Paper 2021/1413

Three Attacks on Proof-of-Stake Ethereum

Caspar Schwarz-Schilling, Joachim Neu, Barnabé Monnot, Aditya Asgaonkar, Ertem Nusret Tas, and David Tse

Abstract

Recently, two attacks were presented against Proof-of-Stake (PoS) Ethereum: one where short-range reorganizations of the underlying consensus chain are used to increase individual validators' profits and delay consensus decisions, and one where adversarial network delay is leveraged to stall consensus decisions indefinitely. We provide refined variants of these attacks, considerably relaxing the requirements on adversarial stake and network timing, and thus rendering the attacks more severe. Combining techniques from both refined attacks, we obtain a third attack which allows an adversary with vanishingly small fraction of stake and no control over network message propagation (assuming instead probabilistic message propagation) to cause even long-range consensus chain reorganizations. Honest-but-rational or ideologically motivated validators could use this attack to increase their profits or stall the protocol, threatening incentive alignment and security of PoS Ethereum. The attack can also lead to destabilization of consensus from congestion in vote processing.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Preprint. Minor revision.
Keywords
Ethereumattackproof-of-stake
Contact author(s)
caspar schwarz-schilling @ ethereum org
jneu @ stanford edu
History
2021-10-24: received
Short URL
https://ia.cr/2021/1413
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/1413,
      author = {Caspar Schwarz-Schilling and Joachim Neu and Barnabé Monnot and Aditya Asgaonkar and Ertem Nusret Tas and David Tse},
      title = {Three Attacks on Proof-of-Stake Ethereum},
      howpublished = {Cryptology ePrint Archive, Paper 2021/1413},
      year = {2021},
      note = {\url{https://eprint.iacr.org/2021/1413}},
      url = {https://eprint.iacr.org/2021/1413}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.