Paper 2024/1299

Permissionless Verifiable Information Dispersal (Data Availability for Bitcoin Rollups)

Ben Fisch, Yale University
Arthur Lazzaretti, Yale University
Zeyu Liu, Yale University
Lei Yang, Massachusetts Institute of Technology
Abstract

Rollups are special applications on distributed state machines (aka blockchains) for which the underlying state machine only logs, but does not execute transactions. Rollups have become a popular way to scale applications on Ethereum and there is now growing interest in running rollups on Bitcoin. Rollups scale throughput and reduce transaction costs by using auxiliary machines that have higher throughput and lower cost of executing transactions than the underlying blockchain. State updates are periodically posted to the underlying blockchain and either verified directly through succinct cryptographic proofs (zk rollups) or can be challenged for a defined period of time in a verifiable way by third parties (optimistic rollups). However, once computation is removed as a bottleneck, communication quickly becomes the new bottleneck. The critical service the underlying blockchain provides in addition to verification is data availability: that necessary data can always be recovered upon request. While broadcasting transaction data is one way to ensure this, it requires communication blowup linear in the number of participating nodes. Verifiable information dispersal (VID) systems achieve sublinear blowup in the same participation model and the same security assumptions as Ethereum, where all nodes have a strong public-key identity. It was not known how to do so in the same permissionless model as Bitcoin, where participants are unauthenticated and participation is dynamic. We construct a VID system that is secure under the same model as Bitcoin, with one minimal additional requirement on the existence of reliable participants. Our system uses a state machine replication (SMR) protocol (e.g., Bitcoin) as a black box, and is therefore backward compatible. We implemented the system on top of Bitcoin core with the Regression Test Network (regtest), and our analysis shows that it reduces communication costs by more than 1,000x and latency by more than 10x.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
Permissionless blockchainRollups
Contact author(s)
benjamin fisch @ yale edu
arthur lazzaretti @ yale edu
zeyu liu @ yale edu
leiy @ csail mit edu
History
2024-08-20: approved
2024-08-20: received
See all versions
Short URL
https://ia.cr/2024/1299
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2024/1299,
      author = {Ben Fisch and Arthur Lazzaretti and Zeyu Liu and Lei Yang},
      title = {Permissionless Verifiable Information Dispersal (Data Availability for Bitcoin Rollups)},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1299},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1299}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.