Hijacking Bitcoin: Large-scale Network Attacks on Cryptocurrencies

Bitcoin is without a doubt the most successful cryptocurrency in circulation today, making it an extremely valuable target for attackers. Indeed, many studies have highlighted ways to compromise one or several Bitcoin nodes. In this paper, we take a different perspective and study the effect of large-scale network-level attacks such as the ones that may be launched by Autonomous Systems (ASes). We show that attacks that are commonly believed to be hard, such as isolating 50% of the mining power, are actually within the reach of anyone with access to a BGP-enabled network and hijacking less than 900 prefixes. Once on path, AS-level adversaries can then partition the Bitcoin network or delay block propagation significantly. The key factors that enable these attacks are the extreme centralization of Bitcoin, both from a routing and a mining perspective, along with the fact that Bitcoin messages are sent unencrypted, without integrity guarantees. We demonstrate the feasibility of large-scale attacks in practice against the deployed Bitcoin software and quantify their disruptive network-wide impact. The potential damage to Bitcoin is severe. By isolating a part of the network or delaying the propagation of blocks, network-level attackers can cause a significant amount of mining power to be wasted, leading to revenue losses and enabling a wide range of attacks such as double spending. We provide several suggestions on approaches to mitigate such attacks employing both short-term and long-term measures.

• Publication year

  2016

• Venue

  arXiv.org

• Publication date

  2016-05-24

• Fields of study

  Computer Science, Engineering

• Identifiers
  arXiv 1605.07524
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• The Bitcoin

  2018cited by this paper
• A simulation model for analysis of attacks on the Bitcoin peer-to-peer network

  2015cited by this paper
• Secure High-Rate Transaction Processing in Bitcoin

  2015cited by this paper
• Eclipse Attacks on Bitcoin's Peer-to-Peer Network

  2015influential reference
• Optimal Selfish Mining Strategies in Bitcoin

  2015cited by this paper
• Tampering with the Delivery of Blocks and Transactions in Bitcoin

  2015cited by this paper
• SoK: Research Perspectives and Challenges for Bitcoin and Cryptocurrencies

  2015cited by this paper
• The Bitcoin Backbone Protocol: Analysis and Applications

  2015cited by this paper
• Discovering Bitcoin ’ s Public Topology and Influential Nodes

  2015cited by this paper
• Is Bitcoin a Decentralized Currency?

  2014cited by this paper
• The Economics of Bitcoin Mining, or Bitcoin in the Presence of Adversaries

  2013cited by this paper
• BGP security in partial deployment: is the juice worth the squeeze?

  2013cited by this paper
• Provable security of S-BGP and other path vector protocols: model, analysis and extensions

  2012cited by this paper
• An Infrastructure to Support Secure Internet Routing

  2012cited by this paper
• Detecting prefix hijackings in the internet with argus

  2012cited by this paper
• How Secure are Secure Interdomain Routing Protocols

  2011cited by this paper
• Let the market drive deployment: a strategy for transitioning to BGP security

  2011cited by this paper
• BGPmon: A Real-Time, Scalable, Extensible Monitoring System

  2009cited by this paper
• As-awareness in Tor path selection

  2009cited by this paper
• Bitcoin: A Peer-to-Peer Electronic Cash System

  2008cited by this paper
• iSPY: Detecting IP Prefix Hijacking on My Own

  2008cited by this paper
• Sampled Traffic Analysis by Internet-Exchange-Level Adversaries

  2007cited by this paper
• A study of prefix hijacking and interception in the internet

  2007cited by this paper
• On interdomain routing security and pretty secure BGP (psBGP)

  2007cited by this paper
• Practical defenses against BGP prefix hijacking

  2007cited by this paper
• SPV: secure path vector routing for securing BGP

  2004cited by this paper
• Location diversity in anonymity networks

  2004cited by this paper
• 13-th IEEE International Conference on Peer-to-Peer Computing Information Propagation in the Bitcoin Network

  year unknowncited by this paper

• Factors Influencing the Acceptance of Blockchain Technology and Cryptocurrency for Financial Transactions among Millennials in Malaysia

  2024cites this paper
• Mitigating Challenges in Ethereum's Proof-of-Stake Consensus: Evaluating the Impact of EigenLayer and Lido

  2024cites this paper
• Blockchain Double Spending with Low Mining Power and Network Delays

  2024cites this paper
• Investigating the Adoption Factors of Cryptocurrencies—A Case of Bitcoin: Empirical Evidence From China

  2021cites this paper
• Attacks and countermeasures on blockchains: A survey from layering perspective

  2021cites this paper
• GRANDPA: a Byzantine Finality Gadget

  2020cites this paper
• A Decentralized Tree-based Algorithm for Reliable Blockchain Communications

  2020cites this paper
• Identity and Personhood in Digital Democracy: Evaluating Inclusion, Equality, Security, and Privacy in Pseudonym Parties and Other Proofs of Personhood

  2020cites this paper
• Design Choices for Central Bank Digital Currency: Policy and Technical Considerations

  2020cites this paper
• Brick: Asynchronous Payment Channels.

  2020cites this paper
• PREStO: A Systematic Framework for Blockchain Consensus Protocols

  2019cites this paper
• Measuring Irregular Geographic Exposure on the Internet

  2019cites this paper
• Terrorist Use of Cryptocurrencies: Technical and Organizational Barriers and Future Threats

  2019cites this paper
• Assessing the security implication of Bitcoin exchange rates

  2019cites this paper
• Threshold Logical Clocks for Asynchronous Distributed Coordination and Consensus

  2019cites this paper
• Hijacking Routes in Payment Channel Networks: A Predictability Tradeoff

  2019cites this paper
• Secure, Confidential Blockchains Providing High Throughput and Low Latency

  2019influential citation
• OmniLedger: A Secure, Scale-Out, Decentralized Ledger via Sharding

  2018cites this paper
• CCP: Conflicts Check Protocol for Bitcoin Block Security

  2018cites this paper
• Decentralization in Bitcoin and Ethereum Networks

  2018cites this paper
• A survey of data transfer and storage techniques in prevalent cryptocurrencies and suggested improvements

  2018cites this paper
• Dandelion++: Lightweight Cryptocurrency Networking with Formal Anonymity Guarantees

  2018influential citation
• SmartPool: Practical Decentralized Pooled Mining

  2017cites this paper
• BLOCKBENCH: A Framework for Analyzing Private Blockchains

  2017cites this paper
• A Secure , Scale-Out

  2017influential citation
• Contour: A Practical System for Binary Transparency

  2017cites this paper
• Towards Better Understanding of Bitcoin Unreachable Peers

  2017cites this paper
• Dandelion

  2017cites this paper
• The Balance Attack or Why Forkable Blockchains are Ill-Suited for Consortium

  2017influential citation
• TwistedPair : Towards Practical Anonymity in the Bitcoin P 2 P Network

  2017influential citation
• The Balance Attack Against Proof-Of-Work Blockchains: The R3 Testbed as an Example

  2016influential citation
• Enhancing Bitcoin Security and Performance with Strong Consistency via Collective Signing

  2016cites this paper