International Association for Cryptologic Research

International Association
for Cryptologic Research


Paper: Blockchains from Non-Idealized Hash Functions

Juan A. Garay
Aggelos Kiayias
Giorgos Panagiotakos
Search ePrint
Search Google
Abstract: The formalization of concrete, non-idealized hash function properties sufficient to prove the security of Bitcoin and related protocols has been elusive, as all previous security analyses of blockchain protocols have been performed in the random oracle model. In this paper we identify three such properties, and then construct a blockchain protocol whose security can be reduced to them in the standard model assuming a common reference string (CRS). The three properties are: {\em collision resistance}, {\em computational randomness extraction} and {\em iterated hardness}. While the first two properties have been extensively studied, iterated hardness has been empirically stress-tested since the rise of Bitcoin; in fact, as we demonstrate in this paper, any attack against it (assuming the other two properties hold) results in an attack against Bitcoin. In addition, iterated hardness puts forth a new class of search problems which we term {\em iterated search problems} (ISP). ISPs enable the concise and modular specification of blockchain protocols, and may be of independent interest.
Video from TCC 2020
  title={Blockchains from Non-Idealized Hash Functions},
  booktitle={Theory of Cryptography},
  author={Juan A. Garay and Aggelos Kiayias and Giorgos Panagiotakos},