Commit-Reveal schema: bias via abort #19
Assignees
Labels
bug
Something isn't working
Clarify Attack Pattern
clarify an ambiguous pattern
Document Attack Pattern
Document an Attack Pattern not listed
New Attack Pattern
a new entry in the matrix
Smart Contract
Smart Contract/DApp/eVM, etc
Milestone
Comments
sambacha
added
New Attack Pattern
sambacha
added
Smart Contract
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Bias via Abort
In the commit-then-reveal protocol each user chooses a secret and shares their commitment to the secret with other users. Later, users reveal their secrets and a random value is calculated by combining the secrets. This approach is susceptible to attacks where a user can choose not to reveal their secret to bias the randomness generation to their advantage "bias-via-abort"
Citation: E. Syta, P. Jovanovic, E. Kokoris-Kogias, N. Gailly, L. Gasser, I. Khoffi,
M. J. Fischer, and B. Ford. Scalable Bias-Resistant Distributed Randomness. In 38th IEEE Symposium on Security and Privacy, May 2017.
The text was updated successfully, but these errors were encountered: