• Keine Ergebnisse gefunden

On Offline Payments with Bitcoin (Poster Abstract)

N/A
N/A
Info
Herunterladen
Protected

Academic year: 2022

Aktie "On Offline Payments with Bitcoin (Poster Abstract)"

Copied!
2
0
0

Wird geladen.... (Jetzt Volltext ansehen)

Jetzt herunterladen ( 2 Seite )

Volltext

(1)

On Offline Payments with Bitcoin (Poster Abstract)

Alexandra Dmitrienko1, David Noack2, Ahmad-Reza Sadeghi2, and Moti Yung3

1 Fraunhofer SIT/CASEDalexandra.dmitrienko@sit.fraunhofer.de

2 TU Darmstadt/CASED{ahmad.sadeghi,david.noack}@trust.cased.de

3 Googlemoti@cs.columbia.edu

Bitcoin [2] is a decentralized digital currency which relies neither on banks nor on any other central authority for issuing of coins or transaction verification.

Currently, Bitcoin experiences enormous success driven by large interest from users, politics, but also by speculation. Particularly, despite being conjured to be a giant bubble, the value of a bitcoin4increased from USD $5 in May 2012 to temporarily over USD $1,200 in December, and fluctuating between USD 500$

and USD 800$ since then. According to coinmap.org, as of February 2014 there are at least over 3000 shops, hotels, bars or even medical practices worldwide that accept local Bitcoin payments. This is an increase of 2000 locations over the last 3 month and not including online-shops or online-services5.

The two most important challenges of digital cash, explicit and undeniable ownership of coins and double-spending prevention, are addressed in Bitcoin by means of asymmetric cryptography and a distributed time-stamping service based on proof-of-work (PoW). Users of the Bitcoin network own addresses in form of asymmetric key pairs. To spend bitcoins, a user issues a transaction that, amongst others, includes a signature of the sender, the amount and the ad- dress (public key) of the receiver. All transactions are committed to the Bitcoin network and recorded in a public transaction history known as the blockchain.

Building the blockchain requires solving cryptographic puzzles which is com- putationally hard to perform, but easy to verify. Special Bitcoin clients, called miners, are working on integration of new transactions into the blockchain, and get awarded with bitcoins as soon as they discover a new valid block. Regular Bitcoin clients can track the transaction history to ensure that the bitcoin they are going to receive has never been spent before.

An important characteristic of the Bitcoin system is that clients requireon- line accessto the blockchain for a certain amount oftimeto be able to verify any transaction. However, these requirements render Bitcoin not suitable for offline payment scenarios, where neither the sender nor the receiver have connection to the Bitcoin network. Furthermore, immediate payments with Bitcoin, where transactions have to be accepted or rejected immediately, are insecure [1] even in online settings.

4 As usual we use capitalized Bitcoin to denote the system and lowercase bitcoin to refer to monetary currency.

5 https://en.bitcoin.it/wiki/Trade

(2)

2

In this work we aim to overcome these shortcomings and extend the existing Bitcoin system. Particularly, we propose a solution which allows foroffline and immediate secure payments with Bitcoin. We rely on a trusted wallet, a trusted resource-constrained platform component which cannot be tampered with and controls usage of private keys of corresponding Bitcoin addresses. It prevents the user from spending a single coin twice, rendering double-spending attacks impossible by design. However, using trusted wallet is not sufficient to enable secure offline payments. This is because any input to the trusted wallet can be manipulated and due to resource constrains of typical wallet environments, which makes transaction verification challenging. For instance, these constraints render full blockchain validation within the wallet environment infeasible, as downloading and verification the whole blockchain takes days even on resource- rich platforms such as PCs6.

To address these challenges, we design a lightweight transaction verification mechanism. Our solution exploits the fact that valid transactions and their con- firmations expose a unique signature consisting of the computational effort and time required to generate them that only the Bitcoin network can achieve, but unlikely the adversary. We provide a thorough security and risk analysis of our solution and suggest concrete security parameters for a reasonable trade-off be- tween adversary model and efficiency. Moreover, we eliminate small remaining risks of attacks by introducing an additional security parameter which limits transaction amounts to keep them smaller than costs of potential attacks. We then perform rigorous analysis of associated attack costs and show that a rea- sonable transaction limit lies in a range of thousands of dollars (per transac- tion), which is sufficient to satisfy most payment scenarios. Further, if larger transactions are required, they can be split into several smaller transactions, transparently to the user.

We prototyped our solution for mobile Android clients and utilized a microSD security card as a wallet environment. Our performance analysis demonstrates the feasibility of our approach in practice. Furthermore, our extension is com- patible to the original Bitcoin system which makes our solution suitable for immediate deployment.

References

1. G. O. Karame, E. Androulaki, and S. Capkun. Double-spending fast payments in Bitcoin.Proceedings of the 2012 ACM conference on Computer and communications security, 2012.

2. S. Nakamoto. Bitcoin: A peer-to-peer electronic cash system. Technical Report, 2008. http://www.vsewiki.cz/images/archive/8/89/20110124151146!Bitcoin.pdf.

6 http://bitcoin.stackexchange.com/questions/9816/how-long-does-it-take-to- download-the-blockchain-its-been-over-a-day-and-still

Referenzen

Jetzt herunterladen ( PDF - 2 Seite - 119.51 KB )

ÄHNLICHE DOKUMENTE

A survey on approaches to anonymity in bitcoin and other cryptocurrencies

Assuming that all inputs of a transaction belong to the same user, they then contract the graph nodes of U by merging addresses that appear in the inputs of a single

Trusted Timestamping using the Crypto Currency Bitcoin

Crypto currencies can serve as decentralized trusted timestamping services if hash values of digital data are embedded into the transactions recorded in the block chain of the

Blockchain as an enabling technology in the COVID‑19 pandemic: a systematic review

The others 11 papers were represented by Case Study, as the studies from [1] that examined the viability of using blockchain technology in a public distribution system (PDS)

The Equilibrium Value of Bitcoin

Both can be applied because the Bitcoin protocol is designed according to assumption 10, which guarantees that there exists a pre- equilibrium with η > 0 and ζ > 0, in which

Does the hashrate affect the bitcoin price?

In this paper, we examine the relationship between the hashrate (or the bitcoin cost-of-production price) and the market price, and we try to reconcile the previous

Factors influencing the intention to use cryptocurrency payments: An examination of blockchain economy

Based on the Technology acceptance model (TAM) several factor in relation to block chain technology and cryptocurrency adoption were identified: Perceived Risk (viability,

Bitcoin: Future transaction currency?

The Bitcoin system maintains a global, distributed cryptographic ledger of transactions, or blockchain, through a consensus algorithm running on hardware scattered across the

Discerning the relationship between bitcoin and islamic index

The variable that is used to represent bitcoin is the price of bitcoin whereas Islamic index is cited by financial reporting indices, namely MSCI World Islamic