Abstract
We present and analyze an attack on Ethereum 1's consensus mechanism, which allows miners to obtain higher mining rewards compared to their honest peers. This attack is novel in that it relies on manipulating block timestamps and the difficulty-adjustment algorithm (DAA) to give the miner an advantage whenever block races ensue. We call our attack Uncle Maker, as it induces a higher rate of uncle blocks. We describe several variants of the attack. Among these, one that is risk-free for miners. Our attack differs from past attacks such as Selfish Mining [30], that have been shown to be profitable but were never observed in practice: We analyze data from Ethereum's blockchain and show that some of Ethereum's miners have been actively running a variant of this attack for several years without being detected, making this the first evidence of miner manipulation of a major consensus mechanism. We present our evidence, as well as estimates of the profits gained by attackers, at the expense of honest miners. Since several blockchains are still running Ethereum 1's protocol, we suggest concrete fixes and implement them as a patch for geth.
Original language | English |
---|---|
Title of host publication | CCS 2023 - Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security |
Publisher | Association for Computing Machinery, Inc |
Pages | 135-149 |
Number of pages | 15 |
ISBN (Electronic) | 9798400700507 |
DOIs | |
State | Published - 15 Nov 2023 |
Event | 30th ACM SIGSAC Conference on Computer and Communications Security, CCS 2023 - Copenhagen, Denmark Duration: 26 Nov 2023 → 30 Nov 2023 |
Publication series
Name | CCS 2023 - Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security |
---|
Conference
Conference | 30th ACM SIGSAC Conference on Computer and Communications Security, CCS 2023 |
---|---|
Country/Territory | Denmark |
City | Copenhagen |
Period | 26/11/23 → 30/11/23 |
Bibliographical note
Publisher Copyright:© 2023 Copyright held by the owner/author(s).
Keywords
- blockchain
- consensus
- cryptocurrency
- proof of work
- security