Decentralized Thoughts

Good-case Latency of Byzantine Broadcast: a Complete Categorization

Posted on February 28, 2021, by Zhuolun Xiang

Guest post by Zhuolun Xiang [Read More]

Tags: research lowerbound SMR

What is a Merkle Tree?

Posted on December 22, 2020, by Alin Tomescu

In this post, we will demystify Merkle trees using three examples of problems they solve: [Read More]

Tags: cryptography merkle-hash-tree collision-resistant-hash-function integrity

Raft does not Guarantee Liveness in the face of Network Faults

Posted on December 12, 2020, by Heidi Howard, Ittai Abraham

Last month, Cloudflare published a postmortem of a recent 6-hour outage caused by a partial switch failure which left etcd unavailable as it was unable to establish a stable leader. This outage has understandably led to discussion online about exactly what liveness guarantees are provided by the Raft consensus algorithm in the face of network failures. [Read More]

Tags: raft dist101

A Simple and Succinct Zero Knowledge Proof

Posted on December 8, 2020, by Ittai Abraham, Alin Tomescu

There is a popular belief that succinct proofs and zero-knowledge proofs are a type of moon math. In this post, our goal is to present a simple proof system that can provide an introduction and intuition to this space. Perhaps surprisingly, the only tool we will use is the Theorem that non-trivial degree-at-most-$d$ polynomials over a field have at most $d$ roots. [Read More]

Tags: zero-knowledge crypto101

The Lock-Commit Paradigm: Multi-shot and Mixed Faults

Posted on November 30, 2020, by Ittai Abraham, Kartik Nayak

In this follow to our Lock-Commit post, we show two important extensions. The first is how to extend from single-shot to multi-shot. Multi-shot is the bases of State Machine Replication. The second is how to tolerate mix faluts: both $f$ omission failures and $k$ crash failures given k+2f < n. [Read More]

Tags: dist101

The Lock-Commit Paradigm

Posted on November 29, 2020, by Ittai Abraham, Kartik Nayak

In this post, we explore one of the most celebrated and widely used techniques for reaching consensus: the Lock-Commit paradigm. This approach is a key technique of DLS88, Lamport’s Paxos, and many subsequent protocols. Protocols like Raft, PBFT, Tendermint, SBFT, Casper FFG, HotStuff, etc., are all based on this paradigm. [Read More]

Tags: dist101

BFT Protocol Forensics

Posted on November 19, 2020, by Peiyao Sheng, Gerui Wang, Kartik Nayak, Sreeram Kannan, Pramod Viswanath

An important property satisfied by any Byzantine fault tolerant consensus protocol is agreement, which requires non-faulty replicas to not decide on conflicting values. Depending on the network model, typical consensus protocols tolerate only a fraction of Byzantine replicas. In particular, under partial synchrony or asynchrony, no consensus protocol with $n$ replicas can tolerate more than $n/3$ Byzantine faults. If the number of Byzantine replicas exceed this number, the protocols do... [Read More]

Tags: Accountability research

Resolving the Availability-Finality Dilemma

Posted on November 1, 2020, by

Guest post by Joachim Neu, Ertem Nusret Tas, and David Tse [Read More]

Tags: blockchain101 SMR research

Living with Asynchrony: Bracha's Reliable Broadcast

Posted on September 19, 2020, by Ittai Abraham

In this series of posts, we explore what can be done in the Asynchronous model. This model seems challenging because the adversary can delay messages by any bounded time. By the end of this series, you will see that almost everything that can be done in synchrony can be obtained in asynchrony. [Read More]

Tags: dist101 asynchrony

Broadcast from Agreement and Agreement from Broadcast

Posted on September 14, 2020, by Ittai Abraham, Kartik Nayak

In this post, we highlight the connection between Broadcast and Agreement in the synchronous model. Broadcast and Agreement: How can you implement one from the other? [Read More]

Tags: dist101

Commit-Notify Paradigm for Synchronous Consensus with Omission Faults

Posted on September 13, 2020, by Kartik Nayak, Ittai Abraham

We continue our series of posts on State Machine Replication (SMR). In this post, we move from consensus under crash failures to consensus under omission failures. We still keep the synchrony assumption. [Read More]

Tags: dist101 SMR

What is a Cryptographic Hash Function?

Posted on August 28, 2020, by Alin Tomescu

If you ever tried to understand Bitcoin, you’ve probably banged your head against the wall trying to understand what is a cryptographic hash function? The goal of this post is to: [Read More]

Tags: cryptography hashing hash-function random-oracle collision-resistance one-wayness integrity

Private Set Intersection #2

Posted on July 26, 2020, by Avishay Yanai

In the first post on Private Set Intersection, I presented the problem of Private Set Intersection, its applications and the simple protocol of [KMRS14], that allows Alice and Bob to learn the intersection of their sets with the aid of an untrusted third party Steve who is assumed to not collude with Alice or with Bob. [Read More]

Tags: cryptography private-set-intersection

Polynomial Secret Sharing and the Lagrange Basis

Posted on July 17, 2020, by Ittai Abraham, Alin Tomescu

In this post, we highlight an amazing result: Shamir’s secret sharing scheme. This is one of the most powerful uses of polynomials over a finite field in distributed computing. Intuitively, this scheme allows a $Dealer$ to commit to a secret $s$ by splitting it into shares distributed to $n$ parties. The secret is hidden and requires a threshold of $f+1$ parties in order to be reconstructed, where $f < n$.... [Read More]

The Marvels of Polynomials over a Field

Posted on July 17, 2020, by Ittai Abraham

In this series of posts, we explore the mathematical foundations of polynomials over a field. These objects are at the heart of several results in computer science: secret sharing, Multi Party Computation, Complexity, and Zero Knowledge protocols. [Read More]