The Bitcoin scalability problem has led to the development of offchain
financial mechanisms such as payment channel networks
(PCNs) which help users process transactions of varying amounts,
including micro-payment transactions, without writing each transaction
to the blockchain. Since PCNs only allow path-based transactions,
effective, secure routing protocols that find a path between
a sender and receiver are fundamental to PCN operations. In this
paper, we propose RACED, a routing protocol that leverages the
idea of Distributed Hash Tables (DHTs) to route transactions in
PCNs in a fast and secure way. Our experiments on real-world
transaction datasets show that RACED gives an average transaction
success ratio of 98.74%, an average pathfinding time of 31.242
seconds, which is 1.65 × 103, 1.8 × 103, and 4 × 102 times faster
than three other recent routing protocols that offer comparable
security/privacy properties. We rigorously analyze and prove the
security of RACED in the Universal Composability framework.
more »
« less
This content will become publicly available on July 1, 2025
SPRITE: Secure and Private Routing in Payment Channel Networks
Payment channel networks are a promising solution to the scalability
challenge of blockchains and are designed for significantly increased
transaction throughput compared to the layer one blockchain.
Since payment channel networks are essentially decentralized peerto-
peer networks, routing transactions is a fundamental challenge.
Payment channel networks have some unique security and privacy
requirements that make pathfinding challenging, for instance, network
topology is not publicly known, and sender/receiver privacy
should be preserved, in addition to providing atomicity guarantees
for payments. In this paper, we present an efficient privacypreserving
routing protocol, SPRITE, for payment channel networks
that supports concurrent transactions. By finding paths offline
and processing transactions online, SPRITE can process transactions
in just two rounds, which is more efficient compared to
prior work. We evaluate SPRITE’s performance using Lightning
Network data and prove its security using the Universal Composability
framework. In contrast to the current cutting-edge methods
that achieve rapid transactions, our approach significantly reduces
the message complexity of the system by 3 orders of magnitude
while maintaining similar latencies.
more »
« less
- Award ID(s):
- 2148358
- NSF-PAR ID:
- 10502897
- Publisher / Repository:
- ACM Asia Conference on Computer and Communications Security (ACM AsiaCCS)
- Date Published:
- Journal Name:
- ACM Asia Conference on Computer and Communications Security (ACM AsiaCCS)
- Subject(s) / Keyword(s):
- Privacy preserving protocols, Payment channel networks, Secure pathfinding
- Format(s):
- Medium: X
- Location:
- Singapore
- Sponsoring Org:
- National Science Foundation
More Like this
-
-
The Bitcoin blockchain scalability problem has inspired several offchain solutions for enabling cryptocurrency transactions, of which Layer-2 systems such as payment channel networks (PCNs) have emerged as a frontrunner. PCNs allow for path-based transactions between users without the need to access the blockchain. These path-based transactions are possible only if a suitable path exists from the sender of a payment to the receiver. In this paper, we propose Auroch, a distributed auction-based pathfinding and routing protocol that takes into account the routing fees charged by nodes along a path. Unlike other routing protocols proposed for PCNs, Auroch takes routing fees into consideration. Auroch maximizes the profit that can be achieved by an intermediate node at the same time minimizing the overall payment cost for the sender.more » « less
-
null (Ed.)In this paper, we propose a technique for rebalancing link weights in decentralized credit networks. Credit networks are peer-to-peer trust-based networks that enable fast and inexpensive cross-currency transactions compared to traditional bank wire transfers. Although researchers have studied security of transactions and privacy of users of such networks, and have invested significant efforts into designing efficient routing algorithms for credit networks, comparatively little work has been done in the area of replenishing credit links of users in the network. This is achieved by a process called rebalancing that enables a poorly funded user to create incoming as well as outgoing credit links. We propose a system where a user with zero or no link weights can create incoming links with existing, trusted users in the network, in a procedure we call balance transfer, followed by creating outgoing links to existing or new users that would like to join the network, a process we call bailout. Both these processes together constitute our proposed rebalancing mechanism.more » « less
-
Payment channel networks (PCNs) mitigate the scalability issues of current decentralized cryptocurrencies. They allow for arbitrarily many payments between users connected through a path of intermediate payment channels, while requiring interacting with the blockchain only to open and close the channels. Unfortunately, PCNs are (i) tailored to payments, excluding more complex smart contract functionalities, such as the oracle-enabling Discreet Log Contracts and (ii) their need for active participation from intermediaries may make payments unreliable, slower, expensive, and privacy-invasive. Virtual channels are among the most promising techniques to mitigate these issues, allowing two endpoints of a path to create a direct channel over the intermediaries without any interaction with the blockchain. After such a virtual channel is constructed, (i) the endpoints can use this direct channel for applications other than payments and (ii) the intermediaries are no longer involved in updates. In this work, we first introduce the Domino attack, a new DoS/griefing style attack that leverages virtual channels to destruct the PCN itself and is inherent to the design adopted by the existing Bitcoin-compatible virtual channels. We then demonstrate its severity by a quantitative analysis on a snapshot of the Lightning Network (LN), the most widely deployed PCN at present. We finally discuss other serious drawbacks of existing virtual channel designs, such as the support for only a single intermediary, a latency and blockchain overhead linear in the path length, or a non-constant storage overhead per user. We then present Donner, the first virtual channel construction that overcomes the shortcomings above, by relying on a novel design paradigm. We formally define and prove security and privacy properties in the Universal Composability framework. Our evaluation shows that Donner is efficient, reduces the on-chain number of transactions for disputes from linear in the path length to a single one, which is the key to prevent Domino attacks, and reduces the storage overhead from logarithmic in the path length to constant. Donner is Bitcoin-compatible and can be easily integrated in the LN.more » « less
-
Bitcoin, Ethereum and other blockchain-based cryptocurrencies, as deployed today, cannot support more than several transactions per second. Off-chain payment channels, a “layer 2” solution, are a leading approach for cryptocurrency scaling. They enable two mutually distrustful parties to rapidly send payments between each other and can be linked together to form a payment network, such that payments between any two parties can be routed through the network along a path that connects them. We propose a novel payment channel protocol, called Sprites. The main advantage of Sprites compared with earlier protocols is a reduced “collateral cost,” meaning the amount of money × time that must be locked up before disputes are settled. In the Lightning Network and Raiden, a payment across a path of ` channels requires locking up collateral for Θ(`∆) time, where ∆ is the time to commit an on-chain transaction; every additional node on the path forces an increase in lock time. The Sprites construction provides a constant lock time, reducing the overall collateral cost to Θ(` + ∆). Our presentation of the Sprites protocol is also modular, making use of a generic state channel abstraction. Finally, Sprites improves on prior payment channel constructions by supporting partial withdrawals and deposits without any on-chain transactions.more » « less