , b) >

    qλh Easy to attack β become smaller

  27. Acceleration Block Creation Blockͷੜ੒͕༰қʹͳΓɺ৽͘͠ݟ͔ͭͬͨBlock͕ ఻ൖͯ͘͠ΔΑΓ΋લʹɺઌʹࣗ෼ͷnodeͰBlock͕ੜ੒͞ΕΔ Honest node͸ඇޮ཰ʹɺAttacker͸ޮ཰తʹϚΠχϯάͰ͖Δ β(λh , b)

    > qλh Easy to attack qλh become bigger

  28. Using a GHOST GHOSTΛ༻͍Δ͜ͱʹΑͬͯɺForkͷͨ͠෼΋ ແବʹͳΒͣSecurityʹߟྀ͞ΕΔɻ β(λh , b) > qλh

    λh > qλh

  29. Using a GHOST β(λh , b) > qλh λh >

    qλh 1 > q GHOSTΛ༻͍Δ͜ͱʹΑͬͯɺForkͷͨ͠෼΋ ແବʹͳΒͣSecurityʹߟྀ͞ΕΔɻHonest node ͱಉ͡ computational power ͕ͳ͍ͱ߈ܸ͕੒ޭ͠ͳ͍!!

  30. Using a GHOST β(λh , b) > qλh λh >

    qλh 1 > q Block creation rateΛ͋͛ΒΕΔɻ Block sizeΛ͋͛ΒΕΔɻ

  31. ͓·͚

  32. Bob͸ɺAlice͔Β͓ՖΛങͬͯࢧ෷͓ͬͨۚΛୣ͍͍ͨɻ ͋Δ࣌ࠁtʹൃߦͨ͠txʹରͯ͠ɺTඵਐΜͩ࣌ࠁt+Tʹɺͦͷtxؚ͕·ΕΔ ϒϩοΫ͔Β͞Βʹ3ݸͷϒϩοΫ͕ঝೝ͞ΕͨͷΛ֬ೝ͠ɺAlice͸ɺBobʹ ͓ՖΛൃૹͨ͠ɻ ͜ͷঢ়گͰɺAlice͕Bob͔Β࠮ٗʹ߹͏֬཰ΛٻΊΑɻ ͨͩ͠ɺBob͸minerͰcomputational powerΛ 100͍࣋ͬͯΔɻ ͦΕҎ֎ͷਖ਼௚ͳminer͕͍࣋ͬͯΔ Computational

    power ͕ 300Ͱ͋Δͱ͢Δɻ

  33. લఏʀ"UUBDLFS͸"MJDF͕ՖΛૹΔ·ͰӅΕͯ#MPDLΛੜ੒͢Δɻ BUUBDLFSͷDPNQVUBUJPOBMQPXFS͸ɺIPOFTUOPEFͷ )POFTUOPEF͸ɺ"MJDF͕ՖΛૹΔ·Ͱʹ#MPDLੜ੒ͨ͠ɻ ͜ͷͱ͖ɺ"UUBDLFSOPEFͰɺ"MJDF͕ՖΛૹΔ·ͰʹLCMPDLੜ੒͢Δ֬཰͸ɺ QPJTTPO෼෍ͰܭࢉͰ͖ͯɺ P(k) = λke−λ k! ͜͜Ͱɺ"UUBDLFSͰͷ#MPDLੜ੒ͷׂ߹ͷฏۉ஋ɹɹ͸ɺ

    λ λ = 3 × 1 3 = 1

  34. Lͷ৔߹͸ɺӅΕͯੜ੒͍ͯͨ͠#MPDL͕NBJODIBJOͱͯ͠࠾༻͞ΕΔɻ ҰํɺӅΕͯੜ੒͍ͯͨ͠DIBJO͕Lͷ࣌͸ɺ͞Βʹ#MPDLੜ੒͕ඞཁɻ ͕ͨͬͯ͠ɺ߈ܸ͕੒ޭ͢Δ֬཰͸ɺ P = ∞ ∑ k=0 λke−λ k!

    × ( 1 3 ) 3−k JGL JGL 1 = 0.19597 ໿Ͱ੒ޭ͢Δɻ ݁ߏͰ͔͍  "UUBDLFS͸ɺ͜ͷ߈ܸͰಘΒΕΔϝϦοτͱ௨ৗͷOPEFͱͯ͠ NJOJOHใुͷϝϦοτΛൺֱͯ͠߹ཧతͳ൑அΛ͢Δɻ

  35. Bob͸ɺAlice͔Β͓ՖΛങͬͯࢧ෷͓ͬͨۚΛୣ͍͍ͨɻ ͋Δ࣌ࠁtʹൃߦͨ͠txʹରͯ͠ɺTඵਐΜͩ࣌ࠁt+Tʹɺͦͷtxؚ͕·ΕΔ ϒϩοΫ͔Β͞Βʹ3ݸͷϒϩοΫ͕ঝೝ͞ΕͨͷΛ֬ೝ͠ɺAlice͸ɺBobʹ ͓ՖΛൃૹͨ͠ɻ ͜ͷঢ়گͰɺAlice͕Bob͔Β࠮ٗʹ߹͏֬཰ΛٻΊΑɻ ͨͩ͠ɺBob͸minerͰcomputational powerΛ 100͍࣋ͬͯΔɻ ͦΕҎ֎ͷਖ਼௚ͳminer͕͍࣋ͬͯΔ Computational

    power ͕ 300Ͱ͋Δͱ͢Δɻ

  36. https://eprint.iacr.org/2013/881.pdf Reference https://bitcoin.org/bitcoin.pdf [1] [2]