Consensus with One Mobile Crash in Synchrony or One Crash in Asynchrony Has Infinite Executions

Posted on March 7, 2024, by Ittai Abraham and Gilad Stern

TL;DR: We give a simple, unified proof that consensus with one mobile crash in synchrony, or one crash in asynchrony, inevitably admits infinite executions. The proof uses a single reduction to a mobile delay adversary, a weaker but expressive fault model and then shows that every consensus protocol resilient to it must fail to terminate. This approach streamlines the classic FLP83 and SW89 results and highlights the close connection between... [Read More]
Tags: lowerbound

Early Stopping, Same but Different: Two Rounds Are Needed Even in Failure Free Executions

Posted on January 28, 2024, by Ittai Abraham and Gilad Stern

TL;DR: Even in failure-free executions, consensus protocols resilient to crash failures often require at least two rounds. This follows from the early stopping lower bound: executions with $f$ actual crashes require at least $\min {f+2, t+1}$ rounds when tolerating $t$ possible failures. Thus, the possibility of a failure forces extra rounds, even when no failures occur. [Read More]
Tags: lowerbound

Gather with Binding and Verifiability

Posted on January 9, 2024, by Gilad Stern and Ittai Abraham

We extend the Gather protocol with two important properties: Binding and Verifiability. This post is based on and somewhat simplifies the information theoretic gather protocol in our recent ACS work with Gilad Asharov and Arpita Patra. [Read More]
Tags: research

Simpler Security proof for Nakamoto Consensus

Posted on October 30, 2023, by Ling Ren

Four years ago (time flies!), I made a post on a simple security proof for Nakamoto consensus. While the proof intuition, as outlined in that post, is still reasonably simple, the actual proof has become quite delicate and crafty over the years. What happened was that some colleagues – Chen Feng at UBC and Dongning Guo at Northwestern – identified very subtle flaws in the proof, and clever mathematical maneuvers... [Read More]
Tags: blockchain101 blockchain

The Fast Fourier Transform over finite fields

Posted on September 1, 2023, by Ittai Abraham

The Fast Fourier Transform (FFT) developed by Cooley and Tukey in 1965 has its origins in the work of Gauss. The FFT, its variants and extensions to finite fields, are a fundamental algorithmic tool and a beautiful example of interplay between algebra and combinatorics. There are many great resources on FFT, see ingopedia’s curated list. [Read More]
Tags: math

Asynchronous Agreement on a Core Set

Posted on July 22, 2023, by Gilad Stern, Ittai Abraham

A challenging step in many asynchronous protocols is agreeing on a set of parties that completed some task. For example, an asynchronous protocol might start off with parties reliably broadcasting a value. Due to asynchrony and having $\leq f$ corruptions, honest parties can only wait for $n-f$ parties to complete the task. Parties may need to agree on a core set of $n-f$ such broadcasts and use them in the... [Read More]
Tags: consensus asynchrony

Can we Obtain Privacy in a Private Proof-of-Stake Blockchain? Part-I

Posted on July 21, 2023, by Chenghong Wang, Kartik Nayak

In this two-part post, we focus on the challenges and subtleties involved in obtaining privacy in private proof-of-stake (PoS) blockchains. For instance, designs that attempt to obtain privacy for transaction details while still relying on PoS, such as Ouroboros Crypsinous. The first part explains attacks on existing approaches, and the second part focuses on potential workarounds using differential privacy. These posts explain the intuitive ideas behind the works of Madathil... [Read More]
Tags: blockchain research privacy

Blockchains + TEEs Day 2 Summary

Posted on April 17, 2023, by Kartik Nayak, Ittai Abraham, Aniket Kate

This is the second of the two part post on the workshop on Blockchains + TEEs that concluded last week. Here are the key ideas from Day 2. You can find the post summarizing Day 1 here. [Read More]
Tags: blockchain

Blockchains + TEEs Day 1 Summary

Posted on April 9, 2023, by Kartik Nayak, Ittai Abraham, Aniket Kate

Our workshop on Blockchains + TEEs concluded last week. We had a fantastic series of talks and discussions on both days of the workshop. In this two part post, we highlight some key takeaways from each of the days. [Read More]
Tags: blockchain

Can we Obtain Player Replaceability and Forensic Support Simultaneously?

Posted on January 30, 2023, by Peiyao Sheng, Gerui Wang, Kartik Nayak, Sreeram Kannan, Pramod Viswanath

Forensic support is an important property of BFT protocols that addresses the other side of security: what happens when the number of malicious parties exceeds the allowable threshold? In a previous post, we systematically studied different BFT protocols to assess their ability to detect and prove malicious behavior when safety is violated. We learned that protocols such as PBFT and HotStuff with ${\sf poly}(n)$ communication have strong forensic support, meaning... [Read More]
Tags: research

What are Blockchains Useful for, Really?

Posted on January 12, 2023, by Kartik Nayak

Blockchains, or the decentralized ledger, are touted as the next big disruptive technology, as big as the Internet was in the 90s. What are these blockchains useful for, really? While there are relevant use cases, many examples people use that are either far too academic to be useful or are scenarios where blockchains are not the right solution in the first place. Thus, in this post, I am trying to... [Read More]
Tags: blockchain