NEO is ranked as one of the top blockchains by market capitalization. We provide a security analysis on its backbone consensus protocol, called delegated Byzantine Fault Tolerance (dBFT). The dBFT protocol has been employed by NEO and other blockchains like ONT. dBFT claims to guarantee safety when no more than nodes are Byzantine, where n is the total number of consensus participants. However, we identify attacks to break the safety with no more than f Byzantine nodes. This paper provides the following contributions. First, we evaluate NEO’s source code and present the procedures of dBFT. Then, we present two attacks to break the safety of dBFT protocol with no more than f nodes. Therefore, the system cannot guarantee the claimed safety. We also provide recommendations on how to fix the system against the identified attacks.
CITATION STYLE
Wang, Q., Yu, J., Peng, Z., Bui, V. C., Chen, S., Ding, Y., & Xiang, Y. (2020). Security Analysis on dBFT Protocol of NEO. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 12059 LNCS, pp. 20–31). Springer. https://doi.org/10.1007/978-3-030-51280-4_2
Mendeley helps you to discover research relevant for your work.