Authenticated Byzantine Fault Tolerance without Public-Key Cryptography

Authenticated Byzantine Fault Tolerance without Public-Key Cryptography (1999)

Cached

Download Links

by Miguel Castro , Barbara Liskov

Citations:

BibTeX

@MISC{Castro99authenticatedbyzantine,
    author = {Miguel Castro and Barbara Liskov},
    title = {Authenticated Byzantine Fault Tolerance without Public-Key Cryptography },
    year = {1999}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

We have developed a practical state-machine replication algorithm that tolerates Byzantine faults: it works correctly in asynchronous systems like the Internet and it incorporates several optimizations that improve the response time of previous algorithms by more than an order of magnitude. This paper describes the most important of these optimizations. It explains how to modify the base algorithm to eliminate the major performance bottleneck in previous systems --- public-key cryptography. The optimization replaces public-key signatures by vectors of message authentication codes during normal operation, and it overcomes a fundamental limitation on the power of message authentication codes relative to digital signatures --- the inability to prove that a message is authentic to a third party. As a result, authentication is more than two orders of magnitude faster while providing the same level of security.

Citations

2506	A method for obtaining digital signatures and public-key cryptosystems - Rivest, Shamir, et al.
1309	Distributed Algorithms - Lynch - 1996
1300	Impossibility of distributed consensus with one faulty process - Fischer, Lynch, et al. - 1985
725	the Ordering of Events in a Distributed System - Time - 1978
716	Implementing fault-tolerant services using the state machine approach: a tutorial - Schneider - 1990
516	The part-time parliament - Lamport - 1998
496	Weighted voting for replicated data - Gifford - 1979
476	Practical byzantine fault tolerance - CASTRO, LISKOV - 1999
366	Byzantine quorum systems - Malkhi, Reiter - 1997
221	Timestamps in key distribution protocols - Denning, Sacco - 1981
210	Atomic broadcast: from simple message diffusion to Byzantine agreement - Cristian, Aghili, et al. - 1995
135	The Rampart Toolkit for building high-integrity services - Reiter - 1995
132	Asynchronous consensus and broadcast protocols - Bracha, Toueg - 1985
117	The SecureRing protocols for securing group communication - Kihlstrom, Moser, et al. - 1998
95	Message authentication with one-way hash functions - Tsudik - 1992
83	Secure and scalable replication in phalanx - MALKHI, K - 1998
83	The MD5 message-digest algorithm. Internet RFC-1321. Available at ftp://ftp.isi.edu/in-notes/rfc1321.txt - Rivest - 1992
80	Linearizable concurrent objects - Herlihy, Wing - 1988
72	A secure group membership protocol - Reiter - 1994
69	D.: A New Paradigm for Collision-Free Hashing: Incrementality at Reduced Cost - Bellare, Micciancio - 1997
65	The status of MD5 after a recent attack - Dobbertin - 1996
65	Mdx-mac and building fast macs from hash functions - Preneel, Oorschot - 1995
62	Unreliable intrusion detection in distributed computations - Malkhi, Reiter - 1997
59	Viewstamped replication: A new primary copy method to support highly-available distributed systems - Oki, Liskov - 1988
56	Fully polynomial byzantine agreement for > processors in + 1 rounds - Garay, Moses - 1998
44	A high-throughput secure reliable multicast protocol - Malkhi, Reiter - 1997
44	Performance Comparison of Public-Key Cryptosystems - Wiener - 1998
20	A Correctness Proof for a Practical Byzantine-Fault-Tolerant Replication Algorithm - Castro, Liskov - 1999
18	A specialization toolkit to increase the diversity of operating systems - Pu, Black, et al. - 1996
15	Optimal Asynchronous Byzantine Agreement - Canneti, Rabin - 1992
6	Secure Agreement Protocols - Reiter - 1994