Daric: a storage efficient payment channel with punishment mechanism

Arash Mirzaei; Amin Sakzad; Jiangshan Yu; Ron Steinfeld

doi:10.1007/978-3-031-22390-7_15

Daric: a storage efficient payment channel with punishment mechanism

Arash Mirzaei, Amin Sakzad, Jiangshan Yu, Ron Steinfeld

Department of Software Systems & Cybersecurity

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

1 Citation (Scopus)

Abstract

Lightning Network (LN), the most widely deployed payment channel for Bitcoin, requires channel parties to generate and store distinct revocation keys for all n payments of a channel to resolve fraudulent channel closures. To reduce the required storage in a payment channel, eltoo introduces a new signature type for Bitcoin to enable payment versioning. This allows a channel party to revoke all old payments by using a payment with a higher version number, reducing the storage complexity from O(n) to O(1 ). However, eltoo fails to achieve bounded closure, enabling a dishonest channel party to significantly delay the channel closure process. Eltoo also lacks a punishment mechanism, which may incentivize profit-driven channel parties to close a payment channel with an old state, to their own advantage. This paper introduces Daric, a payment channel with unlimited lifetime for Bitcoin that achieves optimal storage and bounded closure. Moreover, Daric implements a punishment mechanism and simultaneously avoids the methods other schemes commonly use to enable punishment: 1) state duplication which leads to exponential increase in the number of transactions with the number of applications on top of each other or 2) dedicated design of adaptor signatures which introduces compatibility issues with BLS or most post-quantum resistant digital signatures. We also formalise Daric and prove its security in the Universal Composability model.

Original language	English
Title of host publication	Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings
Editors	Willy Susilo, Xiaofeng Chen, Fuchun Guo, Yudi Zhang, Rolly Intan
Place of Publication	Cham Switzerland
Publisher	Springer
Pages	229-249
Number of pages	21
ISBN (Electronic)	9783031223907
ISBN (Print)	9783031223891
DOIs	https://doi.org/10.1007/978-3-031-22390-7_15
Publication status	Published - 2022
Event	Information Security Conference 2022 - Bali, Indonesia Duration: 18 Dec 2022 → 22 Dec 2022 Conference number: 25th https://link.springer.com/book/10.1007/978-3-031-22390-7 (Proceedings) https://isc2022.petra.ac.id/ (Website)

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	13640
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	Information Security Conference 2022
Abbreviated title	ISC 2022
Country/Territory	Indonesia
City	Bali
Period	18/12/22 → 22/12/22
Internet address	https://link.springer.com/book/10.1007/978-3-031-22390-7 (Proceedings) https://isc2022.petra.ac.id/ (Website)

Keywords

Bitcoin
Lightning network
Payment channel
Scalability
Watchtower

Access to Document

10.1007/978-3-031-22390-7_15

Cite this

Mirzaei, A., Sakzad, A., Yu, J., & Steinfeld, R. (2022). Daric: a storage efficient payment channel with punishment mechanism. In W. Susilo, X. Chen, F. Guo, Y. Zhang, & R. Intan (Eds.), Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings (pp. 229-249). (Lecture Notes in Computer Science; Vol. 13640). Springer. https://doi.org/10.1007/978-3-031-22390-7_15

Mirzaei, Arash ; Sakzad, Amin ; Yu, Jiangshan et al. / Daric : a storage efficient payment channel with punishment mechanism. Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings. editor / Willy Susilo ; Xiaofeng Chen ; Fuchun Guo ; Yudi Zhang ; Rolly Intan. Cham Switzerland : Springer, 2022. pp. 229-249 (Lecture Notes in Computer Science).

@inproceedings{03e8ad0bf06641fd80ebc25b88e94fd3,

title = "Daric: a storage efficient payment channel with punishment mechanism",

abstract = "Lightning Network (LN), the most widely deployed payment channel for Bitcoin, requires channel parties to generate and store distinct revocation keys for all n payments of a channel to resolve fraudulent channel closures. To reduce the required storage in a payment channel, eltoo introduces a new signature type for Bitcoin to enable payment versioning. This allows a channel party to revoke all old payments by using a payment with a higher version number, reducing the storage complexity from O(n) to O(1 ). However, eltoo fails to achieve bounded closure, enabling a dishonest channel party to significantly delay the channel closure process. Eltoo also lacks a punishment mechanism, which may incentivize profit-driven channel parties to close a payment channel with an old state, to their own advantage. This paper introduces Daric, a payment channel with unlimited lifetime for Bitcoin that achieves optimal storage and bounded closure. Moreover, Daric implements a punishment mechanism and simultaneously avoids the methods other schemes commonly use to enable punishment: 1) state duplication which leads to exponential increase in the number of transactions with the number of applications on top of each other or 2) dedicated design of adaptor signatures which introduces compatibility issues with BLS or most post-quantum resistant digital signatures. We also formalise Daric and prove its security in the Universal Composability model.",

keywords = "Bitcoin, Lightning network, Payment channel, Scalability, Watchtower",

author = "Arash Mirzaei and Amin Sakzad and Jiangshan Yu and Ron Steinfeld",

note = "Publisher Copyright: {\textcopyright} 2022, The Author(s), under exclusive license to Springer Nature Switzerland AG.; Information Security Conference 2022, ISC 2022 ; Conference date: 18-12-2022 Through 22-12-2022",

year = "2022",

doi = "10.1007/978-3-031-22390-7_15",

language = "English",

isbn = "9783031223891",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "229--249",

editor = "Willy Susilo and Xiaofeng Chen and Fuchun Guo and Yudi Zhang and Rolly Intan",

booktitle = "Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings",

url = "https://link.springer.com/book/10.1007/978-3-031-22390-7, https://isc2022.petra.ac.id/",

}

Mirzaei, A, Sakzad, A, Yu, J & Steinfeld, R 2022, Daric: a storage efficient payment channel with punishment mechanism. in W Susilo, X Chen, F Guo, Y Zhang & R Intan (eds), Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings. Lecture Notes in Computer Science, vol. 13640, Springer, Cham Switzerland, pp. 229-249, Information Security Conference 2022, Bali, Indonesia, 18/12/22. https://doi.org/10.1007/978-3-031-22390-7_15

Daric: a storage efficient payment channel with punishment mechanism. / Mirzaei, Arash; Sakzad, Amin; Yu, Jiangshan et al.
Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings. ed. / Willy Susilo; Xiaofeng Chen; Fuchun Guo; Yudi Zhang; Rolly Intan. Cham Switzerland: Springer, 2022. p. 229-249 (Lecture Notes in Computer Science; Vol. 13640).

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

TY - GEN

T1 - Daric

T2 - Information Security Conference 2022

AU - Mirzaei, Arash

AU - Sakzad, Amin

AU - Yu, Jiangshan

AU - Steinfeld, Ron

N1 - Conference code: 25th

PY - 2022

Y1 - 2022

N2 - Lightning Network (LN), the most widely deployed payment channel for Bitcoin, requires channel parties to generate and store distinct revocation keys for all n payments of a channel to resolve fraudulent channel closures. To reduce the required storage in a payment channel, eltoo introduces a new signature type for Bitcoin to enable payment versioning. This allows a channel party to revoke all old payments by using a payment with a higher version number, reducing the storage complexity from O(n) to O(1 ). However, eltoo fails to achieve bounded closure, enabling a dishonest channel party to significantly delay the channel closure process. Eltoo also lacks a punishment mechanism, which may incentivize profit-driven channel parties to close a payment channel with an old state, to their own advantage. This paper introduces Daric, a payment channel with unlimited lifetime for Bitcoin that achieves optimal storage and bounded closure. Moreover, Daric implements a punishment mechanism and simultaneously avoids the methods other schemes commonly use to enable punishment: 1) state duplication which leads to exponential increase in the number of transactions with the number of applications on top of each other or 2) dedicated design of adaptor signatures which introduces compatibility issues with BLS or most post-quantum resistant digital signatures. We also formalise Daric and prove its security in the Universal Composability model.

AB - Lightning Network (LN), the most widely deployed payment channel for Bitcoin, requires channel parties to generate and store distinct revocation keys for all n payments of a channel to resolve fraudulent channel closures. To reduce the required storage in a payment channel, eltoo introduces a new signature type for Bitcoin to enable payment versioning. This allows a channel party to revoke all old payments by using a payment with a higher version number, reducing the storage complexity from O(n) to O(1 ). However, eltoo fails to achieve bounded closure, enabling a dishonest channel party to significantly delay the channel closure process. Eltoo also lacks a punishment mechanism, which may incentivize profit-driven channel parties to close a payment channel with an old state, to their own advantage. This paper introduces Daric, a payment channel with unlimited lifetime for Bitcoin that achieves optimal storage and bounded closure. Moreover, Daric implements a punishment mechanism and simultaneously avoids the methods other schemes commonly use to enable punishment: 1) state duplication which leads to exponential increase in the number of transactions with the number of applications on top of each other or 2) dedicated design of adaptor signatures which introduces compatibility issues with BLS or most post-quantum resistant digital signatures. We also formalise Daric and prove its security in the Universal Composability model.

KW - Bitcoin

KW - Lightning network

KW - Payment channel

KW - Scalability

KW - Watchtower

UR - http://www.scopus.com/inward/record.url?scp=85145260558&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-22390-7_15

DO - 10.1007/978-3-031-22390-7_15

M3 - Conference Paper

AN - SCOPUS:85145260558

SN - 9783031223891

T3 - Lecture Notes in Computer Science

SP - 229

EP - 249

BT - Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings

A2 - Susilo, Willy

A2 - Chen, Xiaofeng

A2 - Guo, Fuchun

A2 - Zhang, Yudi

A2 - Intan, Rolly

PB - Springer

CY - Cham Switzerland

Y2 - 18 December 2022 through 22 December 2022

ER -

Mirzaei A, Sakzad A, Yu J, Steinfeld R. Daric: a storage efficient payment channel with punishment mechanism. In Susilo W, Chen X, Guo F, Zhang Y, Intan R, editors, Information Security - 25th International Conference, ISC 2022 Bali, Indonesia, December 18–22, 2022 Proceedings. Cham Switzerland: Springer. 2022. p. 229-249. (Lecture Notes in Computer Science). doi: 10.1007/978-3-031-22390-7_15