Trusted computing meets blockchain: Rollback attacks and a solution for hyperledger fabric

Brandenburger M, Cachin C, Sorniotti A, Kapitza R (2019)


Publication Type: Conference contribution

Publication year: 2019

Journal

Publisher: IEEE Computer Society

Pages Range: 324-333

Conference Proceedings Title: Proceedings of the IEEE Symposium on Reliable Distributed Systems

Event location: Lyon, FRA

ISBN: 0769567118

DOI: 10.1109/SRDS47363.2019.00045

Abstract

A smart contract on a blockchain cannot keep a secret because its data is replicated on all nodes in a network. To remedy this problem, it has been suggested combining blockchains with trusted execution environments (TEEs), such as Intel SGX, for executing applications that demand confidentiality. As a consequence, untrusted blockchain nodes cannot get access to the data and computations inside the TEE. This paper first explores issues that arise from the combination of TEEs with blockchains: Smart contracts executed inside TEEs are susceptible to rollback attacks, which should be prevented to maintain confidentiality for the application. However, in blockchains with non-final consensus protocols, such as the proof-of-work in Ethereum and others, the contract execution must handle rollbacks by design. This implies that TEEs for securing smart-contract execution cannot be directly used for such blockchains; this approach works only when the consensus decisions are final. Second, this work introduces an architecture and a prototype for smart-contract execution within Intel SGX for Hyperledger Fabric, a prominent enterprise blockchain platform. Our system resolves additional difficulties posed by the specific execute-order-validate architecture of Fabric, prevents rollback attacks on TEE-based execution as far as possible, and minimizes the trusted computing base. For increasing security, our design encapsulates each application on the blockchain within its own enclave that shields it from the host system. An evaluation shows that the overhead of moving the execution into SGX is within 10%-20% for a sealed-bid auction application.

Authors with CRIS profile

Involved external institutions

How to cite

APA:

Brandenburger, M., Cachin, C., Sorniotti, A., & Kapitza, R. (2019). Trusted computing meets blockchain: Rollback attacks and a solution for hyperledger fabric. In Proceedings of the IEEE Symposium on Reliable Distributed Systems (pp. 324-333). Lyon, FRA: IEEE Computer Society.

MLA:

Brandenburger, Marcus, et al. "Trusted computing meets blockchain: Rollback attacks and a solution for hyperledger fabric." Proceedings of the 38th IEEE International Symposium on Reliable Distributed Systems, SRDS 2019, Lyon, FRA IEEE Computer Society, 2019. 324-333.

BibTeX: Download