zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
Browse Source

Detector English Spec ready (#215) 

Add detector English spec
pull/7804/head
Josef Widder 4 years ago
committed by GitHub
parent
32b811a1fb
commit
d5e0294003
No known key found for this signature in database GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 174 additions and 125 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +18
    -8
      rust-spec/lightclient/README.md
  2. +154
    -115
      rust-spec/lightclient/detection/detection_003_reviewed.md
  3. +2
    -2
      rust-spec/lightclient/verification/verification_002_draft.md

+ 18
- 8
rust-spec/lightclient/README.md View File

@ -12,8 +12,9 @@ verifying a minimal set of data from a network of full nodes (at least one of wh
The light client is decomposed into three components:
- Commit Verification - verify signed headers and associated validator set changes from a single full node
- Fork Detection - verify commits across multiple full nodes and detect conflicts (ie. the existence of forks)
- Commit Verification - verify signed headers and associated validator
set changes from a single full node, called primary
- Fork Detection - verify commits across multiple full nodes (called secondaries) and detect conflicts (ie. the existence of forks)
- Fork Accountability - given a fork, which validators are responsible for it.
## Commit Verification
@ -75,12 +76,21 @@ no bug is reported up to depth k.
## Attack Detection
This is a work-in-progress draft.
The [English specification](detection/detection_001_reviewed.md)
defines blockchain forks and light client attacks, and describes
the problem of a light client detecting them from communication with a network
of full nodes, where at least one is correct.
The [English specification](detection/detection_003_reviewed.md)
defines light client attacks (and how they differ from blockchain
forks), and describes the problem of a light client detecting
these attacks by communicating with a network of full nodes,
where at least one is correct.
The specification also contains a detection protocol that checks
whether the header obtained from the primary via the verification
protocol matches corresponding headers provided by the secondaries.
If this is not the case, the protocol analyses the verification traces
of the involved full nodes
and generates
[evidence](detection/detection_003_reviewed.md#tmbc-lc-evidence-data1)
of misbehavior that can be submitted to a full node so that
the faulty validators can be punished.
There is no TLA+ yet.


rust-spec/lightclient/detection/detection_002_draft.md → rust-spec/lightclient/detection/detection_003_reviewed.md View File


+ 2
- 2
rust-spec/lightclient/verification/verification_002_draft.md View File

@ -646,9 +646,9 @@ func (ls LightStore) TraceTo(lightBlock LightBlock) (LightBlock, LightStore)
### Invariants
#### **[LCV-INV-TP.2]**
#### **[LCV-INV-TP.1]**
It is always the case that *LightStore.LatestVerified.Header.Time > now - trustingPeriod*.
It is always the case that *LightStore.LatestTrusted.Header.Time > now - trustingPeriod*.
> If the invariant is violated, the light client does not have a
> header it can trust. A trusted header must be obtained externally,


Write Preview
Loading…
Cancel
Save