区块链多矿池恶意攻击模型研究

doi:10.3778/j.issn.1673-9418.2111107

摘要/Abstract

摘要： 区块链中针对交易的双花攻击是区块链安全的研究重点，矿池作为大的算力集合有潜在的作恶行为，其中多个矿池结合起来可通过不同攻击形式对交易进行双花攻击，给区块链带来巨大的安全隐患。基于多矿池的恶意攻击组合方式，提出两种多矿池恶意攻击模型。首先，在多矿池集中攻击模型中，多个矿池算力聚合为一个恶意算力集，集中对区块链双花攻击。其次，多矿池分散攻击模型中，每个矿池为独立恶意算力集，分散同步对区块链算力攻击；此外结合矿池数量、算力占比等参量，模拟推导两种多矿池模型内部运行机制；基于该机制，构建两种攻击模型的安全性约束。实验验证了两种矿池攻击模型的有效性，数据化呈现两种多矿池攻击模型异同以及攻击规律。最后，结合理论模型和实验结果分析给出防控策略。

关键词: 区块链安全, 多矿池集中攻击模型, 多矿池分散攻击模型, 安全性约束, 矿池安全防控

Abstract: The double-spending attack against transactions in the blockchain is the focus of blockchain security research. As a large collection of computing power, mining pools are potential for malicious behavior, and the combination of multiple mining pools can double-spend transactions through different attack forms, which brings huge security risks to the blockchain. Based on the combination of malicious attacks in multiple mining pools, this paper proposes two malicious attack models in multiple mining pools. Firstly, in the multi-mining pool centralized attack model, the computing power of multiple mining pools is aggregated into a malicious computing power set, which focuses on double-spending attacks on the blockchain. Secondly, in the multi-mining pool decentralized attack model, each mining pool is independent malicious computing power set, and the malicious computing power is distributed and synchronized among the blockchain computing power attacks. In addition, combining the number of mining pools, the percentage of computing power and other parameters, the internal operating mechanism of two multi-mining pool models is simulated and derived. Based on this mechanism, the security constraints of the two attack models are constructed. The experiment verifies the effectiveness of the two mining pool attack models, and digitization shows the attack laws in two multi-mining pool attack models, as well as the similarities and differences between the two models. Finally, combining with theoretical models and experimental results, this paper puts forward the prevention and control strategies.

Key words: blockchain security, multi-mining pool centralized attack model, multi-mining pool decentralized attack model, security constraint, mining pool security prevention and control

刘强, 宋宝燕, 纪婉婷, 王俊陆. 区块链多矿池恶意攻击模型研究[J]. 计算机科学与探索, 2023, 17(7): 1719-1728.

LIU Qiang, SONG Baoyan, JI Wanting, WANG Junlu. Research on Malicious Attack Model of Blockchain Multi-mining Pools[J]. Journal of Frontiers of Computer Science and Technology, 2023, 17(7): 1719-1728.

参考文献

[1] NAKAMOTO S. Bitcoin: a peer-to-peer electronic cash sys-tem[J]. Decentralized Business Review, 2008: 21260.
[2] 王群, 李馥娟, 王振力, 等. 区块链原理及关键技术[J]. 计算机科学与探索, 2020, 14(10): 1621-1643.
WANG Q, LI F J, WANG Z L, et al. Principle and core technology of blockchain[J]. Journal of Frontiers of Computer Science and Technology, 2020, 14(10): 1621-1643.
[3] AL-SAQAF W, SEIDLER N. Blockchain technology for social impact: opportunities and challenges ahead[J]. Journal of Cyber Policy, 2017, 2(3): 338-354.
[4] MUKKAMALA R R, VATRAPU R, RAY P K, et al. Blockchain for social business: principles and applications[J]. IEEE Engineering Management Review, 2018, 46(4): 94-99.
[5] 于戈, 聂铁铮, 李晓华, 等. 区块链系统中的分布式数据管理技术-挑战与展望[J]. 计算机学报, 2021, 44(1): 28-53.
YU G, NIE T Z, LI X H, et al. Distributed data management technology in blockchain system-challenges and prospects[J]. Chinese Journal of Computers, 2021, 44(1): 28-53.
[6] ZHANG C, WU C, WANG X. Overview of blockchain consensus mechanism[C]//Proceedings of the 2020 2nd International Conference on Big Data Engineering, Shanghai, May 29-31, 2020. New York: ACM, 2020: 7-12.
[7] TUSHAR W, SAHA T K, YUEN C, et al. Peer-to-peer trading in electricity networks: an overview[J]. IEEE Transactions on Smart Grid, 2020, 11(4): 3185-3200.
[8] GENCER A E, BASU S, EYAL I, et al. Decentralization in bitcoin and ethereum networks[C]//LNCS 10957：Proceedings of the 22nd International Conference on Financial Cryptography and Data Security, Nieuwpoort, 2018. Cham: Springer, 2018: 439-457.
[9] CHANG S Y, PARK Y. Silent timestamping for blockchain mining pool security[C]//Proceedings of the 2019 International Conference on Computing, Networking and Communications, Honolulu, Feb 18-21, 2019. Piscataway: IEEE, 2019: 1-5.
[10] RAHOUTI M, XIONG K, GHANI N. Bitcoin concepts, threats, and machine-learning security solutions[J]. IEEE Access, 2018, 6: 67189-67205.
[11] KOVALCHUK L, KAIDALOV D, NASTENKO A, et al. Decreasing security threshold against double spend attack in networks with slow synchronization[J]. Computer Communications, 2020, 154: 75-81.
[12] ZAGHLOUL E, LI T, MUTKA M W, et al. Bitcoin and block-chain: security and privacy[J]. IEEE Internet of Things Journal, 2020, 7(10): 10288-10313.
[13] LEE H, SHIN M, KIM K S, et al. Recipient-oriented transaction for preventing double spending attacks in private blockchain[C]//Proceedings of the 2018 15th Annual IEEE International Conference on Sensing, Communication, and Networking, Hong Kong, China, Jun 11-13, 2018. Piscataway: IEEE, 2018: 1-2.
[14] RAMEZAN G, LEUNG C S. An analysis of proof-of-work based blockchains under an adaptive double-spend attack[J]. IEEE Transactions on Industrial Informatics, 2020, 16(11): 7035-7045.
[15] ZHANG S J, LEE J H. Mitigations on sybil-based double-spend attacks in bitcoin[J]. IEEE Consumer Electronics Magazine, 2021, 10(5): 23-28.
[16] RAMEZAN G, LEUNG C, WANG Z J. A strong adaptive, strategic double-spending attack on blockchains[C]//Proce-edings of the 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData), Halifax, Jul 30-Aug 3, 2018. Piscataway: IEEE, 2018: 1219-1227.
[17] 邸剑, 吝伟华. 区块链中矿池选择策略的研究与分析[J]. 计算机应用研究, 2020, 37(6): 1804-1807.
DI J, WEI W H. Research and analysis of mining pool selection strategy in blockchain[J]. Application Research of Computers, 2020, 37(6): 1804-1807.
[18] 杨天, 薛质. 区块链系统中矿池间的博弈问题及优化[J]. 通信技术, 2019, 52(5): 1189-1195.
YANG T, XUE Z. The game problem and optimization between mining pools in the blockchain system[J]. Communication Technology, 2019, 52(5): 1189-1195.
[19] 高永琳, 程晓荣. 区块链中的自私挖掘研究与分析[J]. 计算机工程与应用, 2018, 54(15): 62-66.
GAO Y L, CHENG X R. Research and analysis of selfish mining in blockchain[J]. Computer Engineering and Applications, 2018, 54(15): 62-66.
[20] 范丽, 郑红, 黄建华, 等. 基于自适应零行列式策略的区块链矿池合作演化方法[J]. 计算机应用, 2019, 39(3): 302-307.
FAN L, ZHENG H, HUANG J H, et al. Blockchain mining pool cooperative evolution method based on adaptive zero determinant strategy[J]. Journal of Computer Applications, 2019, 39(3): 302-307.