Saat ini, hanya yang malas yang belum menulis tentang teknologi blockchain, cryptocurrency, dan betapa kerennya itu. Tetapi artikel ini tidak akan memuji teknologi ini, kami hanya akan berbicara tentang kekurangannya dan cara menghilangkannya.
, , . -. , , - , . . .
, , , - . - (flight delay, ..). -, , , . , Town Crier DECO. - -, , .
, - 0.001 btc bitcoin- . , - , , : , - , , - ?
2 : - -, β , . , , , Oraclize, TLSNotary ( TLS ). Oraclize , , , : Town Crier DECO. , .
Town Crier
Town Crier (TC) IC3 (The Initiative for CryptoCurrencies and Contracts) 2016 CCSβ16. TC: - , , TC , . TC TEE (Trusted Execution Environment) . TC Intel SGX.
Town Crier β TC Server.
TC Contract front end TC. CU (- ) TC Server. TC Server Relay, ( ) . Enclave progencl, , , progencl - .
Intel SGX , API, ecall. Ecall . , , . , , ocall. Ocall . ocall .
Enclave secure channel -, TLS handshake . TLS (mbedTLS) HTTP- SGX. , Enclave root CA certificates ( ), . Request Handler datagram , Ethereum, . Ethereum, requested datagram, skTC Relay.
Relay Client Interface, TCP, Blockchain Interface. Client Interface . ecall timestamp, skTC att ( ), att Intel Attestation Service (IAS), timestamp time service. Blockchain Interface datagrams. Geth β Ethereum Relay RPC calls.
TEE, TC , 3 . 15 tx/sec, 20 65 tx/sec, , Bitcoin β 26 tx/sec.
DECO
DECO (Decentralized Oracles for TLS) CCSβ20, , TLS . .
DECO c TLS , - , , , TLS. DECO prover (-), verifier () web-server ( ).
DECO , (prover) D (verifier), D TLS- S. , TLS TLS- , (provenance difficulty).
DECO KEnc KMac. Q -, R , KMac, TLS . DECO , «» KMac (prover), . KMac prover verifier β KpMac KvMac. KMac KpMac β KvMac = KMac.
, .
, Chainlink, , Ethereum, Bitcoin Hyperledger, : . , Chainlink , , ( ). , . .
Chainlink PoC DECO , Mixicles. Forbes, , Chainlink DECO Cornell University.
, Town Crier:
Rogue smart-contact code injection on TEE nodes.
: TEE -, , , , () - . private key, /.
, . , .
Contract state ciphertext changes leak.
: , -, contract state . , , contact state , - , - .
.
Side-channel attacks.
, . β Prime and Probe.
:
- t0: .
- t1: , ( ). cache line keybit. , keybit = 0 X cache line 2. , X, , , .
- t2: , β , . . keybit, .
: Intel SGX side-channel attacks, , , Prime and Probe , .
, .
Spectre Foreshadow (L1TF), Prime and Probe. - . Spectre-v2, .
DECO, :
- Prover Integrity: prover server server . server prover.
- Verifier Integrity: verifier prover .
- : verifier (, ).
DECO , . , verifier fresh nonce. , verifier (IP-). , verifier server . Proxy.
Town Crier , DECO . : , , .
| Town Crier | DECO | |
|---|---|---|
| (0.6s to finish) | (10.50s to finish the protocol) | |
| hardware | , TLS |
: DECO , LAN 0.37 , 2PC-HMAC (0,13 ). DECO TLS, . IC3: LAN 10,50 . , Town Crier 0,6 , 20 , DECO. , TC .
: Intel SGX (side-channel attacks) -. DECO , , proxy . DECO .
: , Intel SGX DECO. TC .
: Town Crier , TEE. , Intel SGX Intel Core 6- . DECO , DECO TEE. DECO , hardware TC, DECO .
, , Town Crier DECO . DECO , , , , . TC DECO, , side-channel attack . , DECO 2020 , , . Town Crier 4 , .