Judmayer, Aljosha;
Stifter, Nicholas;
Zamyatin, Alexei;
Tsabary, Itay;
Eyal, Ittay;
Gazi, Peter;
Meiklejohn, Sarah;
(2021)
Pay to Win: Cheap, Cross-Chain Bribing Attacks on PoW Cryptocurrencies.
In: Bernhard, M and Bracciali, A and Gudgeon, L and Haines, T and KlagesMundt, A and Matsuo, S and Perez, D and Sala, M and Werner, S, (eds.)
Financial Cryptography and Data Security. FC 2021 International Workshops.
(pp. pp. 533-549).
Springer Nature
Preview |
Text
wtsc21b.pdf - Accepted Version Download (438kB) | Preview |
Abstract
In this paper we extend the attack landscape of bribing attacks on cryptocurrencies by presenting a new method, which we call Pay-To-Win (P2W). To the best of our knowledge, it is the first approach capable of facilitating double-spend collusion across different blockchains. Moreover, our technique can also be used to specifically incentivize transaction exclusion or (re)ordering. For our construction we rely on smart contracts to render the payment and receipt of bribes trustless for the briber as well as the bribee. Attacks using our approach are operated and financed out-of-band i.e., on a funding cryptocurrency, while the consequences are induced in a different target cryptocurrency. Hereby, the main requirement is that smart contracts on the funding cryptocurrency are able to verify consensus rules of the target. For a concrete instantiation of our P2W method, we choose Bitcoin as a target and Ethereum as a funding cryptocurrency. Our P2W method is designed in a way that reimburses collaborators even in the case of an unsuccessful attack. Interestingly, this actually renders our approach approximately one order of magnitude cheaper than comparable bribing techniques (e.g., the whale attack). We demonstrate the technical feasibility of P2W attacks through publishing all relevant artifacts of this paper, ranging from calculations of success probabilities to a fully functional proof-of-concept implementation, consisting of an Ethereum smart contract and a Python client.
| Type: | Proceedings paper |
|---|---|
| Title: | Pay to Win: Cheap, Cross-Chain Bribing Attacks on PoW Cryptocurrencies |
| Event: | Financial Cryptography and Data Security. FC 2021 International Workshops |
| Dates: | 5 March 2021 |
| ISBN-13: | 978-3-662-63957-3 |
| Open access status: | An open access version is available from UCL Discovery |
| DOI: | 10.1007/978-3-662-63958-0_39 |
| Publisher version: | https://doi.org/10.1007/978-3-662-63958-0_39 |
| Language: | English |
| Additional information: | This version is the author accepted manuscript. For information on re-use, please refer to the publisher's terms and conditions. |
| UCL classification: | UCL UCL > Provost and Vice Provost Offices > UCL BEAMS UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science |
| URI: | https://discovery.ucl.ac.uk/id/eprint/10206712 |
Archive Staff Only
 |
View Item |
