Upgrade to Pro — share decks privately, control downloads, hide ads and more …

TPS&51%Attack

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for Taiki Taiki
June 30, 2018
Research
0
310

 TPS&51%Attack

Avatar for Taiki

Taiki

June 30, 2018
Tweet

More Decks by Taiki

See All by Taiki
Blenderで作るCG VR
Avatar for Taiki r_etx
1
81
Slush✖️Privacy
Avatar for Taiki r_etx
0
110
WeArelookingForYou.pdf
Avatar for Taiki r_etx
1
710
Zk-SNRAKS1~4
Avatar for Taiki r_etx
0
45
hakone_hackthon
Avatar for Taiki r_etx
0
90
Dynamics of Blockchain
Avatar for Taiki r_etx
1
68
Lightning network
Avatar for Taiki r_etx
0
100
BancorProtocol
Avatar for Taiki r_etx
4
760
GHZstate
Avatar for Taiki r_etx
0
54

Other Decks in Research

See All in Research
【NICOGRAPH2025】Photographic Conviviality: ボディペイント・ワークショップによる 同時的かつ共生的な写真体験
Avatar for Chinatsu Ozawa toremolo72
0
140
Tiaccoon: Unified Access Control with Multiple Transports in Container Networks
Avatar for Hiroya Onoe hiroyaonoe
0
540
CoRL2025速報
Avatar for robotpaper.challenge rpc
4
4.1k
Stealing LUKS Keys via TPM and UUID Spoofing in 10 Minutes - BSides 2025
Avatar for AnyKeyShik anykeyshik
0
180
地域丸ごとデイサービス「Go トレ」の紹介
Avatar for SMARTふくしラボ smartfukushilab1
0
880
AIスーパーコンピュータにおけるLLM学習処理性能の計測と可観測性 / AI Supercomputer LLM Benchmarking and Observability
Avatar for Yuuki Tsubouchi (yuuk1) yuukit
1
610
病院向け生成AIプロダクト開発の実践と課題
Avatar for Takashi Nishibayashi hagino3000
0
520
離散凸解析に基づく予測付き離散最適化手法 (IBIS '25)
Avatar for Taihei OKI taihei_oki
PRO
1
680
Thirty Years of Progress in Speech Synthesis: A Personal Perspective on the Past, Present, and Future
Avatar for Keiichi Tokuda ktokuda
0
160
空間音響処理における物理法則に基づく機械学習
Avatar for NII S. Koyama's Lab skoyamalab
0
190
学習型データ構造:機械学習を内包する新しいデータ構造の設計と解析
Avatar for Yusuke Matsui matsui_528
6
3k
ForestCast: Forecasting Deforestation Risk at Scale with Deep Learning
Avatar for SatAI.challenge satai
3
370

Featured

See All Featured
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
360
Producing Creativity
Avatar for Steve Smith orderedlist
PRO
348
40k
GraphQLの誤解/rethinking-graphql
Avatar for sonatard sonatard
74
11k
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
85
9.4k
Unsuck your backbone
Avatar for Amy Palamountain ammeep
671
58k
Marketing Yourself as an Engineer | Alaka | Gurzu
Avatar for Gurzu gurzu
0
120
Designing for Timeless Needs
Avatar for Cassini Nazir cassininazir
0
120
[RailsConf 2023] Rails as a piece of cake
Avatar for Vladimir Dementyev palkan
59
6.3k
How to Get Subject Matter Experts Bought In and Actively Contributing to SEO & PR Initiatives.
Avatar for Liv Day livdayseo
0
53
Winning Ecommerce Organic Search in an AI Era - #searchnstuff2025
Avatar for Aleyda Solis aleyda
0
1.8k
Building Adaptive Systems
Avatar for Chris Keathley keathley
44
2.9k
YesSQL, Process and Tooling at Scale
Avatar for Rocio Delgado rocio
174
15k

Transcript

  1. ABOUT TPS & 51% ATTACK CRYPGEEK 30/6/2018 Blockchainษڧձ #10 @r_etx

  2. Proof of Workͷ࿮૊ΈͰɺTPSΛ͍࣋ͬͨ͋͛ͨ

  3. TPSͱ͸ɺ

  4. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ VISA 2000TPS( daily peak rate

    of 4000 TPS) Pay Pal 115TPS so let’s take 4000 TPS as starting goal!!

  5. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ VISA 2000TPS( daily peak rate

    of 4000 TPS) Pay Pal 115TPS BTC 7TPS

  6. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ more over Online game 100000TPS

  7. transaction per secͷུͰɺҰඵؒ͋ͨΓʹ͞͹͚Δ transactionͷྔΛද͢ɻ TPS͕খ͍͞ͱtransaction͕٧·ͬͯঝೝʹ͕͔͔࣌ؒΔɻ Ωπ͍͡ΌΜ!

  8. Proof of Workͷ࿮૊ΈͰɺTPSΛ͍࣋ͬͨ͋͛ͨ

  9. TPSͷఆࣜԽ TPS(λ, b) = β(λ, b) ⋅ b ⋅ K

    K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)

  10. TPS(λ, b) = β(λ, b) ⋅ b ⋅ K ҰඵؒͰ࢖͑ΔKB

    1/KB ͋ͨΓͷTx K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB) TPSͷఆࣜԽ

  11. TPS(λ, b) = β(λ, b) ⋅ b ⋅ K ҰඵؒͰ࢖͑ΔKB

    1/KB ͋ͨΓͷTx TPSͷఆࣜԽ β ͸ɺɹ ͷؔ਺ɻ ͱɹ ͷҧ͍͸? β λ λ

  12. ωοτϫʔΫͰ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱ ฏۉ10෼(=600[s])ʹͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ λ ; Block Treeʹblock͕௥Ճ͞ΕΔׂ߹ ϒϩοΫ͕஍ٿ্Ͱڞ༗͞ΕΔͷʹ͔͔Δ࣌ؒΑΓ΋ ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱͷ͔͔Δ ฏۉͷ͕࣌ؒ௕͘ͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ BitcoinͰ͸ɺ

    λ = 1 600

  13. ωοτϫʔΫͰ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱ ฏۉ10෼(=600[s])ʹͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ λ = 1 600 β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ (Networkʹ͓͚Δ஗Ԇ΍ForkΛߟྀ͍ͯ͠Δ) λ

    ; Block Treeʹblock͕௥Ճ͞ΕΔׂ߹

  14. ωοτϫʔΫͰ৽͍͠Block͕ੜ੒͞ΕΔ·Ͱ ฏۉ10෼(=600[s])ʹͳΔΑ͏ʹઃఆ͞Ε͍ͯΔɻ λ ; Block Treeʹblock͕௥Ճ͞ΕΔׂ߹ BitcoinͰ͸ɺ λ = 1

    600 β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹ (NetworkͰͷ஗Ԇ΋ؚΜͰ͍Δ) β(λ, b)

  15. 0OFNPSF

  16. Topology of network

  17. Topology of network ࠓճ͸ߟ͑ͳ͍ɻ

  18. TPSͷఆࣜԽ TPS(λ, b) = β(λ, b) ⋅ b ⋅ K

    TPSΛ૿΍͔ͨͬͨ͠Βɺࡾͭͷํ๏͕͋Δ ҰඵؒͰ࢖͑ΔKB 1/KB ͋ͨΓͷTx K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  19. Txͷ༰ྔΛখ͘͢͞Δɻ SegwitͳͲ K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  20. Big Block Bitcoin CashͳͲͰ࠾༻ K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b

    ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  21. 10෼ؒʹҰ౓Ͱ͸ͳ͘ɺ ΋ͬͱ୹͍࣌ؒ಺ʹBlock͕ੜ੒͞ΕΔΑ͏ʹ͢Δ K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢

  22. K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢ 5ISPVHIQVU 514

    #MPDLTJ[F C #MPDLSBUF Е 'PSLJO #MPDL5SFF 4FDVSJUZ ЌЕ

  23. K ; 1KB͋ͨΓͷτϥϯβΫΫγϣϯ਺Λ૿΍͢ β ;ϒϩοΫ͕ϝΠϯνΣʔϯʹ௥Ճ͞ΕΔׂ߹Λ૿΍͢ b ; ϒϩοΫͷ࠷େऩ༰αΠζ(KB)Λ૿΍͢ ͲͪΒͷ৔߹΋ɺϑΥʔΫ͕ى͖΍͘͢ͳΓ ҆શੑ͕௿Լ͢Δɻ(51%

    Atttackʹऑ͘ͳΔ)

  24. 51% Attack

  25. Security Attacker͕ɺHonest nodeͷ computational power ͷ q ͷׂ߹ʹ૬౰͢Δcomputational power Λ͍࣋ͬͯΔͱ͢Δɻ

    λh β(λh , b) > qλh AttackerͷBlock Creation rate honest nodeͷmain chain creation rate Ͱ͋Ε͹҆શɻ

  26. Larger Blocks Blockͷେ͖͕͞૿͑Δͱɺάϥϑʹࣔ͢Α͏ʹɺ ஗Ԇ͕࣌ؒ૿Ճ͢ΔɻͦͷͨΊɺ৽͍͠Bock͕ੜ੒͞Εͨnode ͔Β཭Εͨnodeͷup date͕஗͘ͳΔɻ β(λh , b) >

    qλh Easy to attack β become smaller

  27. Acceleration Block Creation Blockͷੜ੒͕༰қʹͳΓɺ৽͘͠ݟ͔ͭͬͨBlock͕ ఻ൖͯ͘͠ΔΑΓ΋લʹɺઌʹࣗ෼ͷnodeͰBlock͕ੜ੒͞ΕΔ Honest node͸ඇޮ཰ʹɺAttacker͸ޮ཰తʹϚΠχϯάͰ͖Δ β(λh , b)

    > qλh Easy to attack qλh become bigger

  28. Using a GHOST GHOSTΛ༻͍Δ͜ͱʹΑͬͯɺForkͷͨ͠෼΋ ແବʹͳΒͣSecurityʹߟྀ͞ΕΔɻ β(λh , b) > qλh

    λh > qλh

  29. Using a GHOST β(λh , b) > qλh λh >

    qλh 1 > q GHOSTΛ༻͍Δ͜ͱʹΑͬͯɺForkͷͨ͠෼΋ ແବʹͳΒͣSecurityʹߟྀ͞ΕΔɻHonest node ͱಉ͡ computational power ͕ͳ͍ͱ߈ܸ͕੒ޭ͠ͳ͍!!

  30. Using a GHOST β(λh , b) > qλh λh >

    qλh 1 > q Block creation rateΛ͋͛ΒΕΔɻ Block sizeΛ͋͛ΒΕΔɻ

  31. ͓·͚

  32. Bob͸ɺAlice͔Β͓ՖΛങͬͯࢧ෷͓ͬͨۚΛୣ͍͍ͨɻ ͋Δ࣌ࠁtʹൃߦͨ͠txʹରͯ͠ɺTඵਐΜͩ࣌ࠁt+Tʹɺͦͷtxؚ͕·ΕΔ ϒϩοΫ͔Β͞Βʹ3ݸͷϒϩοΫ͕ঝೝ͞ΕͨͷΛ֬ೝ͠ɺAlice͸ɺBobʹ ͓ՖΛൃૹͨ͠ɻ ͜ͷঢ়گͰɺAlice͕Bob͔Β࠮ٗʹ߹͏֬཰ΛٻΊΑɻ ͨͩ͠ɺBob͸minerͰcomputational powerΛ 100͍࣋ͬͯΔɻ ͦΕҎ֎ͷਖ਼௚ͳminer͕͍࣋ͬͯΔ Computational

    power ͕ 300Ͱ͋Δͱ͢Δɻ

  33. લఏʀ"UUBDLFS͸"MJDF͕ՖΛૹΔ·ͰӅΕͯ#MPDLΛੜ੒͢Δɻ BUUBDLFSͷDPNQVUBUJPOBMQPXFS͸ɺIPOFTUOPEFͷ )POFTUOPEF͸ɺ"MJDF͕ՖΛૹΔ·Ͱʹ#MPDLੜ੒ͨ͠ɻ ͜ͷͱ͖ɺ"UUBDLFSOPEFͰɺ"MJDF͕ՖΛૹΔ·ͰʹLCMPDLੜ੒͢Δ֬཰͸ɺ QPJTTPO෼෍ͰܭࢉͰ͖ͯɺ P(k) = λke−λ k! ͜͜Ͱɺ"UUBDLFSͰͷ#MPDLੜ੒ͷׂ߹ͷฏۉ஋ɹɹ͸ɺ

    λ λ = 3 × 1 3 = 1

  34. Lͷ৔߹͸ɺӅΕͯੜ੒͍ͯͨ͠#MPDL͕NBJODIBJOͱͯ͠࠾༻͞ΕΔɻ ҰํɺӅΕͯੜ੒͍ͯͨ͠DIBJO͕Lͷ࣌͸ɺ͞Βʹ#MPDLੜ੒͕ඞཁɻ ͕ͨͬͯ͠ɺ߈ܸ͕੒ޭ͢Δ֬཰͸ɺ P = ∞ ∑ k=0 λke−λ k!

    × ( 1 3 ) 3−k JGL JGL 1 = 0.19597 ໿Ͱ੒ޭ͢Δɻ ݁ߏͰ͔͍  "UUBDLFS͸ɺ͜ͷ߈ܸͰಘΒΕΔϝϦοτͱ௨ৗͷOPEFͱͯ͠ NJOJOHใुͷϝϦοτΛൺֱͯ͠߹ཧతͳ൑அΛ͢Δɻ

  35. Bob͸ɺAlice͔Β͓ՖΛങͬͯࢧ෷͓ͬͨۚΛୣ͍͍ͨɻ ͋Δ࣌ࠁtʹൃߦͨ͠txʹରͯ͠ɺTඵਐΜͩ࣌ࠁt+Tʹɺͦͷtxؚ͕·ΕΔ ϒϩοΫ͔Β͞Βʹ3ݸͷϒϩοΫ͕ঝೝ͞ΕͨͷΛ֬ೝ͠ɺAlice͸ɺBobʹ ͓ՖΛൃૹͨ͠ɻ ͜ͷঢ়گͰɺAlice͕Bob͔Β࠮ٗʹ߹͏֬཰ΛٻΊΑɻ ͨͩ͠ɺBob͸minerͰcomputational powerΛ 100͍࣋ͬͯΔɻ ͦΕҎ֎ͷਖ਼௚ͳminer͕͍࣋ͬͯΔ Computational

    power ͕ 300Ͱ͋Δͱ͢Δɻ

  36. https://eprint.iacr.org/2013/881.pdf Reference https://bitcoin.org/bitcoin.pdf [1] [2]