Projects per year
Abstract / Description of output
Traditional bounds on synchronous Byzantine agreement (BA) and secure multi-party computation (MPC) establish that in absence of a private correlated-randomness setup, such as a PKI, protocols can tolerate up to t<n/3 of the parties being malicious. The introduction of “Nakamoto style” consensus, based on Proof-of-Work (PoW) blockchains, put forth a somewhat different flavor of BA, showing that even a majority of corrupted parties can be tolerated as long as the majority of the computation resources remain at honest hands. This assumption on honest majority of some resource was also extended to other resources such as stake, space, etc., upon which blockchains achieving Nakamoto-style consensus were built that violated the t<n/3 bound in terms of number of party corruptions. The above state of affairs begs the question of whether the seeming mismatch is due to different goals and models, or whether the resource-restricting paradigm can be generically used to circumvent the n/3 lower bound.
In this work we study this question and formally demonstrate how the above paradigm changes the rules of the game in cryptographic definitions. First, we abstract the core properties that the resource-restricting paradigm offers by means of a functionality wrapper, in the UC framework, which when applied to a standard point-to-point network restricts the ability (of the adversary) to send new messages. We show that such a wrapped network can be implemented using the resource-restricting paradigm—concretely, using PoWs and honest majority of computing power—and that the traditional t<n/3 impossibility results fail when the parties have access to such a network. Our construction is in the fresh Common Reference String (CRS) model—i.e., it assumes a CRS which becomes available to the parties at the same time as to the adversary.
We then present constructions for BA and MPC, which given access to such a network tolerate t<n/2 corruptions without assuming a private correlated randomness setup. We also show how to remove the freshness assumption from the CRS by leveraging the power of a random oracle. Our MPC protocol achieves the standard notion of MPC security, where parties might have dedicated roles, as is for example the case in Oblivious Transfer protocols. This is in contrast to existing solutions basing MPC on PoWs, which associate roles to pseudonyms but do not link these pseudonyms with the actual parties.
Original language | English |
---|---|
Title of host publication | Advances in Cryptology — EUROCRYPT 2020 |
Place of Publication | Cham |
Publisher | Springer |
ISBN (Electronic) | 978-3-030-45724-2 |
ISBN (Print) | 978-3-030-45723-5 |
DOIs | |
Publication status | Published - 1 May 2020 |
Event | 39th Annual International Conference on the Theory and Applications of Cryptographic Techniques - Virtual Conference Duration: 11 May 2020 → 15 May 2020 https://eurocrypt.iacr.org/2020/ |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Publisher | Springer, Cham |
Volume | 12106 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Conference
Conference | 39th Annual International Conference on the Theory and Applications of Cryptographic Techniques |
---|---|
Abbreviated title | EUROCRYPT 2020 |
City | Virtual Conference |
Period | 11/05/20 → 15/05/20 |
Internet address |
Fingerprint
Dive into the research topics of 'Resource-Restricted Cryptography: Revisiting MPC Bounds in the Proof-of-Work Era'. Together they form a unique fingerprint.Projects
- 1 Finished