A Formally Verified Protocol for Log Replication with Byzantine Fault Tolerance

by   Joel Wanner, et al.

Byzantine fault tolerant protocols enable state replication in the presence of crashed, malfunctioning, or actively malicious processes. Designing such protocols without the assistance of verification tools, however, is remarkably error-prone. In an adversarial environment, performance and flexibility come at the cost of complexity, making the verification of existing protocols extremely difficult. We take a different approach and propose a formally verified consensus protocol designed for a specific use case: secure logging. Our protocol allows each node to propose entries in a parallel subroutine, and guarantees that correct nodes agree on the set of all proposed entries, without leader election. It is simple yet practical, as it can accommodate the workload of a logging system such as Certificate Transparency. We show that it is optimal in terms of both required rounds and tolerable faults. Using Isabelle/HOL, we provide a fully machine-checked security proof based upon the Heard-Of model, which we extend to support signatures. We also present and evaluate a prototype implementation.



There are no comments yet.


page 1

page 2

page 3

page 4


BFT Protocol Forensics

Byzantine fault-tolerant (BFT) protocols allow a group of replicas to co...

SeeMoRe: A Fault-Tolerant Protocol for Hybrid Cloud Environments

Large scale data management systems utilize State Machine Replication to...

Verification of Threshold-Based Distributed Algorithms by Decomposition to Decidable Logics

Verification of fault-tolerant distributed protocols is an immensely dif...

TBFT: Understandable and Efficient Byzantine Fault Tolerance using Trusted Execution Environment

While the requirements for reliability increasing rapidly in distributed...

Making Reads in BFT State Machine Replication Fast, Linearizable, and Live

Practical Byzantine Fault Tolerance (PBFT) is a seminal state machine re...

CASPaxos: Replicated State Machines without logs

CASPaxos is a replicated state machine (RSM) protocol, an extension of S...

Unmanned Air-traffic Management (UTM): Formalization, a Prototype Implementation, Verification, and Performance Evaluation

Unmanned Aircraft Systems (UAS) traffic management system (UTM) is neces...
This week in AI

Get the week's most popular data science and artificial intelligence research sent straight to your inbox every Saturday.