Optimal Strategic Mining Against Cryptographic Self-Selection in Proof-of-Stake. Ferreira, M. V. X., Hahn, Y. L. S., Weinberg, S. M., & Yu, C. In Proceedings of the 23rd ACM Conference on Economics and Computation, of EC '22, pages 89–114, New York, NY, USA, 2022. Association for Computing Machinery.
Optimal Strategic Mining Against Cryptographic Self-Selection in Proof-of-Stake [link]Paper  Optimal Strategic Mining Against Cryptographic Self-Selection in Proof-of-Stake [link]Video  doi  abstract   bibtex   19 downloads  
Cryptographic Self-Selection is a subroutine used to select a leader for modern proof-of-stake consensus protocols. In cryptographic self-selection, each round r has a seed Qr. In round r, each account owner is asked to digitally sign Qr, hash their digital signature to produce a credential, and then broadcast this credential to the entire network. A publicly-known function scores each credential in a manner so that the distribution of the lowest scoring credential is identical to the distribution of stake owned by each account. The user who broadcasts the lowest-scoring credential is the leader for round r, and their credential becomes the seed Qr+1. Such protocols leave open the possibility of manipulation: a user who owns multiple accounts that each produce low-scoring credentials in round r can selectively choose which ones to broadcast in order to influence the seed for round r+1. Indeed, the user can pre-compute their credentials for round r+1 for each potential seed, and broadcast only the credential (among those with low enough score to be leader) that produces the most favorable seed.We consider an adversary who wishes to maximize the expected fraction of rounds in which an account they own is the leader. We show such an adversary always benefits from deviating from the intended protocol, regardless of the fraction of the stake controlled. We characterize the optimal strategy; first by proving the existence of optimal positive recurrent strategies whenever the adversary owns last than 3-5/2  38% of the stake. Then, we provide a Markov Decision Process formulation to compute the optimal strategy.
@inproceedings{ferreira2022optimal,
  author = {Ferreira, Matheus V. X. and Hahn, Ye Lin Sally and Weinberg, S. Matthew and Yu, Catherine},
  title = {Optimal Strategic Mining Against Cryptographic Self-Selection in Proof-of-Stake},
  year = {2022},
  isbn = {9781450391504},
  publisher = {Association for Computing Machinery},
  address = {New York, NY, USA},
  url = {https://arxiv.org/abs/2207.07996},
  doi = {10.1145/3490486.3538337},
  abstract = {Cryptographic Self-Selection is a subroutine used to select a leader for modern proof-of-stake consensus protocols. In cryptographic self-selection, each round r has a seed Qr. In round r, each account owner is asked to digitally sign Qr, hash their digital signature to produce a credential, and then broadcast this credential to the entire network. A publicly-known function scores each credential in a manner so that the distribution of the lowest scoring credential is identical to the distribution of stake owned by each account. The user who broadcasts the lowest-scoring credential is the leader for round r, and their credential becomes the seed Qr+1. Such protocols leave open the possibility of manipulation: a user who owns multiple accounts that each produce low-scoring credentials in round r can selectively choose which ones to broadcast in order to influence the seed for round r+1. Indeed, the user can pre-compute their credentials for round r+1 for each potential seed, and broadcast only the credential (among those with low enough score to be leader) that produces the most favorable seed.We consider an adversary who wishes to maximize the expected fraction of rounds in which an account they own is the leader. We show such an adversary always benefits from deviating from the intended protocol, regardless of the fraction of the stake controlled. We characterize the optimal strategy; first by proving the existence of optimal positive recurrent strategies whenever the adversary owns last than 3-5/2 ~38% of the stake. Then, we provide a Markov Decision Process formulation to compute the optimal strategy.},
  booktitle = {Proceedings of the 23rd ACM Conference on Economics and Computation},
  pages = {89–114},
  numpages = {26},
  keywords = {leader election, cryptocurrency, blockchain, proof-of-stake, strategic mining},
  location = {Boulder, CO, USA},
  series = {EC '22},
  url_Video = {https://youtu.be/SVdHKeycLZg}
}
Downloads: 19
About
Documentation
Keywords
Search
Users
Terms and Conditions of Use
Privacy Policy
Sitemap
© BibBase.org 2021