Catena: Efficient Non-equivocation via Bitcoin

Tomescu, Alin; Devadas, Srinivas

doi:10.1109/sp.2017.19

Cited by 112 publications

(89 citation statements)

References 32 publications

(62 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Similarly, CloudProof [20] requires the untrusted server to attest to the operation log and relies on the trusted clients to audit the operation history for a variety of consistency models. Catena [23] is a unique Blockchain-based log attestation scheme, which prevents the server-forking attack by "abusing" the Blockchain security in no double-spending transactions.…”

Section: Preliminary: Secure Consistency Verification Protocolsmentioning

confidence: 99%

“…Attestation Auditing by Blockchain by Blockchain SUNDR [17], Caelus [16], CloudProof [20] ✗ ✗ Catena [23] ✓ ✗ ContractChecker ✓ ✓ 3 Research Formulation…”

Section: Solutionsmentioning

confidence: 99%

“…Blockchain write availability: The Blockchain may drop transactions based on its current load and transaction fee. A transaction with a higher fee will have a lower chance of being dropped [23] and have shorter latency to be included. This assumption will be tested in our evaluation.…”

Section: A Cloud Storage Servicementioning

confidence: 99%

“…1) Low client cost: By delegating log audit to the Blockchain, one can significantly relieve the burden from the clients. Existing consistency-verification protocols are based on client-side log auditing [23,25], which requires a client to persist not only her own operations but also operations of all other clients, limiting the system scalability. By delegating log auditing to the Blockchain, a client can be relieved from accessing other clients' operations, and can have a minimal overhead of receiving log-auditing results from the Blockchain.…”

Section: Design Motivationmentioning

confidence: 99%

“…Asserting the storage consistency in a client-server system entails two conceptual steps: W1) establishing a globally consistent view of operation log across clients (i.e., operation log attestation), and W2) auditing the log for checking consistency conditions (i.e., log auditing). To the best of our knowledge, all existing approaches including Caelus [16], CloudProof [20], and Catena [23], assume trusted clients and rely on them to audit the log.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Secure Consistency Verification for Untrusted Cloud Storage by Public Blockchains

Tang

Kim

et al. 2019

Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

View full text Add to dashboard Cite

This work presents ContractChecker, a Blockchain-based security protocol for verifying the storage consistency between mutually distrusting cloud provider and clients. Unlike existing protocols, the ContractChecker uniquely delegates log auditing to the Blockchain, and has the advantages in reducing client cost and lowering requirements on client availability, lending itself to modern scenarios with mobile and web clients. The ContractChecker collects the logs from both clients and cloud server, and verifies the consistency by cross-checking the logs. By this means, it does not only detect the attacks from malicious clients and server forging their logs, but also is able to mitigate those attacks and recover the system from them. In addition, we design new attacks against ContractChecker exploiting various limits in real Blockchain systems (e.g., write unavailability, Blockchain forks, contract race conditions). We analyze and harden the security of ContractChecker protocols under these proposed new attacks. We implement a functional prototype of the ContractChecker on Ethereum/Solidity. By experiments on private and public Ethereum testnets, we extensively evaluate the cost of the ContractChecker in comparison with that of existing client-based log auditing works. The result shows the ContractChecker can scale to hundreds of clients and save client costs by more than one order of magnitude. The evaluation result verifies our design motivation of delegating log auditing to the Blockchain in Con-tractChecker.More specifically, they make a single party attest to the log of operations (step W1) and send the attested log to individual clients, each of which audits the log against her local operations (W2). In particular, Catena [23] is a novel scheme that makes log attestation based on the Blockchain (W1 on Blockchain), yet still uses clients for log auditing (W2 by clients). These client-based log auditing schemes require high client availability (i.e., all clients have to participate in the protocol execution) and incur high client cost (i.e., a client needs to store the global operation log of all other clients), rendering them ill-suited for applications with a large number of low-end and stateless clients; see § 3.1 for a list of target applications.We propose ContractChecker, a secure Blockchain-based consistency verification protocol. Distinct from existing works, ContractChecker uniquely delegates both log attestation (W1) and log auditing (W2) to the Blockchain. Concretely, ContractChecker runs a program on the Blockchain (i.e., the so-called smart contracts) to collect log attestations from clients and the server and to audit the log there for making the consistency assertion. Comparing existing works, our approach, by delegating log auditing to Blockchain, has the advantage in lowering client availability requirement (i.e., only active clients who interact with the cloud are required to participate in the protocol) and in minimizing client overhead (i.e., a client only maintains her own operations for a li...

show abstract

Section: Preliminary: Secure Consistency Verification Protocolsmentioning

confidence: 99%

“…Attestation Auditing by Blockchain by Blockchain SUNDR [17], Caelus [16], CloudProof [20] ✗ ✗ Catena [23] ✓ ✗ ContractChecker ✓ ✓ 3 Research Formulation…”

Section: Solutionsmentioning

confidence: 99%

Section: A Cloud Storage Servicementioning

confidence: 99%

Section: Design Motivationmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Secure Consistency Verification for Untrusted Cloud Storage by Public Blockchains

Tang

Kim

et al. 2019

Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

View full text Add to dashboard Cite

show abstract

Contour: A Practical System for Binary Transparency

Al-Bassam

Meiklejohn

2018

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Transparency is crucial in security-critical applications that rely on authoritative information, as it provides a robust mechanism for holding these authorities accountable for their actions. A number of solutions have emerged in recent years that provide transparency in the setting of certificate issuance, and Bitcoin provides an example of how to enforce transparency in a financial setting. In this work we shift to a new setting, the distribution of software package binaries, and present a system for so-called "binary transparency. " Our solution, Contour, uses proactive methods for providing transparency, privacy, and availability, even in the face of persistent man-in-the-middle attacks. We also demonstrate, via benchmarks and a test deployment for the Debian software repository, that Contour is the only system for binary transparency that satisfies the efficiency and coordination requirements that would make it possible to deploy today.Full version of an extended abstract published in CBT 2018.

show abstract

On the Use of the Blockchain Technology in Electronic Voting Systems

Alves

Pinto

2018

Advances in Intelligent Systems and Computing

View full text Add to dashboard Cite

Catena: Efficient Non-equivocation via Bitcoin

Cited by 112 publications

References 32 publications

Secure Consistency Verification for Untrusted Cloud Storage by Public Blockchains

Secure Consistency Verification for Untrusted Cloud Storage by Public Blockchains

Contour: A Practical System for Binary Transparency

On the Use of the Blockchain Technology in Electronic Voting Systems

Contact Info

Product

Resources

About