Papers
Topics
Authors
Recent
Search
2000 character limit reached

FIRST: FrontrunnIng Resilient Smart ConTracts

Published 2 Apr 2022 in cs.CR | (2204.00955v4)

Abstract: Owing to the meteoric rise in the usage of cryptocurrencies, there has been a widespread adaptation of traditional financial applications such as lending, borrowing, margin trading, and more, to the cryptocurrency realm. In some cases, the inherently transparent and unregulated nature of cryptocurrencies leads to attacks on users of these applications. One such attack is frontrunning, where a malicious entity leverages the knowledge of currently unprocessed financial transactions submitted by users and attempts to get its own transaction(s) executed ahead of the unprocessed ones. The consequences of this can be financial loss, inaccurate transactions, and even exposure to more attacks. We propose FIRST, a framework that prevents frontrunning attacks, and is built using cryptographic protocols including verifiable delay functions and aggregate signatures. In our design, we have a federated setup for generating the public parameters of the VDF, thus removing the need for a single trusted setup. We formally analyze FIRST, prove its security using the Universal Composability framework and experimentally demonstrate the effectiveness of FIRST.

Definition Search Book Streamline Icon: https://streamlinehq.com
References (55)
  1. Flashbots: Frontrunning the MEV Crisis, 2022-9-25. https://www.coindesk.com/sparkpool-taichi-mining-network-front-running-defi/.
  2. dYdX, 2022-12-1. https://dydx.exchange/.
  3. DeFi Pulse, 2022-10-08. https://defipulse.com/.
  4. AAVE, Accessed:2022-9-25. https://aave.com/.
  5. Ethereum Name Service, 2022-9-25. https://ens.domains/.
  6. Unstoppable Domains, 2022-9-25. https://docs.unstoppabledomains.com/.
  7. Amazon.eth ENS domain owner disregards 1M USDC buyout offer on OpenSea, 2022-9-25. https://cointelegraph.com/.
  8. More than $10bn in volume has now been traded on OpenSea in 2021, 2022-9-25. https://yahoo.com.
  9. Eden Network, 2022-9-25.
  10. Ethermine, 2022-9-25. https://ethermine.org/api/pool.
  11. slowswap, 2023-8-12.
  12. theradius, 2023-8-12.
  13. yearn.finance, 2022-9-25. https://yearn.finance/.
  14. Compound Finance, 2022-9-25. https://compound.finance/.
  15. makerDAO, 2022-9-25. https://makerdao.com/en/.
  16. SoK: Mitigation of Front-running in Decentralized Finance. Cryptology ePrint Archive, 2021.
  17. Verifiable delay functions. In Annual International Cryptology Conference. Springer, 2018.
  18. A Survey of Two Verifiable Delay Functions. IACR Cryptol. ePrint Arch., 2018.
  19. Aggregate and verifiably encrypted signatures from bilinear maps. In International conference on the theory and applications of cryptographic techniques. Springer, 2003.
  20. Enter the Hydra: Towards Principled Bug Bounties and Exploit-Resistant Smart Contracts. In 27th USENIX Security Symposium, 2018.
  21. Ran Canetti. Universally composable signature, certification, and authentication. In Proceedings. 17th IEEE Computer Security Foundations Workshop, 2004., 2004.
  22. CertiK. Certik, 2023-12-5. https://www.certik.com/resources/blog/introducing-kyc-by-certik/.
  23. The chia network blockchain, 2019.
  24. Flash Boys 2.0: Frontrunning in Decentralized Exchanges, Miner Extractable Value, and Consensus Instability. In IEEE Symposium on Security and Privacy (SP), 2020.
  25. Multi-party timed commitments. arXiv preprint arXiv:2005.04883, 2020.
  26. Multi-party Virtual State Channels. Advances in Cryptology - EUROCRYPT, 2019.
  27. Standard model time-lock puzzles: Defining security and constructing via composition. Cryptology ePrint Archive, Paper 2023/439, 2023. https://eprint.iacr.org/2023/439.
  28. Sok: Transparent dishonesty: front-running attacks on blockchain. Financial Cryptography, 2019.
  29. Accurate and decentralized timestamping using smart contracts on the Ethereum blockchain. Information Processing & Management, 2021.
  30. Non-malleable time-lock puzzles and applications. Cryptology ePrint Archive, Paper 2020/779, 2020. https://eprint.iacr.org/2020/779.
  31. Cache attacks on Intel SGX. In Proceedings of the 10th European Workshop on Systems Security, 2017.
  32. Order-fair consensus in the permissionless setting. In Proceedings of the 9th ACM on ASIA Public-Key Cryptography Workshop, 2022.
  33. Themis: Fast, Strong Order-Fairness in Byzantine Consensus. Cryptology ePrint Archive, 2021.
  34. TEX-A Securely Scalable Trustless Exchange. IACR Cryptol. ePrint Arch., 2019.
  35. Klaus Kursawe. Wendy, the good little fairness widget: Achieving order fairness for blockchains. In Proceedings of the 2nd ACM Conference on Advances in Financial Technologies, 2020.
  36. Non-interactive cryptographic timestamping based on verifiable delay functions. In International Conference on Financial Cryptography and Data Security. Springer, 2020.
  37. Craig McCann. Detecting Personal Trading Abuses, 2000. https://www.sec.gov/rules/other/f4-433/mccann1.htm.
  38. BDoS: Blockchain Denial-of-Service. In Jay Ligatti, Xinming Ou, Jonathan Katz, and Giovanni Vigna, editors, ACM SIGSAC Conference on Computer and Communications Security, 2020.
  39. Alex Obadia. DeFi Has a Front-Running Problem. Sparkpool’s Potential Fix Is Launching This Month, 2022-9-25. https://medium.com/flashbots/frontrunning-the-mev-crisis-40629a613752/.
  40. Varys: Protecting SGX enclaves from practical side-channel attacks. In 2018 Usenix Annual Technical Conference, 2018.
  41. Krzysztof Pietrzak. Simple verifiable delay functions. In Innovations in theoretical computer science conference (ITCS). Schloss Dagstuhl-Leibniz-Zentrum fuer Informatik, 2018.
  42. Quantifying blockchain extractable value: How dark is the forest? In 2022 IEEE Symposium on Security and Privacy (SP). IEEE, 2022.
  43. Attacking the defi ecosystem with flash loans for fun and profit. In International Conference on Financial Cryptography and Data Security. Springer, 2021.
  44. Time-lock puzzles and timed-release crypto. Massachusetts Institute of Technology. Laboratory for Computer Science, 1996.
  45. Sushiswap. Sushiswap, 2022-9-25. https://sushi.com/.
  46. EigenLayer Team. Eigenlayer: The restaking collective, 2022-9-25. https://docs.eigenlayer.xyz/whitepaper.pdf.
  47. Frontrunner jones and the raiders of the dark forest: An empirical study of frontrunning on the Ethereum blockchain. In 30th USENIX Security Symposium, 2021.
  48. Uniswap. Uniswap, 2022-9-25. https://uniswap.org/.
  49. Mitigating Frontrunning Attacks in Ethereum. In Proceedings of the Fourth ACM International Symposium on Blockchain and Secure Critical Infrastructure, 2022.
  50. vbuterin. EIP 1559 FAQ, 2022-9-25. https://years.ethereum.org/@vbuterin/eip-1559-faq/.
  51. Cyclic Arbitrage in Decentralized Exchanges. Available at SSRN 3834535, 2022.
  52. Sok: Decentralized finance (defi). arXiv preprint arXiv:2101.08778, 2021.
  53. Benjamin Wesolowski. Efficient verifiable delay functions. In Annual International Conference on the Theory and Applications of Cryptographic Techniques. Springer, 2019.
  54. A2MM: Mitigating Frontrunning, Transaction Reordering and Consensus Instability in Decentralized Exchanges. arXiv preprint arXiv:2106.07371, 2021.
  55. High-frequency trading on decentralized on-chain exchanges. In 2021 IEEE Symposium on Security and Privacy (SP), 2021.

Summary

No one has generated a summary of this paper yet.

Paper to Video (Beta)

No one has generated a video about this paper yet.

Whiteboard

No one has generated a whiteboard explanation for this paper yet.

Open Problems

We haven't generated a list of open problems mentioned in this paper yet.

Continue Learning

We haven't generated follow-up questions for this paper yet.

Collections

Sign up for free to add this paper to one or more collections.

Tweets

Sign up for free to view the 5 tweets with 10 likes about this paper.