TY - GEN
T1 - Practical Settlement Bounds for Proof-of-Work Blockchains
AU - Gazi, Peter
AU - Ren, Ling
AU - Russell, Alexander
N1 - Funding Information:
Acknowledgements. This research was supported in part by the National Science Foundation Grants 1801487 and 2143058.
Publisher Copyright:
© 2022 Owner/Author.
PY - 2022/11/7
Y1 - 2022/11/7
N2 - Nakamoto proof-of-work ledger consensus currently underlies the majority of deployed cryptocurrencies and smart-contract blockchains. While a long and fruitful line of work has succeeded to identify its exact security region-that is, the set of parametrizations under which it possesses asymptotic security-the existing theory does not provide concrete settlement time guarantees that are tight enough to inform practice. In this work we provide a new approach for obtaining concrete and practical settlement time guarantees suitable for reasoning about deployed systems. We give an efficient method for computing explicit upper bounds on settlement time as a function of primary system parameters: honest and adversarial computational power and a bound on network delays. We implement this computational method and provide a comprehensive sample of concrete bounds for several settings of interest. We also analyze a well-known attack strategy to provide lower bounds on the settlement times. For Bitcoin, for example, our upper and lower bounds are within 90 seconds of each other for 1-hour settlement assuming 10 second network delays and a 10% adversary. In comparison, the best prior result has a gap of 2 hours in the upper and lower bounds with the same parameters.
AB - Nakamoto proof-of-work ledger consensus currently underlies the majority of deployed cryptocurrencies and smart-contract blockchains. While a long and fruitful line of work has succeeded to identify its exact security region-that is, the set of parametrizations under which it possesses asymptotic security-the existing theory does not provide concrete settlement time guarantees that are tight enough to inform practice. In this work we provide a new approach for obtaining concrete and practical settlement time guarantees suitable for reasoning about deployed systems. We give an efficient method for computing explicit upper bounds on settlement time as a function of primary system parameters: honest and adversarial computational power and a bound on network delays. We implement this computational method and provide a comprehensive sample of concrete bounds for several settings of interest. We also analyze a well-known attack strategy to provide lower bounds on the settlement times. For Bitcoin, for example, our upper and lower bounds are within 90 seconds of each other for 1-hour settlement assuming 10 second network delays and a 10% adversary. In comparison, the best prior result has a gap of 2 hours in the upper and lower bounds with the same parameters.
KW - bitcoin
KW - blockchains
KW - proof of work
UR - http://www.scopus.com/inward/record.url?scp=85143068690&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85143068690&partnerID=8YFLogxK
U2 - 10.1145/3548606.3559368
DO - 10.1145/3548606.3559368
M3 - Conference contribution
AN - SCOPUS:85143068690
T3 - Proceedings of the ACM Conference on Computer and Communications Security
SP - 1217
EP - 1230
BT - CCS 2022 - Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security
PB - Association for Computing Machinery
T2 - 28th ACM SIGSAC Conference on Computer and Communications Security, CCS 2022
Y2 - 7 November 2022 through 11 November 2022
ER -