DOCSLIB.ORG

Smart Contracts on Bitcoin Blockchain

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Smart Contracts on Bitcoin Blockchain Smart Contracts on Bitcoin Blockchain BitFury Group Sep 04, 2015 (Version 1.1) Abstract Smart contracts are one of the more promising directions for Bitcoin. Now, with the advent of so called Bitcoin 2.0 technologies such as Ethereum, the problem of smart contracts within the Bit- coin ecosystem gains new importance. This report studies possible smart contract applications for Bitcoin and outlines directions for further research. Version History Version Date Change description 1.0 Aug 13, 2015 Initial version 1.1 Sep 04, 2015 Added a copyright notice and a watermark © 2015 Bitfury Group Limited Without permission, anyone may use, reproduce or distribute any material in this paper for noncommercial and educational use (i.e., other than for a fee or for commercial purposes) provided that the original source and the applicable copyright notice are cited. Smart contracts are one of the more promising directions for cryptocurrencies and Bitcoin in par- ticular. A smart contract is understood as a computer protocol used to facilitate and automate financial contracts [1]. The term smart contract was introduced by Nick Szabo in 1990s [2] and became more relevant than ever before in 2010s after digital currencies gained popularity. One of the advantages in using Bitcoin as a medium for smart contracts is the inherent low trust ap- proach. Built-in Bitcoin mechanisms let users minimize counterparty risks by utilizing mathematical and algorithmic tools, not by relying on a mediator’s authority, as it is often the case in the traditional approach. Bitcoin is criticized because of the insufficient expressive means for smart contracts. The Ether- eum project [3] launched on July 30th, 2015 was developed as a replacement of the Bitcoin protocol specifically targeted for smart contract users. Because of the critique, the following questions arise: • What possibilities and perspectives does the Bitcoin protocol have as a medium for smart con- tracts? • What are the main drawbacks of Bitcoin compared to the alternatives (e.g., Ethereum)? Can these drawbacks be eliminated or alleviated while staying within the protocol? 1 Theory 1.1 Scripts All information in the Bitcoin protocol is stored in the form of a decentralized ledger – the blockchain. The building block of the blockchain is a transaction containing on or more inputs and outputs [4]. Each transaction input is an unspent output (UTXO) of one of previous transactions recorded on the blockchain1. Each transaction output is associated with the value – an integer denoting the spendable − amount of currency in satoshi (10 8 BTC). The sum of all transaction input values (i.e., the values of UTXOs associated with these inputs) equals to the sum of all transaction output values, plus the transaction fee paid to a miner for including the transaction into a block. Therefore, we can view a transaction as redistribution of wealth by “destroying” existing UTXOs and creating new ones. Each UTXO has to specify a person (or several persons) eligible for spending wealth associated with it. To accomplish this, the Bitcoin protocol introduces a scripting language [5]. The language describes the execution of a certain program on a stack machine [6], therefore resembling Forth progamming language [7]. The capabilities of the scripting language are severely limited compared to general pur- pose PLs; for example, it lacks cycles, I/O, and persistent states. These restrictions were introduced to protect the Bitcoin network from DoS-attacks and get acceptable timings for transaction and block verification. Each transaction output contains a script which locks, or encumbers, the money associated with the UTXO. This script is commonly referred to as scriptPubKey. To spend this money, a user of the 1Except for coinbase transaction inputs which we won’t consider in the report as they are not so interesting from the point of view of smart contracts. – 2 – Bitcoin network must demonstrate the proof of ownership in the form of an unlocking script scriptSig. Hence, a script is a part of each input and each output of a transaction. Verification of the pair (scriptPubKey, scriptSig) is performed in several steps: 1. Execute the unlocking script scriptSig; remember the stack state after the execution. 2. Not changing the stack, execute the locking script scriptPubKey. 3. If after executing both scripts, the stack isn’t empty and the top value does not evaluate to false (i.e., it contains one or more 1-bits), the verification is successful. Several scripting language instructions may determine the verification state immediately upon their execution (e.g., RETURN and VERIFY). Example. For the most common transaction type (pay-to-pubKeyHash), the unlocking script scriptSig consists of pushing two numbers into the stack: • the digital signature of the spending transaction • the public key of the user. The locking script scriptPubKey performs the following steps: 1. Check that the public key upon hashing is equal to the address [8] of the UTXO. The address in the binary form is a part of the locking script. 2. Check that the public key corresponds to the digital signature and the transaction. If both conditions hold, a specific transaction input is correct. If all transaction inputs are correct, the transaction is correct in whole and can be propagated or included in a block. Example. Arbitrary data can be stored in the Bitcoin blockchain using the following form of the lock- ing script: 1. RETURN instruction 2. data RETURN makes the validation process fail immediately. This means all money for UTXOs encumbered with the specified form of the locking script is lost forever; the only useful function of the UTXO is storing the data in the script. 1.2 Transaction Versions Two Bitcoin features helping implement smart contracts are transaction lock time and input versions [4]. Both these fields are used to determine whether the transaction in question is final, i.e. whether or not it can be included in blocks. Currently, non-final transactions are not propagated across the network; nevertheless, they are useful for creating and updating smart contracts. – 3 – Transaction lock time is an unsigned 4-byte integer that specifies either the minimal timestamp or the minimal block height when the transaction is considered final. “Ordinary” transactions that just move the value around have this field set to zero; for these transactions the value of both lock time and input versions are ignored. If the lock time is a non-zero value not exceeding 500 million, it is treated as block height; otherwise, it is considered as a UNIX timestamp. Example. A transaction with lock time set to 400,000 cannot be included in any block with the height less than 400,000. Note that Bitcoin clients currently forbid the propagation of such a transaction across the network until the 400,000th block is actually mined; however, it can be safely propagated after the lock time condition is met. Each transaction input also has a 4-byte unsigned integer value associated with it, the input version. The versions are useful in constructing transactions from several sources, as they allow signing inputs independently (see the explanation of signatures below). The input versions are active only when the containing transaction specifies a non-zero lock time. In theory, the transaction with the higher ver- sion of inputs should replace the transaction with the lower version in the transaction memory pool. However, the corresponding functionality was removed from the reference Bitcoin client implemen- tation, and as of now, version fields are mostly useless. 1.3 Signatures Bitcoin protocol allows several kinds of user signatures. The core functionality of a signature is as follows: Problem. Prove that the user possessing the private key corresponding to the given public key pub- Key, has authorized the transaction tx to spend their money. To solve this problem, the Bitcoin protocol uses elliptic curve digital signatures [9]. Each signature is computed based on the hash of the transaction tx. This makes it impossible for third parties to alter the transaction after it entered the Bitcoin network while maintaining the validity of the signature, e.g. in a MitM attack [10]. The parts of the transaction used to produce the hash used in digital signatures depend on the type of the signature. This type is specified as an additional byte at the end of the signature [11]. There are three types of signatures: • SIGHASH_ALL (default type). All of the transaction content is used to get the hash, except for unlocking scripts (if these scripts were included, signature embedded in one of the inputs would invalidate signatures in all other unlocking scripts), but including all input versions, references to UTXOs, and specifications of all outputs. This type of signature can be expressed as: “The user agrees to put their money in, as long as the others put their money in the specified way, and the money is spent as agreed”. – 4 – • SIGHASH_NONE. The tx hash is based on all transaction inputs, and ignores input versions and outputs. This type of signature can be expressed as: “The user agrees to put their money in, as long as the others put their money in the specified way; the user does not care how the money is spent”. • SIGHASH_SINGLE. The tx hash uses a single output, the index of which is the same as the index of the current input. This type of signature can be expressed as: “The user agrees to put their money in, as long as the others put their money in the specified way; the user only cares about their part of the money”. Additionally, the ANYONECANPAY modifier can be used together with any of these three methods. The modifier means that the tx hash ignores all transaction inputs except the current one.
Load more

Recommended publications
  • Smart Contracts: Building Blocks for Digital Markets
    1/25/2018 Nick Szabo -- Smart Contracts: Building Blocks for Digital Markets Smart Contracts: Building Blocks for Digital Markets Copyright (c) 1996 by Nick Szabo permission to redistribute without alteration hereby granted Glossary (This is a partial rewrite of the article which appeared in Extropy #16) Introduction The contract, a set of promises agreed to in a "meeting of the minds", is the traditional way to formalize a relationship. While contracts are primarily used in business relationships (the focus of this article), they can also involve personal relationships such as marraiges. Contracts are also important in politics, not only because of "social contract" theories but also because contract enforcement has traditionally been considered a basic function of capitalist governments. Whether enforced by a government, or otherwise, the contract is the basic building block of a free market economy. Over many centuries of cultural evolution has emerged both the concept of contract and principles related to it, encoded into common law. Algorithmic information theory suggests that such evolved structures are often prohibitively costly to recompute. If we started from scratch, using reason and experience, it could take many centuries to redevelop sophisticated ideas like property rights that make the modern free market work [Hayek]. The success of the common law of contracts, combined with the high cost of replacing it, makes it worthwhile to both preserve and to make use of these principles where appropriate. Yet, the digital revolution is radically changing the kinds of relationships we can have. What parts of our hard-won legal tradition will still be valuable in the cyberspace era? What is the best way to apply these common law principles to the design of our on-line relationships? Computers make possible the running of algorithms heretofore prohibitively costly, and networks the quicker transmission of larger and more sophsiticated messages.
    [Show full text]
  • Read the Report Brief
    A REVOLUTION IN TRUST Distributed Ledger Technology in Relief & Development MAY 2017 “The principal challenge associated with [DLT] is a lack of awareness of the technology, especially in sectors other than banking, and a lack of widespread understanding of how it works.” - Deloitte Executive Summary1 The Upside In 2016, the blockchain was recognized as one of the top 10 In a recent report, Accenture surveyed emerging technologies by the World Economic Forum.2 The cost data from eight of the world’s ten potential of the blockchain and distributed ledger technology largest investment banks, with the goal of putting a dollar figure against potential (hereinafter “DLT”) to deliver benefits is significant. Gartner cost savings that might be achieved with estimates that DLT will result in $176 billion in added business DLT. The report concluded that the value by 2025; that total reaches $3.1 trillion by 2030.3 banks analyzed could reduce infrastructure costs by an average $8 to Investment in the field reflects the widespread belief that the $12 billion a year. The survey mapped technology can deliver value. Numerous trials, and some more than 50 operational cost metrics deployments, can be found across multiple sectors. and found the savings would break down as follows: Over two dozen countries are investing in DLT 70% savings on central financial More than 2,500 patents have been filed in the last 3 reporting 4 30-50% savings on compliance years 50% savings on centralized operations As of Q4, 2016, 28 of the top 30 banks were engaged in 50% savings on business blockchain proofs-of-concept operations.
    [Show full text]
  • On Trade-Offs of Applying Block Chains for Electronic Voting Bulletin
    On Trade-offs of Applying Block Chains for Electronic Voting Bulletin Boards Sven Heiberg1, Ivo Kubjas1, Janno Siim3;4, and Jan Willemson2;3 1 Smartmatic-Cybernetica Centre of Excellence for Internet Voting Ulikooli¨ 2, 51003 Tartu, Estonia fsven,[email protected] 2 Cybernetica AS, Ulikooli¨ 2, 51003 Tartu, Estonia [email protected] 3 Software Technology and Applications Competence Center Ulikooli¨ 2, 51003 Tartu, Estonia 4 Institute of Computer Science, University of Tartu Ulikooli¨ 18, 50090 Tartu, Estonia [email protected] Abstract. This paper takes a critical look at the recent trend of building electronic voting systems on top of block chain technology. Even though being very appealing from the election integrity perspective, block chains have numerous technical, economical and even political drawbacks that need to be taken into account. Selecting a good trade-off between de- sirable properties and restrictions imposed by different block chain im- plementations is a highly non-trivial task. This paper aims at bringing some clarity into performing this task. We will mostly be concentrating on public permissionless block chains and their applications as bulletin board implementations as these are the favourite choices in majority of the recent block chain based voting protocol proposals. 1 Introduction In virtually all of the modern democratic societies, democracy (translated from Greek roughly as rule of the people) is implemented via some sort of public opinion polling e.g. voting on the elections of representative bodies. Regrettably, the process of public polling is very fragile. Many things can go wrong, and have gone wrong in the history of elections. To address the his- torically experienced problems, many requirements have been put forward and many measures have been developed to meet them.
    [Show full text]
  • Smart Contracts and Distributed Ledger Technology: a Lawyer’S Guide
    Smart Contracts and Distributed Ledger Technology: A Lawyer’s Guide Presented by: Ken Moyle Clear Law Institute | 4601 N. Fairfax Dr., Ste 1200 | Arlington | VA | 22203 www.clearlawinstitute.com Questions? Please call us at 703-372-0550 or email us at [email protected] All-Access Membership Program ● Earn continuing education credit (CLE, CPE, SHRM, HRCI, etc.) in all states at no additional cost ● Access courses on a computer, tablet, or smartphone ● Access more than 75 liVe webinars each month ● Access more than 750 on-demand courses Register within 7 days after the webinar using promo code “7member” to receive a $200 discount off the $799 base price. Learn more and register here: http://clearlawinstitute.com/member Clear Law Institute, © 2018 Smart Contracts and Distributed Ledger Technology A Lawyer’s Guide Agenda Smart Contracts: Theory and Reality Concepts and Confusion • Legal vs. Technical viewpoints The Lexicon • Common Accord • Distributed Ledger Initial Coin Offerings and SAFTs • Blockchain Regulatory Developments • Cryptocurrency • State blockchain statutes • Smart Contracts • Delaware Resources www.ClearLawInstitute.com (703) 372-0550 Clear Law Institute, © 2018 “ The digital revolution is radically changing the kinds of relationships we can have. What parts of our hard- won legal tradition will still be valuable in the cyberspace era? ” - Nick Szabo, 1996 “What is the best way to apply these common law principles to the design of our on-line relationships?” Integrity of record Trust in the Enforceability outcome
    [Show full text]
  • Introducing Ethereum and Solidity Foundations of Cryptocurrency and Blockchain Programming for Beginners — Chris Dannen Introducing Ethereum and Solidity
    Introducing Ethereum and Solidity Foundations of Cryptocurrency and Blockchain Programming for Beginners — Chris Dannen Introducing Ethereum and Solidity Foundations of Cryptocurrency and Blockchain Programming for Beginners Chris Dannen Introducing Ethereum and Solidity: Foundations of Cryptocurrency and Blockchain Programming for Beginners Chris Dannen Brooklyn, New York, USA ISBN-13 (pbk): 978-1-4842-2534-9 ISBN-13 (electronic): 978-1-4842-2535-6 DOI 10.1007/978-1-4842-2535-6 Library of Congress Control Number: 2017936045 Copyright © 2017 by Chris Dannen This work is subject to copyright. All rights are reserved by the Publisher, whether the whole or part of the material is concerned, specifically the rights of translation, reprinting, reuse of illustrations, recitation, broadcasting, reproduction on microfilms or in any other physical way, and transmission or information storage and retrieval, electronic adaptation, computer software, or by similar or dissimilar methodology now known or hereafter developed. Trademarked names, logos, and images may appear in this book. Rather than use a trademark symbol with every occurrence of a trademarked name, logo, or image, we use the names, logos, and images only in an editorial fashion and to the benefit of the trademark owner, with no intention of infringement of the trademark. The use in this publication of trade names, trademarks, service marks, and similar terms, even if they are not identified as such, is not to be taken as an expression of opinion as to whether or not they are subject to proprietary rights. While the advice and information in this book are believed to be true and accurate at the date of publication, neither the authors nor the editors nor the publisher can accept any legal responsibility for any errors or omissions that may be made.
    [Show full text]
  • Books and Papers
    APPENDIX A Books and Papers Books Economics Economics in One Lesson, Henry Hazlitt, ISBN-13: 978-0517548233 Basic Economics, Thomas Sowell, ISBN-13: 978-­0465060733 Crashed: How a Decade of Financial Crises Changed the World, Adam Tooze, ISBN-13: 978-­0670024933 The Ascent of Money, Niall Ferguson, ISBN-13: 978-­0143116172 The Ethics of Money Production, Jörg Guido Hülsmann, ASIN: B003NX6Z3W Denationalisation of Money, F. A. Hayek, ASIN: B005DTKORM Society The Sovereign Individual, James Dale Davidson and Lord William Rees-Mogg, ISBN-13: 978-­0684832722 Exit, Voice, and Loyalty, Albert O. Hirschman, ASIN: 0674276604 © Harris Brakmić 2019 349 H. Brakmić, Bitcoin and Lightning Network on Raspberry Pi, https://doi.org/10.1007/978-1-4842-5522-3 APPENDIX A BOOKS and PaPERS Technology Mastering Bitcoin 2nd Edition, Andreas Antonopoulos, ASIN: B071K7FCD4 Programming Bitcoin, Jimmy Song, ISBN-13: 978-­1492031499 A Dissection of Bitcoin, Paul Huang, ASIN: B0198LXI5K Bitcoin Internals, Chris Clark, ASIN: B00DG8EPT0 Applied Cryptography, Bruce Schneier, ISBN-13: 978-1119096726 Essays and Papers Bitcoin: A Peer-to-Peer Electronic Cash System, Satoshi Nakamoto, https://bitcoin.org/en/bitcoin-paper Bitcoin’s Academic Pedigree, Arvind Narayanan and Jeremy Clark, https://queue.acm.org/detail.cfm?id=3136559 Blockchain Proof-of-Work is a Decentralized Clock, Gregory Trubetskoy, https://grisha.org/blog/2018/01/23/explaining-proof-­ of-work/ Shelling Out: The Origins of Money, Nick Szabo, https://nakamoto institute.org/shelling-out/ Money, Blockchains, and
    [Show full text]
  • Cryptocurrency: a Primer for Policy-Makers
    August 2019 Cryptocurrency: A Primer for Policy-Makers Zack Gold and Megan McBride Approved for public release. Unlimited distribution. CRM-2019-U-020185-Final Abstract This primer is an effort to address a gap in knowledge about cryptocurrencies and the cryptocurrency ecosystem among the policymaking community and advance the understanding of cryptocurrencies and consideration of their national security implications. Cryptocurrencies are strictly digital currencies, are typically overseen by a decentralized peer-to-peer community, and are secured through cryptography. We use clear, non-technical language to describe complex concepts and demystify overly technical terms in order to explain the technical and economic aspects of cryptocurrency, why they are used, and the benefits and drawbacks to cryptocurrencies compared to conventional currencies—like the US dollar. We conclude by considering some cryptocurrency-related issues of which greater exploration would benefit US national security. This document contains the best opinion of CNA at the time of issue. It does not necessarily represent the opinion of the sponsor or client. Distribution Approved for public release. Unlimited distribution. Cover image credit: “Photo of a mobile phone with a Bitcoin Cash wallet, Bitcoin whitepaper by Satoshi Nakamoto and Bitcoin.com pen.” BitcoinXio, Apr. 15, 2018. Approved by: August 2019 Jonathan Schroden, Research Program Director Special Operations Program Center for Stability & Development Strategy, Policy, Plans, and Programs Division (SP3) Request additional copies of this document through [email protected]. Copyright © 2019 CNA. All rights reserved Executive Summary In 2017, the value of one Bitcoin skyrocketed to more than $20,000. Media coverage increased, and even people who did not join the investment frenzy became aware of so-called “cryptocurrencies.” Despite this familiarity, few actually understand cryptocurrencies and the implications they may have on US interests, from global finance to national security to good governance.
    [Show full text]
  • Implementing Internet Applications: Overview 4/1/21, 811 PM
    IT 461 - Implementing Internet Applications: Overview 4/1/21, 811 PM IT 461 - Implementing Internet Applications: Overview Module Outline 6. Introduction to Blockchain 6.1.Blockchain Technology 6.1.1. What is Blockchain? 6.1.2. Hashing 6.1.3. Hash Chain of Blocks 6.1.4. Public Key Cryptography 6.1.5. Securing Hashchain With Public Key Cryptography 6.1.6. Blockchain: Hashchain Inside Hashchain 6.1.7. Consensus Mechanism 6.1.8. Glossary 6.2.Blockchain Applications 6.2.1. A Brief History 6.2.2. Distributed Consensus 6.2.3. Smart Contracts 6.2.4. Financial Applications 6.2.5. Non-Financial Applications 6.2.6. Future of Blockchain Applications https://ple.odu.eDu/courses/201930/it461/print/1c1434af16f7c31af8…rses%2F201930%2Fit461%2Fmodules%2F6%2Foverview&print_type=module Page 1 of 12 IT 461 - Implementing Internet Applications: Overview 4/1/21, 811 PM 6. Introduction to Blockchain 6.A. Assignments Assignments Description Deliverables Due Date 1. Readings Please complete the Required Readings in the Resources section of this None Jul. 25, 2020 - module: 11:59 pm Blockchain: Simple Explanation. Mazonka, Oleg. "Blockchain: Simple Explanation" (PDF). Journal of Reference. Volume 16, January 2017. http://jrxv.net/x/16/chain.pdf Blockchain: How This Remarkable Technology Will Impact You, Your Organization and Society. Mercer White Paper, January 2019. https://www.mmc.com/content/dam/mmc- web/insights/publications/2019/jan/gl-2019-blockchain-101-overview- mercer.pdf Optionally, please complete the optional reading in the Resources section of this module. 2. Complete the Complete the following tasks: None Jul. 25, 2020 - module content 11:59 pm 1.
    [Show full text]
  • The Evolution of Privacy in the Blockchain: a Historical Survey
    The Evolution of Privacy in the Blockchain: a Historical Survey Sergio Marciante[0000-0001-8380-2962] and Álvaro Herrero[0000-0002-2444-5384] Grupo de Inteligencia Computacional Aplicada (GICAP), Departamento de Ingeniería Informática, Escuela Politécnica Superior, Universidad de Burgos, Av. Cantabria s/n, 09006, Burgos, Spain. [email protected], [email protected] Abstract. In order to store information in a decentralized context and without the presence of a guarantor authority, it is necessary to replicate the information on multiple nodes. This is the underlying idea of the blockchain, that is generating increasing interest nowadays as one of the most-promising disruptive technolo- gies. However, the ledger is accessible to all participants and if adequate precau- tions are not taken, this may lead to serious privacy issues. Present paper retraces the history of blockchain with particular attention to the evolution of privacy and anonymity concerns, starting from bitcoin. Furthermore, this work presents the most popular solutions to ensure privacy in the blockchain, as well as the main cryptocurrencies that have been proposed after bitcoin to overcome this problem. A critical survey is presented classifying the approaches in mixing protocols and knowledge limitation protocols. Open challenges and future directions of re- search in this field are proposed. Keywords: blockchain, ledger, distributed ledger technology, bitcoin, crypto- currencies, privacy, anonymity, survey. 1 Introduction In recent years there has been an increasing interest on a new technology that promises to revolutionize the world: the blockchain. This is the first time that a secure and im- mutable storage of information, comprising the transfer of an asset without the help of an authority as a guarantor, is a reality.
    [Show full text]
  • Blockchain & Cryptocurrency Regulation
    Blockchain & Cryptocurrency Regulation Third Edition Contributing Editor: Josias N. Dewey Global Legal Insights Blockchain & Cryptocurrency Regulation 2021, Third Edition Contributing Editor: Josias N. Dewey Published by Global Legal Group GLOBAL LEGAL INSIGHTS – BLOCKCHAIN & CRYPTOCURRENCY REGULATION 2021, THIRD EDITION Contributing Editor Josias N. Dewey, Holland & Knight LLP Head of Production Suzie Levy Senior Editor Sam Friend Sub Editor Megan Hylton Consulting Group Publisher Rory Smith Chief Media Officer Fraser Allan We are extremely grateful for all contributions to this edition. Special thanks are reserved for Josias N. Dewey of Holland & Knight LLP for all of his assistance. Published by Global Legal Group Ltd. 59 Tanner Street, London SE1 3PL, United Kingdom Tel: +44 207 367 0720 / URL: www.glgroup.co.uk Copyright © 2020 Global Legal Group Ltd. All rights reserved No photocopying ISBN 978-1-83918-077-4 ISSN 2631-2999 This publication is for general information purposes only. It does not purport to provide comprehensive full legal or other advice. Global Legal Group Ltd. and the contributors accept no responsibility for losses that may arise from reliance upon information contained in this publication. This publication is intended to give an indication of legal issues upon which you may need advice. Full legal advice should be taken from a qualified professional when dealing with specific situations. The information contained herein is accurate as of the date of publication. Printed and bound by TJ International, Trecerus Industrial
    [Show full text]
  • Bitcoin Protocol Main Threats
    Universita` di Pisa Dipartimento di Informatica Technical Report Bitcoin Protocol Main Threats Damiano Di Francesco Maesa 1 1Department of Computer Science, University of Pisa LICENSE: Creative Commons: Attribution-Noncommercial - No Derivative Works ADDRESS: Largo B. Pontecorvo 3, 56127 Pisa, Italy. TEL: +39 050 2212700 FAX: +39 050 2212726 Bitcoin Protocol Main Threats Damiano Di Francesco Maesa ∗1 1Department of Computer Science, University of Pisa Abstract In this paper we explain the basics of Bitcoin protocol and the state of the art of the main attacks to it. We first present an overview of digital currencies, showing what they are and the social need they aim to satisfy. We then focus on the main digital currency up to date, Bitcoin. We treat the basics of the protocol showing what are addresses and transactions and how they are used in a distributed consensus protocol to build the blockchain. After that the main part of this paper presents the state of the art of the three main attacks on the protocol: fraudulent mining techniques, double spending attempts and deanonymization attacks. Keywords: Blockchain; Bitcoin; Deanonymization; Fraudulent Mining; Double Spend- ing 1 Introduction Internet changed our society starting the so called \digital revolution". Almost every in- dividual now can directly connect to any other on the globe allowing for a point-to-point information exchange or, particularly, commercial interaction. But still, for most users, a direct point-to-point value exchange (payment) is not possible, and a third party financial intermediary is required. Entrusting a third party with user funds weakens the user control and spending freedom, limiting it to have commercial interactions only with parties recog- nized by the entity.
    [Show full text]
  • What Is the Distinction Between a Blockchain and a Distributed Ledger?
    Blockchain Byte R3 Research Emily Rutland The Blockchain Byte features a question from the distributed ledger space What is the distinction between a blockchain and a distributed ledger? Blockchain has a While often used interchangeably, a blockchain and a shared and replicated distributed ledger are distinct – though subtly different – technologies. ledger comprised of information stored in A distributed ledger is a record of consensus with a “blocks” and sits below cryptographic audit trail which is maintained and validated by several separate nodes*. This a distributed ledger cryptographically assured and synchronized data can be and acts as a way to spread across multiple institutions. Distributed ledgers can verify transactions be either decentralized, granting equal rights within the submitted by protocol to all participants or centralized, designating producing a new certain users particular rights. Actors typically employ “block” to the chain. distributed ledgers when they need a tool which permits the concurrent editing of a shared state while maintaining its unicity. The ledger’s state is determined through a Distributed ledger is a consensus algorithm, which can vary in its mechanics but record of consensus ultimately serves to validate information from inputs to the with cryptographic network. audit trail maintained and validated by nodes. It can be decentralized or centralized. For more Blockchain Byte posts, R3 members visit: 2 https://r3-cev.atlassian.net/wiki/x/HgEwAw What are Blocks and Why Aren’t They Necessary? Often described as the technology that underpins the Bitcoin network, a blockchain data structure has a shared, replicated ledger comprised of digitally recorded and unchangeable data in packages called blocks.
    [Show full text]