TY - GEN
T1 - Plumo
T2 - 26th International Conference on Financial Cryptography and Data Security, FC 2022
AU - Vesely, Psi
AU - Gurkan, Kobi
AU - Straka, Michael
AU - Gabizon, Ariel
AU - Jovanovic, Philipp
AU - Konstantopoulos, Georgios
AU - Oines, Asa
AU - Olszewski, Marek
AU - Tromer, Eran
N1 - Publisher Copyright:
© 2022, International Financial Cryptography Association.
PY - 2022
Y1 - 2022
N2 - Syncing the latest state of a blockchain can be a resource-intensive task, driving (especially mobile) end users towards centralized services offering instant access. To expand full decentralized access to anyone with a mobile phone, we introduce a consensus-agnostic compiler for constructing ultralight clients, providing secure and highly efficient blockchain syncing via a sequence of SNARK-based state transition proofs, and prove its security formally. Instantiating this, we present Plumo, an ultralight client for the Celo blockchain capable of syncing the latest network state summary in just a few seconds even on a low-end mobile phone. In Plumo, each transition proof covers four months of blockchain history and can be produced for just $25 USD of compute. Plumo achieves this level of efficiency thanks to two new SNARK-friendly constructions, which may also be of independent interest: a new BLS-based offline aggregate multisignature scheme in which signers do not have to know the members of their multisignature group in advance, and a new composite algebraic-symmetric cryptographic hash function.
AB - Syncing the latest state of a blockchain can be a resource-intensive task, driving (especially mobile) end users towards centralized services offering instant access. To expand full decentralized access to anyone with a mobile phone, we introduce a consensus-agnostic compiler for constructing ultralight clients, providing secure and highly efficient blockchain syncing via a sequence of SNARK-based state transition proofs, and prove its security formally. Instantiating this, we present Plumo, an ultralight client for the Celo blockchain capable of syncing the latest network state summary in just a few seconds even on a low-end mobile phone. In Plumo, each transition proof covers four months of blockchain history and can be produced for just $25 USD of compute. Plumo achieves this level of efficiency thanks to two new SNARK-friendly constructions, which may also be of independent interest: a new BLS-based offline aggregate multisignature scheme in which signers do not have to know the members of their multisignature group in advance, and a new composite algebraic-symmetric cryptographic hash function.
KW - Aggregate multisignatures
KW - SNARKs
KW - Ultralight clients
UR - http://www.scopus.com/inward/record.url?scp=85142737411&partnerID=8YFLogxK
U2 - 10.1007/978-3-031-18283-9_30
DO - 10.1007/978-3-031-18283-9_30
M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???
AN - SCOPUS:85142737411
SN - 9783031182822
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 597
EP - 614
BT - Financial Cryptography and Data Security - 26th International Conference, FC 2022, Revised Selected Papers
A2 - Eyal, Ittay
A2 - Garay, Juan
PB - Springer Science and Business Media Deutschland GmbH
Y2 - 2 May 2022 through 6 May 2022
ER -