Motivation

Technical Whitepaper

1 Motivation

In a networked world, decision making is dominated by peer-to-peer recommender systems. How many times have you gone to online recommender systems to find good restaurants in a new neighborhood, good doctors, good accommodation, good products to buy? And how many times have you seen a review stating: “Don’t trust the reviews on this site.”?

Why would there be doubt on the trustworthiness of such services and how can we clear this doubt out. Let’s answer these questions one by one.

– Why? Existing recommender systems are controlled by a single entity (company) which makes profit (1) from the vendors whose services are ranked, (2) from the users via advertising.

– How? Fueled by the blockchain movement, society has come to understand that rather than trusting a corporation to act on the user’s interest, they can actually “take over” trust and offer the service in a decentralized manner, so that no single entity needs to be trusted for the system to work on the user’s interest.

→ Why are we creating Möbby?

Möbby is a blockchain that bares the promise to revolutionize the way we take decisions online, by holding and improving transparent recommender systems that are not controlled by any single entity.

Why a new blockchain? Does the world need another blockchain for achieving that? Can’t we just import such services on existing ones? As straightforward as this might look, the answer is: No!

A blockchain which supports such recommender systems, would need to be tailored to useability so a generic smart contract is by far a sub-optimal solution. So designing a new system which from the blueprints aims to accommodate such recommendations is anyway a good idea. But this is not the main motivation: Most importantly, the above does not address one of the most basic plagues of all existing recommender systems: Why should a vendor care about maintaining a high reputation? There is always a solution to start from scratch (with a new name) and have people close to you give you a high ranking. Is there a way to avoid such “malicious resets”. Möbby will make that possible.

In a nutshell, our design goals are two-fold: (1) Build a simple, scalable decentralized reputation-based ledger with optimized finality, communication, and computation, and with a formal proof that relates the security of the protocol to the quality of the reputation system; importantly, our PoR-blockchain aims to satisfy a new intuitive notion of participation fairness that promotes inclusivity. (2) To address the subjectivity of reputation as a resource, by backing our blockchain’s safety and liveness with a fallback and underwriting mechanisms that ensure that even if the reputation estimate is severely flawed, our protocol does not create long forks.

→ Please explain me Möbby in a few sentences.

At its heart, Möbby includes a layer-1 blockchain protocol and an associated token which relies on a novel concept termed: “Proof of Reputation” (PoR). The system utilizes the reputation (assigned to its servers via a novel recommender system) by its users to iteratively select committees of reputable nodes that propose and vote on the next block in a hash-based blockchain—in each round, one such committee is chosen and proposes one block which might include multiple transactions and reviews. By a methodology, which combines PoR with a light-weight Proof-of-Stake (PoS) mechanism, the system ensures that (1) the recommendation of the committees can be trusted, and (2) even nodes with low reputation (that are trying to build it up) get their fair chance. But how does this address the issues discussed above? This is achieved by a sophisticated reward mechanism which shares block rewards to the voters of every block according to their reputation and service quality. This means that nodes/servers are incentivized to behave and users are incentivized to increase their ranking so that they maximize the profit.

On a more technical tone, Möbby is a hybrid blockchain-ledger design which is primarily based on reputation but uses a Nakamoto ledger as fallback. We use the term Nakamoto ledger similar to [17] to refer to blockchain-based ledger protocols that follow the eventual consensus paradigm (e.g., Bitcoin, Ouroboros, etc) and realize a ledger as described in [18, 16]. For the purpose of exposition, in this paper, we focus on the fallback ledger being proof-of-stake-based and tune our analysis accordingly—we refer to this paradigm as PoR/PoS-hybrid. This is also the choice made by the Möbby engineering team. However, the blueprint of our treatment can be extended to other types of fallback blockchains (even those that do not follow the Nakamoto paradigm) under their respective assumptions. In the following we provide an overview of our design and discuss its properties in comparison to existing approaches.

→ Why call it Möbby?

The name is inspired by the Möbius strip, a mathematical object often used to symbolize self-correcting processes. The Möbius strip, known for having only one surface and one edge, represents continuous cycles and transformations. This reflects the design of the Möbby blockchain, where reputation serves as the cornerstone: a robust reputation system enables a faster and more scalable blockchain. As the system evolves, it is designed to incentivize users to improve the underlying reputation system, which in turn enhances the blockchain itself. This creates a self-correcting pattern, similar to the infinite loop of the Möbius strip, where each improvement feeds into the next, driving further efficiency and scalability.

1.1 What Makes Möbby Appealing?

Reputation has in recent years become a topic of great interest in blockchain literature, being used as a detection mechanism and defence against malicious nodes. Nevertheless, previous works focused only on security arguments against specific attacks, proof-of-concept experiments, or economic arguments. Möbby stands out as the first provably secure reputation-based consensus blockchain. That is, given our core assumptions hold, our protocol is proven to satisfy the properties of security, blockchain liveness, and transaction liveness—even against attacks that have not been discovered yet.

Below, we pinpoint what makes Möbby an appealing blockchain. We also direct the interested reader to Section 1.2 for an overview of related academic results, and to the tokenomics analysis at the end of this paper for concrete use-cases and applications.

Reputation as a Resource: Reputation, the underlying assumption of the Möbby blockchain, can be a highly prized and useful resource. Unlike Proof-of-Work or Proof-of-Stake blockchains where the resource used (specialized mining hardware or stake) has value only within the blockchain system itself, being a high-reputation Möbby user is evidence of trustworthiness even outside of our system. Möbby can also become a platform for reputation-based applications, such as decentralized recommender systems, or rating systems for crowdfunded projects. For a first look at some of the myriad of applications that can be built on the Möbby blockchain, see also Section 1.4.

Resilience to Reputation System Failure: Möbby takes advantage of our reputation system, which, provided its accuracy, improves several properties of existing constructions. In Section 6 we will discuss how to incentivize parties to improve their reputation through honest behaviour, but nevertheless it is impossible to know (as is the case with any assumption on resources, like honest majority of work in PoW blockchains) whether our reputation system is always accurate. Indeed, previous works on reputation-based consensus in research literature have discussed little of contingencies when their reputation systems fail. Möbby addresses this issue with our fallback chain, which ensures basic security properties like consistency, even if our reputation system is grossly inaccurate. This means our reputation-based consensus can be naturally optimistic and efficient, while still allowing our users the peace-of-mind that even if errors were to occur, they would be swiftly detected and resolved on our fallback chain.

Fairness: An aspect of reputation-based consensus which has received little attention in previous works, is the idea of fairness. That is, all parties (even those with lower reputation, e.g., due to being new) have a chance to create blocks. Fairness is important for decentralization, and in particular helps prevent the effect of ‘the rich getting richer’.

Efficiency and Scalability: A reputation system estimates the probabilities that parties behaves maliciously, which in turn provides information to the protocol designer (and parties) on the corruption capabilities of the adversary. This allows us to avoid the need for communication- and setup-heavy adaptive security tools, e.g., compute and communicate proofs of verifiable random functions.¹ Additionally, it allows us to associate reputation parties with public keys and public physical IDs, e.g., public IP address, which means they can communicate through direct point-to-point channels rather than diffusion/gossip network. This yields both concrete and asymptotic improvements. First, depending on the network topology, this can improve the overall concrete message complexity and yield denial-of-service (DoS) attack protection in practice—open diffusion networks are more susceptible to DoS. Additionally, as most communication occurs only among the (polylogarithmic) size slot committees and between these committees and the player set, even ignoring the overhead of gossiping, the overall message complexity per slot is O(nlog ^ϵn) as opposed to the Ω(n²) complexity of standard blockchains relying solely on flooding.

High Throughput (Transaction-Liveness): Existing solutions implicitly assign to each block one effective-block proposer [65, 39, 16, 49]—multiple parties might win the lottery but only the proposal of one is adopted. Instead, in our PoR-blockchain a (small) committee BC of proposers is chosen in each slot, and the union of their transactions-views is included. To ensure that honest transactions are included in a block it suffices that any of the block proposers in the corresponding BC is honest. This will be true with probability at least 1 - 1∕2^L, where L is the size of BC, as we are choosing L parties out of BA which has honest majority. In comparison, in systems that choose one proposer per block, this probability is upper-bounded by (roughly) t∕n, where t is the number of corrupted parties/resources (e.g., the amount of adversarially owned stake) and n is the total amount of resources. The above discrepancy can be impactful in situations where the transaction-submitting mechanism has high latency—e.g., due to bad/restricted access to the blockchain network, or some points to the blockchain network are unreliable.

Finality: Since the parties decide on the next block by means of a Byzantine broadcast protocol, agreement is achieved instantly by the end of the slot. This is similar to standard synchronous BFT-based blockchains, and is in contrast to Nakamoto-style blockchains [74, 30, 65] which achieve eventual consistency, aka the common prefix property [48, 78]. We stress that this is the case assuming the reputation system is accurate. One can argue that this might be an insufficient guarantee as to get full confidence and some users might want to wait for the situation to settle also on the fallback chain—i.e., ensure that no honest party contests their view. Nonetheless, it allows for a tiered use of the assumptions, which naturally fits situations where different transactions have different degree of importance, as is for example the case in cryptocurrencies: For small-amount transactions the users can trust the PoR-blockchain and consider the transaction settled as soon as it is finalized there. The more risk-averse users (or users with high-stake transactions) can wait for the fallback chain to confirm that there is no accusation. The above mode is the natural blockchain analog of how reputation is used in reality: If a service or an investment is recommended by a highly reputable source, then it typically enjoys higher trust. However, for risky actions, the actors usually seek further assurances that might take longer time.

1.2 Related Works

Asharov et al. [13] defined reputation systems for multi-party computation (MPC) and proved necessary and sufficient conditions on a static reputation system for the existence of fair MPC—in particular, for the existence of an algorithm for selecting a committee where the majority of the participants is honest.

To our knowledge, ours is the first work which puts forth a rigorous specification, protocol, model, and treatment of reputation-system-based blockchains. Attempts to combine consensus with reputation were previously made in the context of blockchains and cryptocurrencies (see Section 1.3 below for an overview). None of these attempts addresses the subjective nature of the reputation systems, i.e., if the reputation system is inaccurately estimated, their security fails. This is in contrast to our fallback guarantee which allows us to preserve basic safety (unforkability) properties which are essential in blockchains and cryptocurrencies. Additionally many of these works lack a protocol specification, security model and proofs, and often even a credible security argument [46], and/or rely on complicated reputation mechanisms and exogenous limitations on the adversary’s corruption power [36]. Alternative approaches, use the proof-of-work (bitcoin) paradigm to assign reputation, by considering miners more reputable if they allocate, over a long period, more hashing-power to their protocol [88].

Notably, [25] proposed a reputation-module which can build a scalable blockchain on top of a BFT-style consensus protocol, e.g., PBFT or Honey Badger [73]. The idea is that this reputation module can be used by the parties to select smaller next round committees. In addition to lacking a security proof, the entire module needs to operate over a broadcast channel created by the original BFT consensus protocol, as it uses a global view of the computation to accurately readjust the reputations. Hence, its security relies on the security of the underlying consensus protocol, even if reputation is accurate. Instead our PoR-blockchain construction is secure under the assumptions of accuracy of the reputation system, irrespective of the properties of the fallback blockchain. The result from [25] also proposed a notion of reputation-fairness, which renders a reputation-based lottery more fair the closer its outcome is to a uniform sample. This notion of fairness seems unsuitable for our goals, as it is unclear why low distance from uniform is a desirable property. Why should it be considered fair that a large set of parties with low reputation has better relative representation in the output than a small set with higher reputation? And how would this incentivize parties to build up their reputation? Our fairness definition addresses this concern, at a very low overhead.

Hybrid blockchains which use an alternative consensus mechanism as a fallback were also previously used in Thunderella [79] and Meshcash [23]. Their protocols rely on smart refinements of the proof-of-work and/or proof-of-space-time paradigms, and uses novel methods to accelerate the blockchain and improve scalability and finality when a higher amount of the underlying resource is in honest hands while ensuring safety even under weaker guarantees. Finally, Afgjort [70] devises a finality layer module on top of a proof-of-stake blockchain. Their construction achieves fast finality under the combination of the assumptions underlying the PoS-blockchain—typically, honest majority of stake—and the assumption supporting the security of the finality layer. In contrast, our PoR/PoS-hybrid blockchain is secure as long as the reputation-system is accurate irrespective of the security of the underlying PoS-blockchain.

1.3 Reputation-based Blockchain Protocols: An Overview

In this section, we discuss the various works that connect the concepts of the blockchain and reputation systems. We first compare and contrast Möbby with the various ways reputation can be the basis of the core consensus mechanism of the blockchain protocol, including previous works in Proof-of-Reputation blockchains, BFT-based systems, Proof-of-X, and Sharding.

For completeness, we also discuss the various ways reputation systems can improve existing blockchain solutions, outside of consensus, as well as Proof-of-Authority blockchains. Reputation can also used to improve the security and performance of other aspects of the protocol, such as informing parties of reliable nodes on the network to achieve more secure message propagation [35, 80]. Lastly, as an aside, while this section will focus on blockchain systems based on reputation, the immutability property of blockchains makes it a natural basis for reputation systems as well. We point the interested reader to the plethora of works that leverage blockchain security properties to create a reputation system; several surveys on this topic can be found in [20, 10, 22].

Proof-of-Reputation

In the past few years there has been a line of research on Proof-of-Reputation (PoR) blockchains, which numerically quantify the reputation of individual nodes and use reputation to determine the eligibility of these nodes to participate in the blockchain consensus. PoR has been employed in various applications, such as to signify the trustworthiness of nodes in Internet-of-Vehicles [33] or industrial Internet-of-Things [86], or to disincentivize miners from ordering transactions to their own advantage [81].

One method reputation is generated in these works is via the aggregate of user ratings of the node’s quality of service [46]. The node with the highest trust is then chosen to create the next block. Several later works follow this method of generating reputation via ratings, such as [54] where reputation stem from the end user reviews, [91] where network nodes evaluate each other’s performance, and [12] where these evaluation are weighted by the evaluator’s reputation.

However, while basing reputation on participant feedback can allow quick detection of malicious behaviour, it is undeniable that rating and reviews can be highly subjective. Moreover, this kind of system can be manipulated by bad actors [46] to, for example, reduce the reputation of honest parties by repeatedly giving them poor reviews. Thus, several works have instead based reputation on the node’s own actions, e.g., whether they verified the valid transactions [94], or whether they have supported a bad block [27]. This non-subjective reputation system will be the method we follow. Lastly, another type of reputation system is the delegated PoR, which allows nodes to assign trust for specific parties as block producers; the weight of this assignment is based on the node’s reputation, and other factors like stake, resource usage [41] or carbon emission contribution in carbon Emission Trading Systems [56]. Though Möbby will also allow parties to endorse their reputation to others, our PoR consensus will only depend on the parties’ reputation, and reputation can increase or decrease based on the honesty of the party’s behavior, leading to a simpler scheme that is more adaptable to corrupt nodes.

Reputation Systems in BFT-based Blockchains

Like Möbby’s consensus, Byzantine Fault Tolerant (BFT)-based blockchain protocols generally offer finality, and the next block is often decided by a committee of parties. Reputation can be used to mitigate the strong assumption on a two-thirds honest majority, by removing or reducing the importance of likely corrupt nodes. For example, in [68] faulty nodes can be reported on the blockchain with evidence of their poor behavior, leading to a lower probability of being picked as the primary node in the practical BFT (PBFT) consensus, and in [83] high reputation parties vote on the next block, with their votes weighted by their reputation. Committees in BFT-protocols can also be selected based on reputation, which may be computed from an online learning algorithm via features such as response time [29], or adjusted based on whether consensus was reached when the node is selected as a committee member [26, 24]. Reputation values are also used as a threshold for participation, by limiting consensus nodes to the top 60% of reputation parties [31], or getting rid of parties with negative reputation [93]. See also below (“Reputation in the Blockchain Protocol Outside of Consensus”).

Proof-of-X

Reputation systems can a be valuable addition to Proof-of-Work (PoW) blockchains. For example, in [89] a miner’s reputation is based on his ‘integrated power’—the amount of valid work done over a period of time. In [19] PoW miners with higher reputation can create blocks by solving an easier puzzle, and [28] generalized this idea to Proof-of-X (where ‘X’ refers to work, stake, or some other assumption) blockchain while also requiring parties to place a security deposit as assurance of their good behavior.

Sharding

Sharding protocols are blockchain protocols that achieve higher throughput by partitioning the computation tasks (such as transaction validation) across several groups of nodes. Reputation has been used to select shard leaders [57, 87], or to determine the parties’ voting power [14].

Reputation in the Blockchain Protocol Outside of Consensus.

A prominent use case of reputation systems in blockchain applications, outside of consensus, is in Internet-of-Things (IoT), in particular vehicular networks [64, 62, 71] where vehicles share resources such as sensor data. In these works, reputation can be used to determine the trustworthiness of the shared resource and other vehicles, or to remove bad actors. The former can be generalized as schemes that rank the importance of each transaction [90, 92, 55], for example to decide on the order in which transactions are validated [90, 92]. The latter can be generalized to disincentivizing misbehaving miners, such as excluding or reducing the importance of low-reputation nodes [34, 11, 40, 84], or enforcing reputation biases in mining pool member selection [59, 75, 85]. An example of a deployed blockchain with a reputation system is Celo [60], which employs the Eigentrust [61] algorithm to assign a reputation score for each identity, in order to assist users in deciding who they should trust to send their coins to.

A Comparison with Proof-of-Authority Blockchains

Finally, we discuss and compare Möbby with the various deployed Proof-of-Authority (PoA) blockchains. Proof-of-Authority has become popular in recent years, having been adopted by various systems such as Binance [1], VeChain [9], Eurus [2], and Ethereum [4]. First proposed by Ethereum co-founder Gavin Wood [5], PoA allows only a limited number of known and authorized parties to become consensus participants. For example, in Binance (which calls their consensus “Proof-of-Staked-Authority”), parties stake an amount of their coins to vie for a spot in the validator set, and the top 21 nodes with most amount staked become validators. On the other hand, nodes in VeChain go through a rigorous know-your-customer (KYC) process in order to become an authority.

Outside of its usefulness in small, private chains, the small participant set in a PoA consensus results in a faster consensus and block production time. On the other hand, this also implies PoA is more centralized—that is, only a small number of nodes need to behave maliciously for the system to fail. Some PoA systems attempt to prevent this by penalizing recognizable misbehaviour by slashing some of the validator’s coins (e.g. Binance), or requiring the authorized parties to reveal their identity (e.g. VeChain), and thus risk their real-life reputation if they misbehave. GoChain [3], which calls its consensus ‘Proof-of-Reputation’ (which, while having the same name, is quite different from Möbby’s consensus and PoR in research literature) extends this idea by requiring consensus participants to have important enough reputation. It does so by allowing only large companies with more to lose to become an authoritative node. Regardless, in the blockchains described above, there is no direct representation of reputation in the blockchain system itself. Thus, unlike Möbby’s Proof-of-Reputation system, in PoA the decrease in reputation due to misbehavior in the blockchain is unquantified. Moreover, the small number of authority nodes means that collective misbehavior due to cyberattacks becomes more likely, and unlike Möbby which enjoys fallback security in case of reputation system failure, there is little resilience to flaws in the authority node selection process.

1.4 Möbby Use Cases and Future Applications

The Möbby blockchain offers the following to all our users:

Reputation data: Users will be able to take advantage of our transparent, on-chain reputation data to make decisions about products or services, train a machine learning algorithm, or create their own recommender system.
Incentives: The Möbby blockchain—in particular the rewards for participating in the concensus—will provide monetary incentives for achieving high reputation.
Platform: Users will be able to host AI-relevant/driven applications on our blockchain. Not only will special smart contracts be available, we will also provide software tools, templates, and example applications.

One of our goals is to create a platform for applications with real world value. Below, we explore some of these future applications. Here are some examples of specific applications:

Recommender systems Möbby can become a common space for user-created recommender systems for products and services. These recommender systems, in turn, can also be rated based on their usefulness, which allows users to receive personalized recommendations based on their individual interests. Möbby can, for example, become a decentralized repository for the reputation of other blockchains or decentralized finance (DeFi) applications—using available, public data on these ledgers. The transparency afforded to us when using publicly accessible data to create recommendations means we can mitigate issues such as companies suppressing negative reviews of their products [6]. Of course, as with any recommender systems, care must be taken to avoid abusive behavior, such as the case of malicious reviewers on Goodread that threaten bad reviews if the authors do not give in to their monetary demands [8]. A future research direction is to study how to prevent malicious behavior like these and create a safer and more fair platform.

Crowdfunding Crowdfunding sites like Kickstarter, Indigogo, GoFundMe, and Patreon have become a major source of income for independent creators, and can have a large impact on individuals with financial needs. However, scams are also rampant on these sites, with victims collectively losing millions of dollars [7]. Möbby can provide crowdfunded projects with reputation ratings, which can help combat scam behavior. Moreover, as a payment platform, Möbby can help control the flow of money to these projects via smart contracts.

1.5 Informal Overview

We give a diagram and informal summary of the main everyday activities performed by participants on the Möbby network, and how we incentivize honest behaviour. We refer the interested reader to our Economics Parameters Document (App. G.2) for more information on the rewards distribution and passive rewards referenced below.

Spending and Receiving Tokens The simplest use case: Möbby users will be able to easily spend and receive tokens via their blockchain wallets, which broadcast the users’ transactions to reputation parties on the network, so that the transactions will be quickly included in the chain. In the future, Möbby will provide a host of rich functionalities via timelocked and multisignature transactions, as well as smart contracts.

Fig. 1: Sending and Receiving Tokens via Transactions.

Fig. 2: Simplified Overview of PoR and PoS Participation.

Participating on the PoR Chain Reputation parties ensure the operation of the Möbby blockchain. They can actively participate (or endorse their reputation to other parties, see below) in the Proof-of-Reputation lottery, which is a process of selecting the committees responsible for creating the next block in the PoR chain. A reputation party who marks themselves as available will enter this lottery draw, which will determine whether they will be selected as part of the validator BA committee or the proposer BC committee. By participating honestly as a committee member, parties can increase their reputation, as well as gain a share of the block reward and transaction fees. To incentivize active participation in the consensus, we provide a passive reward to those who mark themselves as available and indeed participates regularly in the consensus (both PoR and the fallback PoS chains). To deter malicious actors, provable misbehaviour (e.g., a party who creates signatures for two conflicting blocks) is punished, and removed from the set of available parties (so that for some period of time, the misbehaving party cannot gain passive rewards).

Participating in the Fallback PoS Chain The security of our system is further ensured with a secondary, fallback chain whose consensus is based on Proof-of-Stake. A slot-by-slot digest/summary of the main PoR chain is recorded as transactions on the fallback chain, which allows inconsistencies or liveness failures on the POR chain to be quickly detected. Participation on the fallback chain—creating and sending such digests, as well as participating in the PoS consensus—does not directly result in monetary or reputation gains (unlike in the PoR). However, we do incentivize participation via a passive reward which is given to reputation parties that actively participate both in the PoR and PoS chains. As is with the PoR chain, we disincentivize and punish provable misbehaviour (such as submitting false digests) by allowing parties to accuse malicious parties with evidence.

Fig. 3: An example of an endorsement graph for a set of validators and proposers. Endorsing multiple parties and circular endorsement are allowed.

Endorsement Parties with reputation may decide not to actively participate in the consensus, and rather participate by endorsing their reputation to other parties. When a validator or proposer is rewarded in the PoR consensus, their endorsers (and even the endorsers of their endorsers) will receive a portion of that reward (whether reputation or monetary). Similarly, any punishment doled out to a party for misbehaviour will reflect partially on their endorsers. This incentivizes endorsers to more carefully choose who they endorse.

Organization of the Remainder of the Paper. In Section 1.6 we give an overview of Möbby’s underlying assumptions. After discussing our model in Section 2, in Section 3 we define and instantiate a reputation-fair lottery. Section 4 describes a PoR-based blockchain-ledger protocol for static reputation systems, and Section 5 describes the hybrid PoR/PoS ledger protocol. Lastly, in Section 6 we discuss how a party’s reputation in Möbby is established, and how it changes with the party’s behaviour.

1.6 Preliminaries

We use the standard definition of negligible and overwhelming: A function μ : ℕ → ℝ⁺ is negligible if for any polynomial p(k): μ(k) = O(1∕p(k)); We say that a function f : ℕ → [0,1] is overwhelming if f(k) = 1 - μ(k) for some negligible function μ. Many of our statements and definitions assume an (often implicit) security parameter k. For two strings s₁,s₂ ∈{0,1}^* we denote by s₁||s₂ the concatenation of s₁ and s₂. For some n ∈ ℕ we will denote by [n] the set [n] = {1,…,n}. For a string s ∈{0,1}^k and for some D ≤ k we will say that T(s) ≥ D if s has at least D leading zeros, i.e., s is of the form s = 0^D||s′ for some s′∈{0,1}^k-D.

¹ As a side note, our blockchain does address concerns about adaptivity in corruptions through its fallback mechanism, which can be adaptively secure. ↩

The Möbby Blockchain and Digital Asset

Technical Whitepaper

Summary

1 Motivation

2 Model

3 Reputation-based Lotteries

4 The PoR-Blockchain

5 The PoR/PoS-Hybrid Blockchain

6 Establishing, Updating, and Extending the Reputation System

7 Conclusions and Open Problems

References

A Supplementary Material to Section 3

B Supplementary Material to Section 4

C Deferred Proofs

D Hoeffding's Inequality

E Reputation Systems with Limited Correlations

F Epoch-Resettable Adversaries

G Extensions and Future Research

About the Authors

Möbby Tokenomics

1 Monetizing Reputation for a Stable and Truthful Recommender / Reputation System

2 The Möbby Decentralized Ledger Technology (DLT) backbone

3 Major Möbby Deployment Milestones

4 Rewards and Transaction Fees

5 Reputation Rewards

6 Applications and Utilization

1. Binance Smart Chain: A parallel binance chain to enable smart contracts. https://github.com/binance-chain/whitepaper/blob/master/WHITEPAPER.md.94. Qianwei Zhuang, Yuan Liu, Lisi Chen, and Zhengpeng Ai. Proof of reputation: A reputation-based consensus protocol for blockchain based systems. In Proceedings of the 2019 International Electronics CommunicationConference, pages 131–138, 2019.
2. Eurus economic blockchain network. https://www.eurus.network/technology/.
3. GoChain: Proof of reputation. https://medium.com/gochain/proof-of-reputation-e37432420712.
4. OpenEthereum Documentation: Proof-of-authority chains - wiki. https://openethereum.github.io/Proof-of-Authority-Chains.
5. PoA Private Chains. https://github.com/ethereum/guide/blob/master/poa.md.
6. The New York Times a fashion brand agrees to pay $4.2 million after f.t.c. says it suppressed negative reviews online. https://www.nytimes.com/2022/01/25/business/fashion-nova-reviews.html.
7. The Verge split screen: The crowdfunded phone of the future was a multimillion-dollar scam. https://www.theverge.com/2019/8/13/20758599/idealfuture-dragonfly-futurefon-indiegogo-crowdfunding-phone-scam-fraud-case.
8. Time how extortion scams and review bombing trolls turned goodreads into many authors’ worst nightmare. https://time.com/6078993/goodreads-review-bombing/.
9. Vechain whitepaper 2.0. https://www.vechain.org/whitepaper/.
10. Ahmed S Almasoud, Farookh Khadeer Hussain, and Omar K Hussain. Smart contracts for blockchain-based reputation systems: A systematic literature review. Journal of Network and Computer Applications, 170:102814, 2020.
11. Akram Alofi, Rami Bahsoon, and Robert Hendley. Minerrepu: A reputation model for miners in blockchain networks. In 2021 IEEE International Conference on Web Services (ICWS), pages 724–733. IEEE, 2021.
12. Oladotun Aluko and Anton Kolonin. Proof-of-reputation: An alternative consensus mechanism for blockchain systems. International Journal of Network Security & Its Applications (IJNSA) Vol, 13, 2021.
13. Gilad Asharov, Yehuda Lindell, and Hila Zarosim. Fair and efficient secure multiparty computation with reputation systems. In Kazue Sako and Palash Sarkar, editors, ASIACRYPT 2013, Part II, volume 8270 of LNCS, pages 201–220. Springer, Heidelberg, December 2013.
14. Alia Asheralieva and Dusit Niyato. Reputation-based coalition formation for secure self-organized and scalable sharding in iot blockchains with mobile-edge computing. IEEE Internet of Things Journal, 7(12):11830–11850, 2020.
15. Hagit Attiya, Amir Herzberg, and Sergio Rajsbaum. Optimal clock synchronization under different delay assumptions (preliminary version). In Jim Anderson and Sam Toueg, editors, 12th ACM PODC, pages 109–120. ACM, August 1993.
16. Christian Badertscher, Peter Gazi, Aggelos Kiayias, Alexander Russell, and Vassilis Zikas. Ouroboros genesis: Composable proof-of-stake blockchains with dynamic availability. In David Lie, Mohammad Mannan, Michael Backes, and XiaoFeng Wang, editors, ACM CCS 2018, pages 913–930. ACM Press, October 2018.
17. Christian Badertscher, Peter Gazi, Aggelos Kiayias, Alexander Russell, and Vassilis Zikas. Consensus redux: Distributed ledgers in the face of adversarial supremacy. Cryptology ePrint Archive, Report 2020/1021, 2020. https://eprint.iacr.org/2020/1021.
18. Christian Badertscher, Ueli Maurer, Daniel Tschudi, and Vassilis Zikas. Bitcoin as a transaction ledger: A composable treatment. In Jonathan Katz and Hovav Shacham, editors, CRYPTO 2017, Part I, volume 10401 of LNCS, pages 324–356. Springer, Heidelberg, August 2017.
19. Leila Bahri and Sarunas Girdzijauskas. Trust mends blockchains: Living up to expectations. In 2019 IEEE 39th International Conference on Distributed Computing Systems (ICDCS), pages 1358–1368. IEEE, 2019.
20. Ammar Battah, Youssef Iraqi, and Ernesto Damiani. Blockchain-based reputation systems: Implementation challenges and mitigation. Electronics, 10(3):289, 2021.
21. Mihir Bellare and Sara K. Miner. A forward-secure digital signature scheme. In Michael J. Wiener, editor, CRYPTO’99, volume 1666 of LNCS, pages 431–448. Springer, Heidelberg, August 1999.
22. Emanuele Bellini, Youssef Iraqi, and Ernesto Damiani. Blockchain-based distributed trust and reputation management systems: A survey. IEEE Access, 8:21127–21151, 2020.
23. Iddo Bentov, Pavel Hubáček, Tal Moran, and Asaf Nadler. Tortoise and hares consensus: the meshcash framework for incentive-compatible, scalable cryptocurrencies. IACR Cryptology ePrint Archive, 2017:300, 2017.
24. Alex Biryukov and Daniel Feher. Recon: Sybil-resistant consensus from reputation. Pervasive and Mobile Computing, 61:101109, 2020.
25. Alex Biryukov, Daniel Feher, and Dmitry Khovratovich. Guru: Universal reputation module for distributed consensus protocols. Cryptology ePrint Archive, Report 2017/671, 2017. http://eprint.iacr.org/2017/671.
26. Alex Biryukov, Daniel Feher, and Dmitry Khovratovich. Guru: Universal reputation module for distributed consensus protocols. Technical report, University of Luxembourg, 2017.
27. Jacques Bou Abdo, Rayane El Sibai, and Jacques Demerjian. Permissionless proof-of-reputation-x: A hybrid reputation-based consensus algorithm for permissionless blockchains. Transactions on Emerging Telecommunications Technologies, 32(1):e4148, 2021.
28. Jacques Bou Abdo, Rayane El Sibai, Krishna Kambhampaty, and Jacques Demerjian. Permissionless reputation-based consensus algorithm for blockchain. Internet Technology Letters, 3(3):e151, 2020.
29. Ahmet Bugday, Adnan Ozsoy, Serdar Murat Öztaner, and Hayri Sever. Creating consensus group using online learning based reputation in blockchain networks. Pervasive and Mobile Computing, 59:101056, 2019.
30. Vitalik Buterin. A next-generation smart contract and decentralized application platform, 2013. https://github.com/ethereum/wiki/wiki/White-Paper.
31. Wenjun Cai, Wei Jiang, Ke Xie, Yan Zhu, Yingli Liu, and Tao Shen. Dynamic reputation–based consensus mechanism: Real-time transactions for energy blockchain. International Journal of Distributed Sensor Networks, 16(3):1550147720907335, 2020.
32. Ran Canetti. Security and composition of multiparty cryptographic protocols. Journal of Cryptology, 13(1):143–202, January 2000.
33. Haoye Chai, Supeng Leng, Ke Zhang, and Sun Mao. Proof-of-reputation based-consortium blockchain for trust resource sharing in internet of vehicles. IEEE Access, 7:175744–175757, 2019.
34. Hongyin Chen, Zhaohua Chen, Yukun Cheng, Xiaotie Deng, Wenhan Huang, Jichen Li, Hongyi Ling, and Mengqian Zhang. A provable softmax reputation-based protocol for permissioned blockchains. IEEE Transactions on Cloud Computing, 2021.
35. Zelei Cheng, Zuotian Li, Bowen Sun, Shuhan Zhang, and Yuanrong Shao. Reputation-based q-routing for robust inter-committee routing in the sharding-based blockchain. In 2020 IEEE Intl Conf on Dependable, Autonomic and Secure Computing, Intl Conf on Pervasive Intelligence and Computing, Intl Conf on Cloud and Big Data Computing, Intl Conf on Cyber Science and Technology Congress (DASC/PiCom/CBDCom/CyberSciTech), pages 230–236. IEEE, 2020.
36. Sherman S. M. Chow. Running on Karma - P2P reputation and currency systems. In Feng Bao, San Ling, Tatsuaki Okamoto, Huaxiong Wang, and Chaoping Xing, editors, CANS 07, volume 4856 of LNCS, pages 146–158. Springer, Heidelberg, December 2007.
37. Ran Cohen, Sandro Coretti, Juan A. Garay, and Vassilis Zikas. Probabilistic termination and composability of cryptographic protocols. In Matthew Robshaw and Jonathan Katz, editors, CRYPTO 2016, Part III, volume 9816 of LNCS, pages 240–269. Springer, Heidelberg, August 2016.
38. Ran Cohen, Sandro Coretti, Juan A. Garay, and Vassilis Zikas. Round-preserving parallel composition of probabilistic-termination cryptographic protocols. In Ioannis Chatzigiannakis, Piotr Indyk, Fabian Kuhn, and Anca Muscholl, editors, ICALP 2017, volume 80 of LIPIcs, pages 37:1–37:15. Schloss Dagstuhl, July 2017.
39. Bernardo David, Peter Gazi, Aggelos Kiayias, and Alexander Russell. Ouroboros praos: An adaptively-secure, semi-synchronous proof-of-stake blockchain. In Jesper Buus Nielsen and Vincent Rijmen, editors, EUROCRYPT 2018, Part II, volume 10821 of LNCS, pages 66–98. Springer, Heidelberg, April / May 2018.
40. Marcela T de Oliveira, Lúcio HA Reis, Dianne SV Medeiros, Ricardo C Carrano, Sílvia D Olabarriaga, and Diogo MF Mattos. Blockchain reputation-based consensus: A scalable and resilient mechanism for distributed mistrusting applications. Computer Networks, 179:107367, 2020.
41. Thuat Do, Thao Nguyen, and Hung Pham. Delegated proof of reputation: A novel blockchain consensus. In Proceedings of the 2019 International Electronics Communication Conference, pages 90–98, 2019.
42. Danny Dolev, Joseph Y. Halpern, and H. Raymond Strong. On the possibility and impossibility of achieving clock synchronization. In 16th ACM STOC, pages 504–511. ACM Press, 1984.
43. Danny Dolev and H. Raymond Strong. Authenticated algorithms for byzantine agreement. SIAM J. Comput., 12(4):656–666, 1983.
44. Shlomi Dolev and Jennifer L. Welch. Wait-free clock synchronization (extended abstract). In Jim Anderson and Sam Toueg, editors, 12th ACM PODC, pages 97–108. ACM, August 1993.
45. Shlomi Dolev and Jennifer L. Welch. Self-stabilizing clock synchronization in the presence of byzantine faults (abstract). In James H. Anderson, editor, 14th ACM PODC, page 256. ACM, August 1995.
46. Fangyu Gai, Baosheng Wang, Wenping Deng, and Wei Peng. Proof of reputation: A reputation-based consensus protocol for peer-to-peer network. In DASFAA, 2018.
47. Juan A. Garay, Yuval Ishai, Rafail Ostrovsky, and Vassilis Zikas. The price of low communication in secure multi-party computation. In Jonathan Katz and Hovav Shacham, editors, CRYPTO 2017, Part I, volume 10401 of LNCS, pages 420–446. Springer, Heidelberg, August 2017.
48. Juan A. Garay, Aggelos Kiayias, and Nikos Leonardos. The bitcoin backbone protocol: Analysis and applications. In Elisabeth Oswald and Marc Fischlin, editors, EUROCRYPT 2015, Part II, volume 9057 of LNCS, pages 281–310. Springer, Heidelberg, April 2015.
49. Yossi Gilad, Rotem Hemo, Silvio Micali, Georgios Vlachos, and Nickolai Zeldovich. Algorand: Scaling byzantine agreements for cryptocurrencies. Cryptology ePrint Archive, Report 2017/454, 2017. http://eprint.iacr.org/2017/454.
50. Yossi Gilad, Rotem Hemo, Silvio Micali, Georgios Vlachos, and Nickolai Zeldovich. Algorand: Scaling byzantine agreements for cryptocurrencies. In Proceedings of the 26th Symposium on Operating Systems Principles, SOSP ’17, page 51–68, New York, NY, USA, 2017. Association for Computing Machinery.
51. Shafi Goldwasser, Silvio Micali, and Ronald L. Rivest. A digital signature scheme secure against adaptive chosen-message attacks. SIAM Journal on Computing, 17(2):281–308, April 1988.
52. Joseph Y. Halpern, Barbara Simons, H. Raymond Strong, and Danny Dolev. Fault-tolerant clock synchronization. In Robert L. Probert, Nancy A. Lynch, and Nicola Santoro, editors, 3rd ACM PODC, pages 89–102. ACM, August 1984.
53. Wassily Hoeffding. Probability inequalities for sums of bounded random variables. Journal of the American Statistical Association, 58(301):13–30, March 1963.
54. Qiaohong Hu, Hongju Cheng, Xiaoqi Zhang, and Chengkuan Lin. Trusted resource allocation based on proof-of-reputation consensus mechanism for edge computing. Peer-to-Peer Networking and Applications, pages 1–17, 2021.
55. Shuang Hu, Lin Hou, Gongliang Chen, Jian Weng, and Jianhua Li. Reputation-based distributed knowledge sharing system in blockchain. In Proceedings of the 15th EAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services, pages 476–481, 2018.
56. Zhuo Hu, Yuhao Du, Congjun Rao, and Mark Goh. Delegated proof of reputation consensus mechanism for blockchain-enabled distributed carbon emission trading system. IEEE Access, 8:214932–214944, 2020.
57. Chenyu Huang, Zeyu Wang, Huangxun Chen, Qiwei Hu, Qian Zhang, Wei Wang, and Xia Guan. Repchain: A reputation-based secure, fast, and high incentive blockchain system via sharding. IEEE Internet of Things Journal, 8(6):4291–4304, 2020.
58. Gene Itkis and Leonid Reyzin. Forward-secure signatures with optimal signing and verifying. In Joe Kilian, editor, CRYPTO 2001, volume 2139 of LNCS, pages 332–354. Springer, Heidelberg, August 2001.
59. Abdellah Kaci and Abderrezak Rachedi. Toward a machine learning and software defined network approaches to manage miners’ reputation in blockchain. Journal of Network and Systems Management, 28(3):478–501, 2020.
60. Sep Kamvar, Marek Olszewski, and Rene Reinsberg. Celo: A multi-asset cryptographic protocol for decentralized social payments.(2017). 2017.
61. Sepandar D Kamvar, Mario T Schlosser, and Hector Garcia-Molina. The eigentrust algorithm for reputation management in p2p networks. In Proceedings of the 12th international conference on World Wide Web, pages 640–651, 2003.
62. Jiawen Kang, Zehui Xiong, Dusit Niyato, Dongdong Ye, Dong In Kim, and Jun Zhao. Toward secure blockchain-enabled internet of vehicles: Optimizing consensus management using reputation and contract theory. IEEE Transactions on Vehicular Technology, 68(3):2906–2920, 2019.
63. Jonathan Katz and Chiu-Yuen Koo. On expected constant-round protocols for byzantine agreement. In Cynthia Dwork, editor, CRYPTO 2006, volume 4117 of LNCS, pages 445–462. Springer, Heidelberg, August 2006.
64. Hakima Khelifi, Senlin Luo, Boubakr Nour, Hassine Moungla, and Syed Hassan Ahmed. Reputation-based blockchain for secure ndn caching in vehicular networks. In 2018 IEEE Conference on Standards for Communications and Networking (CSCN), pages 1–6. IEEE, 2018.
65. Aggelos Kiayias, Alexander Russell, Bernardo David, and Roman Oliynykov. Ouroboros: A provably secure proof-of-stake blockchain protocol. In Jonathan Katz and Hovav Shacham, editors, CRYPTO 2017, Part I, volume 10401 of LNCS, pages 357–388. Springer, Heidelberg, August 2017.
66. Aggelos Kiayias, Hong-Sheng Zhou, and Vassilis Zikas. Fair and robust multi-party computation using a global transaction ledger. In Marc Fischlin and Jean-Sébastien Coron, editors, EUROCRYPT 2016, Part II, volume 9666 of LNCS, pages 705–734. Springer, Heidelberg, May 2016.
67. Leslie Lamport and P. M. Melliar-Smith. Byzantine clock synchronization. In Robert L. Probert, Nancy A. Lynch, and Nicola Santoro, editors, 3rd ACM PODC, pages 68–74. ACM, August 1984.
68. Kai Lei, Qichao Zhang, Limei Xu, and Zhuyun Qi. Reputation-based byzantine fault-tolerance for consortium blockchain. In 2018 IEEE 24th International Conference on Parallel and Distributed Systems (ICPADS), pages 604–611. IEEE, 2018.
69. Christoph Lenzen, Thomas Locher, and Roger Wattenhofer. Clock synchronization with bounded global and local skew. In 49th FOCS, pages 509–518. IEEE Computer Society Press, October 2008.
70. Bernardo Magri, Christian Matt, Jesper Buus Nielsen, and Daniel Tschudi. Afgjort - A semi-synchronous finality layer for blockchains. IACR Cryptology ePrint Archive, 2019:504, 2019.
71. Shirshak Maskey, Shahriar Badsha, Shamik Sengupta, and Ibrahim Khalil. Reputation-based miner node selection in blockchain-based vehicular edge computing. IEEE Consumer Electronics Magazine, 2020.
72. Silvio Micali, Michael O. Rabin, and Salil P. Vadhan. Verifiable random functions. In 40th FOCS, pages 120–130. IEEE Computer Society Press, October 1999.
73. Andrew Miller, Yu Xia, Kyle Croman, Elaine Shi, and Dawn Song. The honey badger of BFT protocols. In Edgar R. Weippl, Stefan Katzenbeisser, Christopher Kruegel, Andrew C. Myers, and Shai Halevi, editors, ACM CCS 2016, pages 31–42. ACM Press, October 2016.
74. Satoshi Nakamoto. Bitcoin: A peer-to-peer electronic cash system, 2008. http://bitcoin.org/bitcoin.pdf.
75. Mehrdad Nojoumian, Arash Golchubian, Laurent Njilla, Kevin Kwiat, and Charles Kamhoua. Incentivizing blockchain miners to avoid dishonest mining strategies by a reputation-based paradigm. In Science and Information Conference, pages 1118–1134. Springer, 2018.
76. Rafail Ostrovsky and Boaz Patt-Shamir. Optimal and efficient clock synchronization under drifting clocks. In Brian A. Coan and Jennifer L. Welch, editors, 18th ACM PODC, pages 3–12. ACM, May 1999.
77. Rafail Ostrovsky and Moti Yung. How to withstand mobile virus attacks (extended abstract). In Luigi Logrippo, editor, 10th ACM PODC, pages 51–59. ACM, August 1991.
78. Rafael Pass, Lior Seeman, and abhi shelat. Analysis of the blockchain protocol in asynchronous networks. In Jean-Sébastien Coron and Jesper Buus Nielsen, editors, EUROCRYPT 2017, Part II, volume 10211 of LNCS, pages 643–673. Springer, Heidelberg, April / May 2017.
79. Rafael Pass and Elaine Shi. Thunderella: Blockchains with optimistic instant confirmation. In Jesper Buus Nielsen and Vincent Rijmen, editors, EUROCRYPT 2018, Part II, volume 10821 of LNCS, pages 3–33. Springer, Heidelberg, April / May 2018.
80. Muntadher Sallal, Gareth Owenson, Dawood Salman, and Mo Adda. Security and performance evaluation of master node protocol based reputation blockchain in the bitcoin network. Blockchain: Research and Applications, page 100048, 2021.
81. Sidharth Shyamsukha, Pronaya Bhattacharya, Farnazbanu Patel, Sudeep Tanwar, Rajesh Gupta, and Emil Pricop. Porf: Proof-of-reputation-based consensus scheme for fair transaction ordering. In 2021 13th International Conference on Electronics, Computers and Artificial Intelligence (ECAI), pages 1–6. IEEE, 2021.
82. T. K. Srikanth and Sam Toueg. Optimal clock synchronization. In Michael A. Malcolm and H. Raymond Strong, editors, 4th ACM PODC, pages 71–86. ACM, August 1985.
83. You Sun, Rui Xue, Rui Zhang, Qianqian Su, and Sheng Gao. Rtchain: A reputation system with transaction and consensus incentives for e-commerce blockchain. ACM Transactions on Internet Technology (TOIT), 21(1):1–24, 2020.
84. You Sun, Rui Zhang, Rui Xue, Qianqian Su, and Pengchao Li. A reputation based hybrid consensus for e-commerce blockchain. In International Conference on Web Services, pages 1–16. Springer, 2020.
85. Changbing Tang, Luya Wu, Guanghui Wen, and Zhonglong Zheng. Incentivizing honest mining in blockchain networks: a reputation approach. IEEE Transactions on Circuits and Systems II: Express Briefs, 67(1):117–121, 2019.
86. Eric Ke Wang, Zuodong Liang, Chien-Ming Chen, Saru Kumari, and Muhammad Khurram Khan. Porx: A reputation incentive scheme for blockchain consensus of iiot. Future Generation Computer Systems, 102:140–151, 2020.
87. Gang Wang. Repshard: Reputation-based sharding scheme achieves linearly scaling efficiency and security simultaneously. In 2020 IEEE International Conference on Blockchain (Blockchain), pages 237–246. IEEE, 2020.
88. J. Yu, D. Kozhaya, J. Decouchant, and P. Esteves-Verissimo. Repucoin: Your reputation is your power. IEEE Transactions on Computers, 68(8):1225–1237, Aug 2019.
89. Jiangshan Yu, David Kozhaya, Jeremie Decouchant, and Paulo Esteves-Verissimo. Repucoin: Your reputation is your power. IEEE Transactions on Computers, 68(8):1225–1237, 2019.
90. Jiarui Zhang, Yukun Cheng, Xiaotie Deng, Bo Wang, Jan Xie, Yuanyuan Yang, and Mengqian Zhang. A reputation-based mechanism for transaction processing in blockchain systems. IEEE Transactions on Computers, 2021.
91. Jiarui Zhang, Yaodong Huang, Fan Ye, and Yuanyuan Yang. A novel proof-of-reputation consensus for storage allocation in edge blockchain systems. In 2021 IEEE/ACM 29th International Symposium on Quality of Service (IWQOS), pages 1–10. IEEE, 2021.
92. Mengqian Zhang, Yukun Cheng, Xiaotie Deng, Bo Wang, Jan Xie, Yuanyuan Yang, and Jiarui Zhang. Accelerating transactions relay in blockchain networks via reputation. In 2021 IEEE/ACM 29th International Symposium on Quality of Service (IWQOS), pages 1–10. IEEE, 2021.
93. Shenchen Zhu, Ziyan Zhang, Liquan Chen, Hui Chen, and Yanbo Wang. A pbft consensus scheme with reputation value voting based on dynamic clustering. In International Conference on Security and Privacy in Digital Economy, pages 336–354. Springer, 2020.
94. Qianwei Zhuang, Yuan Liu, Lisi Chen, and Zhengpeng Ai. Proof of reputation: A reputation-based consensus protocol for blockchain based systems. In Proceedings of the 2019 International Electronics CommunicationConference, pages 131–138, 2019.
1. As a side note, our blockchain does address concerns about adaptivity in corruptions through its fallback mechanism, which can be adaptively secure.
16. Christian Badertscher, Peter Gazi, Aggelos Kiayias, Alexander Russell, and Vassilis Zikas. Ouroboros genesis: Composable proof-of-stake blockchains with dynamic availability. In David Lie, Mohammad Mannan, Michael Backes, and XiaoFeng Wang, editors, ACM CCS 2018, pages 913–930. ACM Press, October 2018.
65. Aggelos Kiayias, Alexander Russell, Bernardo David, and Roman Oliynykov. Ouroboros: A provably secure proof-of-stake blockchain protocol. In Jonathan Katz and Hovav Shacham, editors, CRYPTO 2017, Part I, volume 10401 of LNCS, pages 357–388. Springer, Heidelberg, August 2017.
25. Alex Biryukov, Daniel Feher, and Dmitry Khovratovich. Guru: Universal reputation module for distributed consensus protocols. Cryptology ePrint Archive, Report 2017/671, 2017. http://eprint.iacr.org/2017/671.
46. Fangyu Gai, Baosheng Wang, Wenping Deng, and Wei Peng. Proof of reputation: A reputation-based consensus protocol for peer-to-peer network. In DASFAA, 2018.
46. Fangyu Gai, Baosheng Wang, Wenping Deng, and Wei Peng. Proof of reputation: A reputation-based consensus protocol for peer-to-peer network. In DASFAA, 2018.
83. You Sun, Rui Xue, Rui Zhang, Qianqian Su, and Sheng Gao. Rtchain: A reputation system with transaction and consensus incentives for e-commerce blockchain. ACM Transactions on Internet Technology (TOIT), 21(1):1–24, 2020.
90. Jiarui Zhang, Yukun Cheng, Xiaotie Deng, Bo Wang, Jan Xie, Yuanyuan Yang, and Mengqian Zhang. A reputation-based mechanism for transaction processing in blockchain systems. IEEE Transactions on Computers, 2021.
92. Mengqian Zhang, Yukun Cheng, Xiaotie Deng, Bo Wang, Jan Xie, Yuanyuan Yang, and Jiarui Zhang. Accelerating transactions relay in blockchain networks via reputation. In 2021 IEEE/ACM 29th International Symposium on Quality of Service (IWQOS), pages 1–10. IEEE, 2021.
6. The New York Times a fashion brand agrees to pay $4.2 million after f.t.c. says it suppressed negative reviews online. https://www.nytimes.com/2022/01/25/business/fashion-nova-reviews.html.
8. Time how extortion scams and review bombing trolls turned goodreads into many authors’ worst nightmare. https://time.com/6078993/goodreads-review-bombing/.