Majority is not enough
- 25 June 2018
- journal article
- research article
- Published by Association for Computing Machinery (ACM) in Communications of the ACM
- Vol. 61 (7), 95-102
- https://doi.org/10.1145/3212998
Abstract
The Bitcoin cryptocurrency records its transactions in a public log called the blockchain. Its security rests critically on the distributed protocol that maintains the blockchain, run by participants called miners. Conventional wisdom asserts that the mining protocol is incentive-compatible and secure against colluding minority groups, that is, it incentivizes miners to follow the protocol as prescribed. We show that the Bitcoin mining protocol is not incentive-compatible. We present an attack with which colluding miners' revenue is larger than their fair share. The attack can have significant consequences for Bitcoin: Rational miners will prefer to join the attackers, and the colluding group will increase in size until it becomes a majority. At this point, the Bitcoin system ceases to be a decentralized currency. Unless certain assumptions are made, selfish mining may be feasible for any coalition size of colluding miners. We propose a practical modification to the Bitcoin protocol that protects Bitcoin in the general case. It prohibits selfish mining by a coalition that command less than 1/4 of the resources. This threshold is lower than the wrongly assumed 1/2 bound, but better than the current reality where a coalition of any size can compromise the system.Keywords
This publication has 7 references indexed in Scilit:
- Majority Is Not Enough: Bitcoin Mining Is VulnerableLecture Notes in Computer Science, 2014
- Information propagation in the Bitcoin networkPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2013
- Zerocoin: Anonymous Distributed E-Cash from BitcoinPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2013
- On bitcoin and red balloonsPublished by Association for Computing Machinery (ACM) ,2012
- Bitter to Better — How to Make Bitcoin a Better CurrencyLecture Notes in Computer Science, 2012
- PPayPublished by Association for Computing Machinery (ACM) ,2003
- Blind Signatures for Untraceable PaymentsPublished by Springer Science and Business Media LLC ,1983