Home Publications Research Grants Inventions & Patents Awards Additional Research Activities Faculties & Institutions Research Areas

Knocking on Tangle's Doors: Security Analysis of IOTA Ports

Ghanbari Amoughin R, Brighente A, Conti M, Kumar G, Saha R (2021)

---

Publication Language: English

Publication Type: Conference contribution, Original article

Publication year: 2021

Conference Proceedings Title: 2021 IEEE International Conference on Blockchain (Blockchain)

Event location: Melbourne, Australia

ISBN: 978-1-6654-1760-0

DOI: 10.1109/Blockchain53845.2021.00067

Abstract

Blockchains are currently deployed in a large number of different scenarios, such as cryptocurrencies, communications, factory automation, and vehicular networks. Both academia's and industry's interest in this technology is motivated by its distributed nature and its inherent security in managing information. However, traditional blockchains are limited in terms of the transaction rate they can approve. To overcome this limitation, IOTA proposed a novel blockchain based on a Directed Acyclic Graph (DAG) structure (the Tangle). It handles a larger number of transactions to target high-traffic scenarios such as Internet of Things (IoT). However, the security of the IOTA's blockchain depends on the design of its underlying communication protocols. In this paper, we analyze the security of the IOTA Tangle from a transport layer perspective. In particular, we show that well-known port-based attacks can jeopardize the integrity and availability of the IOTA services. We focus on the IOTA's TCP-based ports, and provide a discussion of all the possible attacks and their effects. We assess their validity via experimental evaluation showing their effect on the network operations. Results show that SYN flooding affects the gossip protocol by fully disrupting the service. We also find that 16% of the nodes are unable to create a neighbours list, leading to a disruption of the information exchange process. On the other side, we also show that some components are not affected by these attacks. To the best of our knowledge, we are the first to identify and validate these vulnerabilities in IOTA. Lastly, we discuss some possible countermeasures.

Authors with CRIS profile

How to cite

APA:

Ghanbari Amoughin, R., Brighente, A., Conti, M., Kumar, G., & Saha, R. (2021). Knocking on Tangle's Doors: Security Analysis of IOTA Ports. In 2021 IEEE International Conference on Blockchain (Blockchain). Melbourne, Australia, AU.

MLA:

Ghanbari Amoughin, Reza, et al. "Knocking on Tangle's Doors: Security Analysis of IOTA Ports." Proceedings of the 2021 IEEE International Conference on Blockchain (Blockchain), Melbourne, Australia 2021.

BibTeX: Download