文章来源
https://github.com/baozjian/Top-Blockchain-paper.
Usenix Security A
2019
BITE: Bitcoin Lightweight Client Privacy using Trusted Execution
Sinisa Matetic, Karl Wuest, Moritz Schneider, and Kari Kostiainen, ETH Zurich; Ghassan Karame, NEC Labs; Srdjan Capkun, ETH Zurich
论文地址
https://www.usenix.org/system/files/sec19fall_matetic_prepub.pdf.
使用可信执行的比特币轻量级客户隐私
- Abstract
Blockchains offer attractive advantages over traditional payments such as the ability to operate without a trusted authority and increased user privacy. However, the verification of blockchain payments requires the user to download and process the entire chain which can be infeasible for resourceconstrained devices like mobile phones. To address this problem, most major blockchain systems support so called lightweight clients that outsource most of the computational and storage burden to full blockchain nodes. However, such verification leaks critical information about clients’ transactions, thus defeating user privacy that is often considered one of the main goals of decentralized cryptocurrencies.
相对于传统支付而言,区块链具有吸引人的优势,例如无需受信任的权限即可操作的能力以及增加的用户隐私。 但是,区块链支付的验证要求用户下载并处理整个链,这对于资源受限的设备(如手机)而言是不可行的。 为了解决这个问题,大多数主要的区块链系统都支持所谓的轻量级客户端,这些客户端将大部分计算和存储负担外包给了完整的区块链节点。 但是,这种验证会泄漏有关客户交易的重要信息,从而破坏了用户隐私,而用户隐私通常被认为是分散式加密货币的主要目标之一。
In this paper, we propose a new approach to protect the privacy of light clients in Bitcoin. Our main idea is to leverage the trusted execution capabilities of commonly available SGX enclaves. We design and implement a system called BITE where enclaves on full nodes serve privacy preserving requests from light clients. However, as we will show, naive processing of client requests from within SGX enclaves still leaks client’s addresses and transactions. BITE therefore integrates several private information retrieval and side-channel protection techniques at critical parts of the system. We show that BITE provides significantly improved privacy protection for light clients without compromising the performance of the assisting full nodes.
在本文中,我们提出了一种新的方法来保护比特币中轻量级客户的隐私。 我们的主要思想是利用通用SGX enclaves的受信任执行功能。 我们设计并实现了一个称为BITE的系统,该系统中的完整节点上的安全区可满足轻客户端的隐私保护请求。 但是,正如我们将要显示的那样,SGX enclaves内对客户请求的幼稚处理仍然会泄漏客户的地址和交易。 因此,BITE在系统的关键部分集成了多种私有信息检索和侧信道保护技术。 我们表明,BITE为轻型客户端提供了显着改进的隐私保护,而不会影响辅助完整节点的性能。
SGX enclaves 介绍
https://www.4hou.com/web/12898.html
http://www.elecfans.com/blockchain/809141.html
-
目标:
Our goal is to improve the privacy of Bitcoin lightweight clients without compromising the performance of the assisting full nodes. -
解决Bitcoin lightweight clients隐私问题的现有技术
1、Simplified Payment Verification (SPV)
2、Improvement proposal BIP introduced Bloom filters that allow a light client to request a subset of all transactions to preserve some privacy without needing to download all transactions for each block. -
本文解决方案
提出一个一个BITE 系统
提供了两种相同方法的变体:
1、Scanning Window, can be seen as an extension to the current SPV verification mode, but without reliance on bloom filters.
2、Oblivious Database is a completely new verification mode for lightweight clients. -
BITE系统安全性分析的角度
1、External Leakage Protection
2、Side-channel Protection -
类比对象:spv
1、Processing cost (client request) 客户请求处理成本
2、Communication cost 通讯成本
3650
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
