Proof-of-work-based consensus in expected-constant time

Juan Garay; Aggelos Kiayias; Yu Shen

doi:10.1007/978-3-031-58734-4_4

Proof-of-work-based consensus in expected-constant time

Juan Garay, Aggelos Kiayias, Yu Shen^*

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

In the traditional consensus problem (aka Byzantine agreement), parties are required to agree on a common value despite the malicious behavior of some of them, subject to the condition that if all the honest parties start the execution with the same value, then that should be the outcome. This problem has been extensively studied by both the distributed computing and cryptographic protocols communities. With the advent of blockchains, whose main application—a distributed ledger—essentially requires that miners agree on their views, new techniques have been proposed to solve the problem, and in particular in so-called “permissionless” environments, where parties are not authenticated or have access to point-to-point channels and, further, may come and go as they please. So far, the fastest way to achieve consensus in the proof-of-work (PoW)-based setting of Bitcoin, takes O(polylogκ) number of rounds, where κ is the security parameter. We present the first protocol in this setting that requires expected-constant number of rounds. Furthermore, we show how to apply securely sequential composition in order to yield a fast distributed ledger protocol that settles all transactions in expected-constant time. Our result is based on a novel instantiation of “m-for-1 PoWs” on parallel chains that facilitates our basic building block, Chain-King Consensus. The techniques we use, via parallel chains, to port classical protocol design elements (such as Phase-King Consensus, super-phase sequential composition and others) into the permissionless setting may be of independent interest.

Original language	English
Title of host publication	Advances in Cryptology – EUROCRYPT 2024
Subtitle of host publication	43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques
Editors	Marc Joye, Gregor Leander
Publisher	Springer
Pages	96-125
Number of pages	30
Volume	14653
ISBN (Print)	9783031587337
DOIs	https://doi.org/10.1007/978-3-031-58734-4_4
Publication status	Published - 1 May 2024
Event	43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques - Zurich, Switzerland Duration: 26 May 2024 → 30 May 2024 https://eurocrypt.iacr.org/2024/

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	14653
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques
Abbreviated title	EUROCRYPT 2024
Country/Territory	Switzerland
City	Zurich
Period	26/05/24 → 30/05/24
Internet address	https://eurocrypt.iacr.org/2024/

Access to Document

10.1007/978-3-031-58734-4_4

GarayEtalEUROCRYPT2024Proof-of-work-basedConsensusAccepted author manuscript, 651 KBLicence: Creative Commons: Attribution (CC-BY)

https://ia.cr/2023/1663Licence: Creative Commons: Attribution (CC-BY)

Cite this

Garay, J., Kiayias, A., & Shen, Y. (2024). Proof-of-work-based consensus in expected-constant time. In M. Joye, & G. Leander (Eds.), Advances in Cryptology – EUROCRYPT 2024: 43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques (Vol. 14653, pp. 96-125). (Lecture Notes in Computer Science; Vol. 14653). Springer. https://doi.org/10.1007/978-3-031-58734-4_4

@inproceedings{66ac053c257d47d9809ac13d38d90f12,

title = "Proof-of-work-based consensus in expected-constant time",

abstract = "In the traditional consensus problem (aka Byzantine agreement), parties are required to agree on a common value despite the malicious behavior of some of them, subject to the condition that if all the honest parties start the execution with the same value, then that should be the outcome. This problem has been extensively studied by both the distributed computing and cryptographic protocols communities. With the advent of blockchains, whose main application—a distributed ledger—essentially requires that miners agree on their views, new techniques have been proposed to solve the problem, and in particular in so-called “permissionless” environments, where parties are not authenticated or have access to point-to-point channels and, further, may come and go as they please. So far, the fastest way to achieve consensus in the proof-of-work (PoW)-based setting of Bitcoin, takes O(polylogκ) number of rounds, where κ is the security parameter. We present the first protocol in this setting that requires expected-constant number of rounds. Furthermore, we show how to apply securely sequential composition in order to yield a fast distributed ledger protocol that settles all transactions in expected-constant time. Our result is based on a novel instantiation of “m-for-1 PoWs” on parallel chains that facilitates our basic building block, Chain-King Consensus. The techniques we use, via parallel chains, to port classical protocol design elements (such as Phase-King Consensus, super-phase sequential composition and others) into the permissionless setting may be of independent interest.",

author = "Juan Garay and Aggelos Kiayias and Yu Shen",

year = "2024",

month = may,

day = "1",

doi = "10.1007/978-3-031-58734-4\_4",

language = "English",

isbn = "9783031587337",

volume = "14653",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "96--125",

editor = "Marc Joye and Gregor Leander",

booktitle = "Advances in Cryptology – EUROCRYPT 2024",

address = "United Kingdom",

note = "43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques, EUROCRYPT 2024 ; Conference date: 26-05-2024 Through 30-05-2024",

url = "https://eurocrypt.iacr.org/2024/",

}

Garay, J, Kiayias, A & Shen, Y 2024, Proof-of-work-based consensus in expected-constant time. in M Joye & G Leander (eds), Advances in Cryptology – EUROCRYPT 2024: 43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques. vol. 14653, Lecture Notes in Computer Science, vol. 14653, Springer, pp. 96-125, 43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques, Zurich, Switzerland, 26/05/24. https://doi.org/10.1007/978-3-031-58734-4_4

Proof-of-work-based consensus in expected-constant time. / Garay, Juan; Kiayias, Aggelos; Shen, Yu.
Advances in Cryptology – EUROCRYPT 2024: 43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques. ed. / Marc Joye; Gregor Leander. Vol. 14653 Springer, 2024. p. 96-125 (Lecture Notes in Computer Science; Vol. 14653).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Proof-of-work-based consensus in expected-constant time

AU - Garay, Juan

AU - Kiayias, Aggelos

AU - Shen, Yu

PY - 2024/5/1

Y1 - 2024/5/1

N2 - In the traditional consensus problem (aka Byzantine agreement), parties are required to agree on a common value despite the malicious behavior of some of them, subject to the condition that if all the honest parties start the execution with the same value, then that should be the outcome. This problem has been extensively studied by both the distributed computing and cryptographic protocols communities. With the advent of blockchains, whose main application—a distributed ledger—essentially requires that miners agree on their views, new techniques have been proposed to solve the problem, and in particular in so-called “permissionless” environments, where parties are not authenticated or have access to point-to-point channels and, further, may come and go as they please. So far, the fastest way to achieve consensus in the proof-of-work (PoW)-based setting of Bitcoin, takes O(polylogκ) number of rounds, where κ is the security parameter. We present the first protocol in this setting that requires expected-constant number of rounds. Furthermore, we show how to apply securely sequential composition in order to yield a fast distributed ledger protocol that settles all transactions in expected-constant time. Our result is based on a novel instantiation of “m-for-1 PoWs” on parallel chains that facilitates our basic building block, Chain-King Consensus. The techniques we use, via parallel chains, to port classical protocol design elements (such as Phase-King Consensus, super-phase sequential composition and others) into the permissionless setting may be of independent interest.

AB - In the traditional consensus problem (aka Byzantine agreement), parties are required to agree on a common value despite the malicious behavior of some of them, subject to the condition that if all the honest parties start the execution with the same value, then that should be the outcome. This problem has been extensively studied by both the distributed computing and cryptographic protocols communities. With the advent of blockchains, whose main application—a distributed ledger—essentially requires that miners agree on their views, new techniques have been proposed to solve the problem, and in particular in so-called “permissionless” environments, where parties are not authenticated or have access to point-to-point channels and, further, may come and go as they please. So far, the fastest way to achieve consensus in the proof-of-work (PoW)-based setting of Bitcoin, takes O(polylogκ) number of rounds, where κ is the security parameter. We present the first protocol in this setting that requires expected-constant number of rounds. Furthermore, we show how to apply securely sequential composition in order to yield a fast distributed ledger protocol that settles all transactions in expected-constant time. Our result is based on a novel instantiation of “m-for-1 PoWs” on parallel chains that facilitates our basic building block, Chain-King Consensus. The techniques we use, via parallel chains, to port classical protocol design elements (such as Phase-King Consensus, super-phase sequential composition and others) into the permissionless setting may be of independent interest.

UR - https://www.scopus.com/pages/publications/85193608865

U2 - 10.1007/978-3-031-58734-4_4

DO - 10.1007/978-3-031-58734-4_4

M3 - Conference contribution

AN - SCOPUS:85193608865

SN - 9783031587337

VL - 14653

T3 - Lecture Notes in Computer Science

SP - 96

EP - 125

BT - Advances in Cryptology – EUROCRYPT 2024

A2 - Joye, Marc

A2 - Leander, Gregor

PB - Springer

T2 - 43rd Annual International Conference on the Theory and Applications of Cryptographic Techniques

Y2 - 26 May 2024 through 30 May 2024

ER -