Speed Optimizations in Bitcoin Key Recovery Attacks

Courtois, Nicolas T.; Song, Guangyan; Castellucci, Ryan

doi:10.1515/tmmp-2016-0030

Cited by 18 publications

(19 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Yet the fact is that it is redundant to record the public key itself on the blockchain as ECDSA facilitates public key recovery given the signature, plain text message and nonce used, which suggests the designer(s) were not fully conversant with elliptic curve cryptography at the outset. An interesting aside is the ECDSA signature nonce must be truly random for any address re-use as private key recovery is possible given known public keys, signatures, corresponding plain texts and nonces [ 15 ]. Once linkability is established between a user's transactions through means such as those exhibited throughout this article, patterns of ECDSA nonce use may expose a feasible attack vector.…”

mentioning

confidence: 99%

Towards open data blockchain analytics: a Bitcoin perspective

McGinn¹,

McIlwraith²,

Guo³

2018

R. Soc. open sci.

View full text Add to dashboard Cite

Bitcoin is the first implementation of a technology that has become known as a ‘public permissionless’ blockchain. Such systems allow public read/write access to an append-only blockchain database without the need for any mediating central authority. Instead, they guarantee access, security and protocol conformity through an elegant combination of cryptographic assurances and game theoretic economic incentives. Not until the advent of the Bitcoin blockchain has such a trusted, transparent, comprehensive and granular dataset of digital economic behaviours been available for public network analysis. In this article, by translating the cumbersome binary data structure of the Bitcoin blockchain into a high fidelity graph model, we demonstrate through various analyses the often overlooked social and econometric benefits of employing such a novel open data architecture. Specifically, we show: (i) how repeated patterns of transaction behaviours can be revealed to link user activity across the blockchain; (ii) how newly mined bitcoin can be associated to demonstrate individual accumulations of wealth; (iii) through application of the naïve quantity theory of money that Bitcoin's disinflationary properties can be revealed and measured; and (iv) how the user community can develop coordinated defences against repeated denial of service attacks on the network. Such public analyses of this open data are exemplary benefits unavailable to the closed data models of the ‘private permissioned’ distributed ledger architectures currently dominating enterprise-level blockchain development owing to existing issues of scalability, confidentiality and governance.

show abstract

mentioning

confidence: 99%

Towards open data blockchain analytics: a Bitcoin perspective

McGinn¹,

McIlwraith²,

Guo³

2018

R. Soc. open sci.

View full text Add to dashboard Cite

show abstract

“…A first standard of current applications and quick execution of different applications with larger RAM is provided [14].…”

Section: Related Workmentioning

confidence: 99%

Generation Analysis of Blockchain Technology: Bitcoin and Ethereum

Anwar¹,

Anayat²,

Butt³

et al. 2020

IJIEEB

View full text Add to dashboard Cite

In this paper, the importance of blockchain technology have been discussed and the generations of blockchain (Bitcoin and Ethereum) have been compared provided different aspects. The blockchain is a technology which allows direct transaction without involving third party. Also, it offers many facilities like high translucency, high safety and security, improved trace-ability, greater proficient and transactions' speed, and reduced costs. Moreover, the cryptocurrencies provide advance security level. The basic purpose of this study is to highlight different aspects of Blockchain, Bitcoin and Ethereum and to show which cryptocurrency is better approach. The research contributes to show the impact of this technology in different fields and a comparison of bitcoin and ethereum is presented to analyze and furnish a decision regarding the best among them.The use of blochchain technology in government applications can bring a drastic change in the world because it is safer and faster. Also, the comparison shows that ethereum is better than bitcoin as it is efficient and has more applications as compared to bitcoin. It offers more advanced services such as smart contracts. All in all, the analysis has concluded with Ethereum as faster and securer approach.

show abstract

“…Self-sovereign (i.e., non-custodial) wallets do not pose a single point of failure in contrast to server-side (i.e., custodial) wallets, which when compromised, resulted in huge financial loses [2,9,53,68,77]. Security: the insufficient security level of some self-sovereign wallets has caused significant financial losses for individuals and companies [16,18,26,60]. We argue that wallets should be designed with security in mind and in particular, we point out 2FA solutions, which have successfully contributed to the security of other environments [3,69].…”

Section: Problem Definitionmentioning

confidence: 99%

“…These private keys are managed by a wallet software that gives users an interface to interact with the cryptocurrency. There are many cases of stolen keys that were secured by various means [9,16,18,26]. Such cases have brought the attention of the research community to the security issues related to key management in cryptocurrencies [14,32,34].…”

Section: Introductionmentioning

confidence: 99%

“…Another similar option is to use password-derived wallets that generate keys based on the provided password. However, they also suffer from the possibility of weak passwords [26]. Hardware wallets are a category that promises the provision of better security by introducing devices that enable only the signing of transactions, without revealing the private keys stored on the device.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

SmartOTPs

Homoliak

Breitenbacher

Hujňák

et al. 2020

Proceedings of the 2nd ACM Conference on Advances in Financial Technologies

View full text Add to dashboard Cite

With the recent rise of cryptocurrencies' popularity, the security and management of crypto-tokens have become critical. We have witnessed many attacks on users and providers, which have resulted in significant financial losses. To remedy these issues, several wallet solutions have been proposed. However, these solutions often lack either essential security features, usability, or do not allow users to customize their spending rules. In this paper, we propose SmartOTPs, a smart-contract wallet framework that gives a flexible, usable, and secure way of managing crypto-tokens in a self-sovereign fashion. The proposed framework consists of four components (i.e., an authenticator, a client, a hardware wallet, and a smart contract), and it provides 2-factor authentication (2FA) performed in two stages of interaction with the blockchain. To the best of our knowledge, our framework is the first one that utilizes one-time passwords (OTPs) in the setting of the public blockchain. In SmartOTPs, the OTPs are aggregated by a Merkle tree and hash chains whereby for each authentication only a short OTP (e.g., 16B-long) is transferred from the authenticator to the client. Such a novel setting enables us to make a fully air-gapped authenticator by utilizing small QR codes or a few mnemonic words, while additionally offering resilience against quantum cryptanalysis. We have made a proof-of-concept based on the Ethereum platform. Our cost analysis shows that the average cost of a transfer operation is comparable to existing 2FA solutions using smart contracts with multi-signatures.

show abstract

Speed Optimizations in Bitcoin Key Recovery Attacks

Cited by 18 publications

References 11 publications

Towards open data blockchain analytics: a Bitcoin perspective

Towards open data blockchain analytics: a Bitcoin perspective

Generation Analysis of Blockchain Technology: Bitcoin and Ethereum

SmartOTPs

Contact Info

Product

Resources

About