Byzantine fault-tolerant (BFT) protocols allow a group of replicas to come to consensus even when some of the replicas are Byzantine faulty. There exist multiple BFT protocols to securely tolerate an optimal number of faults $t$ under different network settings. However, if the number of faults $f$ exceeds $t$ then security could be violated. Motivated by blockchain applications, we systematically study the forensic support of BFT protocols: we aim to identify (with cryptographic integrity) as many of the malicious replicas as possible, by as many participating replicas as possible and in as distributed manner as possible. Our main (positive) result is that well-known BFT protocols such as PBFT, HotStuff, and VABA have strong forensic support; we show that when $f$ exceeds $t$, at least $t+1$ of culpable replicas can be identified by at least $2t+1-f$ honest replicas. On the other hand, when $t$ is as much as half the number of replicas (e.g. in a synchronous network), then all but one of the malicious replicas must go undetected; this impossibility result holds for all BFT protocols and even if one has access to the states of all replicas (including Byzantine ones).
翻译:拜占庭过错协议允许一组复制品达成共识,即使有些复制品是拜占庭错误的。 存在多个BFT协议,可以在不同网络设置下安全地容忍最优数目的故障。 但是,如果故障数量超过美元美元,那么安全就会受到侵犯。 我们系统地研究对BFT协议的法证支持: 我们的目标是尽可能多地查明(有加密完整性的)恶意复制品,尽可能多地参与复制品,并尽可能多地以分布方式进行。 我们的主要(积极)结果是众所周知的BFT协议,如PBFT、HotStuff和VABA获得有力的法证支持; 我们显示,当美元超过美元时,至少是美元+1美元,可塑像的至少可以由至少2美元+1美元的所有诚实复制品来识别。 另一方面, 当美元是至少一半的复制品, 但要全部复制品的复制品网络必须保持同步(如果复制品的所有复制品都具有这种同步性,则所有复制品的复制品网络必须具有同步性( ) 。
相关内容
微信扫码咨询专知VIP会员