blockchain: applicaons, security promises and internals · 2020. 4. 8. · cyber security &...
TRANSCRIPT
![Page 1: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/1.jpg)
Blockchain:Applica.ons,SecurityPromisesandInternals
CyberSecurity&Informa3onSystemsInforma3onAnalysisCenter(CSIAC)
Dr.Yuzhe(Richard)TangDepartmentofEECS,SyracuseUniversity
Dec.19,2017
![Page 2: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/2.jpg)
Outline
1. Introduc+on
2. Blockchainapplica.onsandinterfaces
3. Blockchainsecuritypromises
4. Blockchaininternals(abrief)
12/19/17 YuzheTang,SyracuseUniv. 2
![Page 3: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/3.jpg)
1.Introduc.on• Cryptocurrency:– “Acryptocurrencyisadigitalassetdesignedtoworkasamediumofexchangethatusescryptographytosecureitstransac.ons,tocontrolthecrea.onofaddi.onalunits,andtoverifythetransferofassets.”(wiki)
– BitCoin,Etheruem,Litcoin,etc.
12/19/17 YuzheTang,SyracuseUniv. 3
![Page 4: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/4.jpg)
1.Introduc.on
• HowtocomparetheconceptofBitCoinwithfiatcurrency(e.g.USdollar)?
12/19/17 YuzheTang,SyracuseUniv. 4
![Page 5: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/5.jpg)
What’sSimilaraboutBitcointoUSDollar
Reviewofgov-issued(fiat)currency• Workflow– Moneycreatedbyamint– Moneycirculatedamongownersthru.transac+ons.– BitCoinsupportsthesameworkflow
12/19/17 YuzheTang,SyracuseUniv. 5
![Page 6: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/6.jpg)
What’sSimilaraboutBitcointoUSDollar
Reviewofgov-issued(fiat)currency• Threat1:Printfakemoney– Dollarbillsaresecuredbyan.-counterfeit– US.mintissafeguarded– Bitcoinhastodefendthisthreat
• Threat2:Doublespending(digitalcurrency)– Visa’sledgerdatabasevalidatestransac.ons– BitCoinhastopreventdouble-spending
12/19/17 YuzheTang,SyracuseUniv. 6
![Page 7: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/7.jpg)
What’sSimilaraboutBitcointoUSDollar
Reviewofgov-issued(fiat)currency• Threat1:Printfakemoney– Dollarbillsaresecuredbyan.-counterfeit– US.mintissafeguarded– Bitcoinhastodefendthisthreat
• Threat2:Doublespending(digitalcurrency)– Visa’sledgerdatabasevalidatestransac.ons– BitCoinhastopreventdouble-spending
12/19/17 YuzheTang,SyracuseUniv. 7
![Page 8: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/8.jpg)
IssueswithUSDollar
• Usingdollarbills,youimplicitlytrust– Government,mint,credit-cardorg.(Visa)– Thesearetrustedcentralauthori+es
• Aretheytrustworthy?– Youmaynotwantgov.towithdrawatxacerit’ssedled.– Youmaynotwantgov.tofreezeyouraccount– Youmaynotwantgov.toinflatethecurrencyanddepreciateyoursavings:Zimbabwe
12/19/17 8
![Page 9: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/9.jpg)
Mo.va.ngBitCoin(What’suniqueaboutBitCoin)
• Getridofcentralauthori.esbydecentraliza+on– NoneedtotrustgovernmentandVisa– Insteadtrusttheen.repopula.onontheplanet
• Maketransac.onhistorypublic(Transparency)– Transparencyinvitestrust
• Automatetheprocesswithincen+ve-compa+bility– Automa.onlowerscost(transac.onfee)
12/19/17 YuzheTang,SyracuseUniv. 9
![Page 10: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/10.jpg)
• BitcointxhistoryisrecordedinBlockchain– BlockchainistheledgerforBitcoin
BitCoinandBlockchain
12/19/17 YuzheTang,SyracuseUniv. 10
![Page 11: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/11.jpg)
Outline
1. Introduc.on
2. Blockchainapplica+onsandinterfaces
3. Blockchainsecuritypromises
4. Blockchaininternals(abrief)
12/19/17 YuzheTang,SyracuseUniv. 11
![Page 12: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/12.jpg)
• GetyourfirstBitCoin– Exchangeservices:Coinbase,Coindesk,etc.
• UsingBitCointosellandbuystuff(transac.on)• Orsellit.llthepricegrowshigher
Scenario1:DoingTransac.ons
12/19/17 YuzheTang,SyracuseUniv. 12
![Page 13: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/13.jpg)
Scenario2:Mining
• AnotherwaytogetBitCoin:Mining– Getthemoneyanonymously
• Youcanpurchasehardwaretodosome(non-sense)computa.ons– Withsomeprobability,yourcomputa.onwillberewardedinBitCoin
– Theprobabilitydependsonhowpowerfulyourhardwareis
12/19/17 YuzheTang,SyracuseUniv. 13
![Page 14: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/14.jpg)
Scenario2:Mining
• Interestedinmining?– Howmuchisyourbudget?
• Constantcapital:buymachines,Variablecapital:electricityconsump.on
– Whoyouareupagainst(inwinningthereward)?• State-levelminers,bitcoinfarm,datacenters
12/19/17 YuzheTang,SyracuseUniv. 14
![Page 15: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/15.jpg)
Scenario3:DevelopApplica.ons
• DistributedappoverBlockchain(Dapp)– FinTech:Insurance,trade,riskmanagement,accoun.ng,etc.• Examples:ERP,micro-payments,wallet,currencyexchange,etc.
– Otherdomains:Legal,medical/healthcare,IT,science/research,etc.
• “Blockchainissettodisruptmanyindustries”
12/19/17 YuzheTang,SyracuseUniv. 15
![Page 16: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/16.jpg)
Scenario3:DevelopApplica.ons
• Dapparchitecture:On-chain/off-chain– On-chaindata:“Transac.ons”ormeta-data– Off-chaindata:someprivatedata(e.g.keys)
• Interac.ngBlockchainthru.transac.onAPI:– send_tx(sender,receiver,money#,memo)– Likewri.ngapersonalcheck
12/19/17 YuzheTang,SyracuseUniv. 16
![Page 17: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/17.jpg)
Scenario3:DevelopApplica.ons
• Designissues– Par..oningapplica.onlogictosuiton-/off-chain– Designingincen.veschemes(whattorewardmining?)
– Dealingwiththelimita.onofBlockchain(e.g.deferredfinality)
• BuildingaBitCoinwalletDapp– DeveloperworkingforCoinBase
12/19/17 YuzheTang,SyracuseUniv. 17
![Page 18: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/18.jpg)
Outline
1. Introduc.on
2. Blockchainapplica.onsandinterfaces
3. Blockchainsecuritypromises
4. Blockchaininternals(abrief)
12/19/17 YuzheTang,SyracuseUniv. 18
![Page 19: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/19.jpg)
Security:ImmutableStorage
• Blockchainabstrac.onastxstorage– Readabletothepublic(transparency)– Appendablebyhonestminers– Cannotbemodified(immutability)
• Buildingatrusted.mestampserviceforlegaldocuments(signingcontract,applyingpatentetc)
12/19/17 YuzheTang,SyracuseUniv. 19
![Page 20: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/20.jpg)
Security:NoDoubleSpending
• Nodouble-spending(An.-counterfeit)
• Smartproperty– Smart.cket:UseBitCointorepresentbaseball.ckets.
12/19/17 YuzheTang,SyracuseUniv. 20
![Page 21: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/21.jpg)
Security:UnstoppableExecu.on• Programminglang.onBlockchain:Smartcontract– Smart-contractprogramisanobj.runningonBlockchain
– SolidityinEthereum• Securityproper.es:– Autonomouslyexecuted,unstoppable– Transac.onfairness:• IfIpaidyou,tobefair,Ineedtoreceiveyourgoods.
12/19/17 YuzheTang,SyracuseUniv. 21
![Page 22: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/22.jpg)
Security:UnstoppableExecu.on• Smart-contractapplica.ons:– ImplementIFTTTlogicthatdecideshowtosendtx
• Astock-exchangeapplica.on– Alicewilltrade10sharesfor$10,000whenthestockpriceisbelow$1000.
Acknowledge:Prof.AriJuels12/19/17 YuzheTang,SyracuseUniv. 22
![Page 23: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/23.jpg)
Outline
1. Introduc.on
2. Blockchainapplica.onsandinterfaces
3. Blockchainsecuritypromises
4. Blockchaininternals(abrief)
12/19/17 YuzheTang,SyracuseUniv. 23
![Page 24: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/24.jpg)
Blockchaininternals
1. Blockchain:Immutabletxstorage
2. Blockchainconsensus:– Howtoaddtransac.onto
Blockchaininadecentralizedway?
12/19/17 YuzheTang,SyracuseUniv. 24
![Page 25: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/25.jpg)
Blockchain:ImmutableTxStorage
• Createmoney– coinX=mint.CreateCoin()bybkc_as_mint.signmint_skey(“CoinXiscreated”)
• Circulatemoneybytransac.ons– alice.PayCoin(bob,coinX)bytx=alice.signalice_skey(“CoinXispaidtoBobbob_pkey”)bkc_as_visa.validate(tx)
– Txrepresenta.on• Howtorepresentcoins,owneriden.ty,ownership(bindingbtwncoinandiden.ty)?
12/19/17 YuzheTang,SyracuseUniv. 25
![Page 26: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/26.jpg)
Blockchain:ImmutableTxStorage
• Hashpointer:Represen.ngcoinsinatx– Bob’scoinspentinatxisthetx’shashpointerpoin.ngtoapriortxwhereBobreceivesthecoin.
• Hashchainoftransac.ons
• Blockchainoftransac.ons
12/19/17 YuzheTang,SyracuseUniv. 26
![Page 27: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/27.jpg)
Consensus
• Transac.on-addworkflow– Valida.on,Append
• Consensusmechanisms– Randomiza.on– PoWmining– Asmint:Incen.ve-compa.bility– Bootstrapthetrust
12/19/17 YuzheTang,SyracuseUniv. 27
![Page 28: Blockchain: Applicaons, Security Promises and Internals · 2020. 4. 8. · Cyber Security & Informa3on Systems Informa3on Analysis Center (CSIAC) Dr. Yuzhe (Richard) Tang Department](https://reader035.vdocument.in/reader035/viewer/2022071106/5fe0f7eda9434775cc7485d4/html5/thumbnails/28.jpg)
Q/A
Contact: Yuzhe (Richard) Tang Assistant Professor Dept. of EECS Syracuse University [email protected] ecs.syr.edu/faculty/yuzhe
Thankyou!
28