Skip to main content

Research Repository

Advanced Search

Security properties of light clients on the ethereum blockchain

Paavolainen, Santeri; Carr, Christopher

Security properties of light clients on the ethereum blockchain Thumbnail


Authors

Santeri Paavolainen

Profile image of Chris Carr

Dr. Chris Carr Chris.Carr@uwe.ac.uk
Occasional Associate Lecturer - CBAL - AEF



Abstract

Ethereum is a decentralized blockchain, known as being the second most popular public blockchain after Bitcoin. Since Ethereum is decentralised the canonical state is determined by the Ethereum network participants via a consensus mechanism without a centralized coordinator. The network participants are required to evaluate every transaction starting from the genesis block, which requires a large amount of network, computing, and storage resources. This is impractical for many devices with either limited computing resources or intermittent network connectivity. To overcome this drawback Ethereum defines a light client protocol where the light client fetches the blockchain state from a node operating as a light protocol server. Light clients are unable to maintain blockchain state internally, and as a consequence can only perform partial validation on blocks. Thus they rely on the light server for full block validation and to provide the updated blockchain state. Light clients connect to multiple light servers to mitigate the risk of relying on a single potentially dishonest server. Ethereum light clients are known to suffer from a probabilistic security model, but they are widely assumed to be secure under normal operating conditions. In fact, the implicit security assumptions of light clients have not been formally characterised in the literature. We present and analyse the probabilistic security guarantees under three different adversarial scenarios. The results show that for any adversary that is able to manipulate the network, the security assurances provided by the light protocol are severely impacted, and in some cases entirely lost. These results clearly demonstrate that the assumption of normal operating conditions is insufficient to justify the security assumptions of light clients. Our work also provides insight to the security of light clients under different security parameters, allowing light client implementers to more accurately understand the potential security trade-offs.

Journal Article Type Article
Acceptance Date Jun 21, 2020
Online Publication Date Jun 30, 2020
Publication Date Jun 30, 2020
Deposit Date Sep 29, 2020
Publicly Available Date Oct 8, 2020
Journal IEEE Access
Electronic ISSN 2169-3536
Publisher Institute of Electrical and Electronics Engineers (IEEE)
Peer Reviewed Peer Reviewed
Volume 8
Pages 124339-124358
DOI https://doi.org/10.1109/access.2020.3006113
Keywords General Engineering; General Materials Science; General Computer Science
Public URL https://uwe-repository.worktribe.com/output/6134116

Files







You might also like



Downloadable Citations