Try   HackMD

IT-PIR for Tendermint Flow

Motivation

Currently in Tendermint, all queries made by light clients in Tendermint are public. In other words, whenever a light client queries Tendermint for application-specific state, anyone listening on the communication can associated a particular light client with certain application state information.
There are several instances in which might want to hide what they are querying about to an outside observer, for example:

  • A user wanting to query a block explorer may not want the block explorer service to know exactly what they are querying for.
  • A user wanting to use and interact with a sensitive Tendermint-based application may not want an outside observer to know what they are querying for on that blockchain.

Proposal

This proposal is to add support for various private information retrieval protocols (PIR) in Tendermint. We propose several additions and changes to the light client, full nodes and ABCI components.

Preliminaries

A PIR struct represents an instantiation of a private information retrieval protocol.

type PIR interface {
    Client() PIRClient
    Server() PIRServer
    Mode() string
    DB() PIRDatabase
    Options() PIROptions
}

where

type PIRClient interface {
    SendRequest()
    HandleResponse()
}

and

type PIRServer interface {
    HandleRequest()
}

PIRDB and PIROptions are yet to be determined. PIRDB handles a storage and bandwidth efficient way to store headers and validator info and PIROptions provide a way to determine PIR specific functionality.

Light Client Modifications

Recall

type Client interface {
    // verify new headers
    VerifyHeaderAtHeight(height int64, now time.Time) (*types.SignedHeader, error)
    VerifyHeader(newHeader *types.SignedHeader, newVals *types.ValidatorSet, now time.Time) error
    Update(now time.Time) (*types.SignedHeader, error)

    // get trusted headers & validators
    TrustedHeader(height int64) (*types.SignedHeader, error)
    TrustedValidatorSet(height int64) (valSet *types.ValidatorSet, heightUsed int64, err error)
    LastTrustedHeight() (int64, error)
    FirstTrustedHeight() (int64, error)

    // query configuration options
    ChainID() string
    Primary() provider.Provider
    Witnesses() []provider.Provider

    Cleanup() error

}

The changes foreseen to the light client interface are the following:

type Client interface {
    // Verify new headers privately using PIR
    PrivateVerifyHeaderAtHeight()
    PrivateVerifyHeader()
    PrivateUpdate()
    
    ... Rest same as before

}

where

  • PrivateVerifyHeaderAtHeight: Privately verify headers at a specified height. By privately, we mean the request is encoded in such a way that the full node servicing this light client doesn't at which height the header will be at.
  • PrivateVerifyHeader: Privately verify a specified header. Similarly, by privately, we mean that the full node servicing this light client doesn't know which header the light client it requesting.
  • PrivateUpdate: Privately advance the state and verify it. A full node servicing this light client will not know the time at which the light client is trying to attempt an update.

Note: All function signatures are a work-in-progress

Full Client Modifications

We make changes to how full clients handle requests from light clients as follows:

  • TBD

ABCI Modifications

We make the following modifications to the ABCI specification:

We change the Query and ABCIQueryWithOptions methods as defined in Applications to be PIRQuery and PIRQueryWithOptions in order to take into account private ABCI queries.

Subsequently, we make the changes to the ABCI read endpoints abci_query and abci_info to private_abci_query and private_abci_info in order to enable PIR enabled abci information queries.

Consequences

TBD

TBD

How does this affect a light client's functionality with respect to the ABCI?

How does this affect a light client's ability to detect and handle fraud?

Should we have a separate mode so that Tendermint nodes upon initialization can be able to have a PIR mode? (See https://github.com/tendermint/tendermint/issues/2237)

How to change ABCI in order to enable light clients to also get private queries from the ABCI server?

Last changed by 
HashCloak
0
224

Read more

Multi-sigs against BLS signatures

---reuf tags: research For simplicity , a multi-signature scheme MS = (Pg, Kg, Sign , Vf) consists of Parameter generation (system wide , runs by central authority , does it have to ?) Key generation (Kg -> (pk,sk) , non-interactive process) Signing Verification ( ($L={pk_1...pk_n}$, m ,$\sigma$) -> 1)

Jul 16, 2023
🚧: Using Order-Revealing Encryption (ORE) to Provide Mempool Privacy

Required Reading 1 https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=8434214 2 https://eprint.iacr.org/2018/953.pdf 3 https://github.com/flashbots/mev-research/issues/34 4 https://eprint.iacr.org/2016/612.pdf What is ORE? ORE is a cryptographic primitive that enables range queries over encrypted ciphertexts. Its main application is in the database world, where it's used to enable queries over encrypted databases to provide assurances in the case of data breaches. For each of exposition, we will be simply providing a high-level definition.

Apr 26, 2021
Anonymity metrics

Definition: An anonymity metric indicates the uncertainty of the identity of a fixed entity is , from the point of view by advarsary A. Objective function This should include two ingredients , i.e. anonymity level and anonymity loss. Anonymity level Anonymity level depends on: 1) distribution of probabilities (see towards measuring anonymity) ; 2) size of anonymity set (see A system for anonymous and unobservable internet access & The disadvantages of free mix routes and how to overcome them in Hannes Federath) Edman et al. orginally propose to count the number of possible perfect matching in G , i.e. computing the permanent of the adjacency matrix A.

Mar 11, 2021
Auto-tuning algorithm of mixnets

[toc] Preliminary Quantify the anonymity (get objective function valued ) : Initial parameter space : x=[x_1,....,x_n] f(x) : performane(anonymity provided) of a particular configuration by running the full application. f(x*) : the best application performance

Mar 11, 2021
Read more from HashCloak
Published on HackMD