But Why Does It Work? A Rational Protocol Design Treatment of Bitcoin

Christian Badertscher, Juan Garay, Ueli Maurer, Daniel Tschudi, Vasileios Zikas

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

An exciting recent line of work has focused on formally investigating the core cryptographic assumptions underlying the security of Bitcoin. In a nutshell, these works conclude that Bitcoin is secure if and only if the majority of the mining power is honest. Despite their great impact, however, these works do not address an incisive question asked by positivists and Bitcoin critics, which is fuelled by the fact that Bitcoin indeed works in reality: Why should the real-world system adhere to these assumptions?

In this work we employ the machinery from the Rational Protocol Design (RPD) framework by Garay et al. [FOCS 2013] to analyze Bitcoin and address questions such as the above. We show that under the natural class of incentives for the miners’ behavior—i.e., rewarding them for adding blocks to the blockchain but having them pay for mining—we can reserve the honest majority assumption as a fallback, or even, depending on the application, completely replace it by the assumption that the miners aim to maximize their revenue.

Our results underscore the appropriateness of RPD as a “rational cryptography” framework for analyzing Bitcoin. Along the way, we devise significant extensions to the original RPD machinery that broaden its applicability to cryptocurrencies, which may be of independent interest.
Original languageEnglish
Title of host publicationAdvances in Cryptology – EUROCRYPT 2018
PublisherSpringer
Pages34-65
Number of pages32
ISBN (Electronic)978-3-319-78375-8
ISBN (Print)978-3-319-78374-1
DOIs
Publication statusPublished - 31 Mar 2018
EventEUROCRYPT 2018 - Tel Aviv, Israel
Duration: 29 Apr 20183 May 2018
https://eurocrypt.iacr.org/2018/

Publication series

NameLecture Notes in Computer Science (LNCS)
PublisherSpringer, Cham
Volume10821
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

ConferenceEUROCRYPT 2018
Abbreviated titleEUROCRYPT 2018
CountryIsrael
CityTel Aviv
Period29/04/183/05/18
Internet address

Fingerprint Dive into the research topics of 'But Why Does It Work? A Rational Protocol Design Treatment of Bitcoin'. Together they form a unique fingerprint.

Cite this