5 The PoR/PoS-Hybrid Blockchain

Technical Whitepaper

5 The PoR/PoS-Hybrid Blockchain

As discussed in the introduction, a purely PoR-based blockchain protocol can be insecure if the reputation system is inaccurate. To fortify our ledger against such a situation we do the following: In parallel to the PoR-based blockchain above, we run an independent (and potentially slower) Nakamoto-style ledger protocol. For this purpose, we have chosen to employ a iterated-BFT ledger protocol [17] based on Proof-of-Stake as our fallback. For the rest of this paper, we will thus focus analysis on Proof-of-Stake-based blockchain (in short, PoS-blockchain) but our treatment can be applied to proof-of-work or other iterated-BFT ledger protocols. As we will show, as long as the majority of the stake is in honest hands the fallback PoS blockchain will ensure that an inaccurate (or manipulated) reputation system does not result in an insecure ledger.

5.1 Choosing a Fallback Proof-of-Stake Blockchain

Proof-of-Stake (PoS) is arguably the second most popular underlying assumption for blockchains, having a plethora of works studying various aspects of its security. In particular, iterated BFT protocols based on PoS choose block creators by selecting random committees and does not require dedicated hardware for mining, which makes it close in spirit to our Proof-of-Reputation. A good candidate for our fallback chain is the popular Algorand [50]. The main reason is Algorand’s transaction finality. That is, once a transaction is considered final, it cannot be reverted except with negligible probability. This is compatible with Möbby’s own transaction finality property. The second reason is its programming language Go, which in addition to its ease of learning, compiles to C and thus can more efficiently interoperate with other languages. As we will see, we do not require the full implementation of Algorand, only its basic transaction ledger functionality. For completeness, we describe the blockchain algorithm, where blocks become part of the ledger in Algorand by the following algorithm: First, a committee of block proposers is selected via verifiable random functions (VRFs) [72] with probability according to their stake, and their blocks propagated. A second committee of block verifiers then votes on the blocks, ranking valid blocks by the lowest VRF proof. The block with the supermajority vote is then certified: to certify, a third committee of block certifiers vote on the block. If a block has supermajority, then it and transactions within it are considered final.

5.2 PoR/PoS-hybrid Design

Our PoR/PoS-hybrid design ensures the following: If the reputation system is accurate, i.e., it reflect the actual probabilities that the parties behave honestly, then our protocol will be secure and achieve the claimed efficiency. If the reputation is inaccurate and, as a result, a fork is created, but the honest majority of stake assumption holds, then parties will be able to detect the fork—and agree on this fact—within a small number of rounds. We stress that our design uses the assumptions in a tired manner: as long as the reputation system is accurate, the backup blockchain can neither yield false detection positives nor slow down the progress of the PoR-blockchain, even if the majority stake in the system has shifted to malicious parties (in which case the back-up PoS-blockchain might fork). However, if both accuracy of reputation and honest majority of stake fail, the security of the system cannot be guaranteed as with any construction based on assumptions.

Fig. 9: High level description of the PoR/PoS hybrid protocol in Fig. B .

A high level description of the PoR/PoS hybrid protocol is given in Fig. 9 . Here is how our hybrid ledger works: In every round the reputation parties post to the backup PoS-blockchain, the current slot’s hash pointers. This way every party will be able to efficiently verify their local view by comparing their local hashes to the ones posted on the backup blockchain. If any honest party observes a discrepancy, then she can complain by posting the block in his local PoR-chain, which is inconsistent with the pointer seen on the backup PoS-blockchain, along with the supporting set of signatures. We refer to this complaint as an accusation and to the party that posts it as an accuser. If the accuser fails to present a valid view (i.e., a block with sufficient signatures from the corresponding slot committee) then the accusation is considered invalid and the dispute is resolved in favor of the reputation party that had initially posted the disputed hash pointer, hereafter referred to as the accused party. Otherwise, the accused party will need to respond by posting (as a transaction on the backup PoS-blockchain) his own view of the disputed block. If this party fails, then the dispute is considered resolved in favor of the accuser. Otherwise, if both the accuser and the accused party post support on their claims, every party will be able to observe this fact and detect that the PoR-chain forked. In either case, any such accusation will result in detecting a malicious party: either the accuser, or the accused or some party that issued conflicting signatures on the PoR blockchain. (The detected party’s reputation will be then reduced to 0 and the party will be excluded from the protocol.) The following theorem says that the reputation system is accurate if it reflects, within a negligible error the actual probabilities that the reputation parties are honest (proof in Appendix):

Theorem 3. Let, ϵ,δ,c and L be as in Theorem 2 . The following properties hold with overwhelming probability assuming that the reputation system is ϵ_f-feasible for some constant ϵ_f ∈ (0,1): If the PoR-system is accurate, then protocol ΠBCPoR/PoS satisfies the following properties except with negligible probability in the presence of a static Rep-adversary:

– Safety (with Finality):: At the end of every block-slot, all reputation parties have the same view of the blockchain.
– Block Liveness:: A new block is added to each local chain held by any reputation party at the end of each slot.
– Transaction Liveness:: Assuming all honest reputation parties receive a transaction, this transaction will be added to the blockchain within ℓ slots except with probability 2^-ℓ|BC|.

Furthermore, even if the reputation system is faulty (e.g., inaccurate) but the majority of the stake is held by honest parties, then if safety is violated, ΠBCPoR/PoS will publicly detect it (i.e., agreement on this fact will be reached among all parties) within 2k blocks of the PoS-blockchain.

Note that since all honest (non-reputation) parties are connected with the reputation parties via a diffusion network, all that above guarantees will also be offered to them with a delay equal to the maximum delay for any message from a reputation party to reach a non-reputation party in the network.

Detecting Liveness Attacks The above design detects safety violations, i.e., forks, but does not detect the following attack on liveness: A flawed reputation system might allow the attacker controlling a majority of slot committee members to prevent the blockchain from advancing, by not issuing a block signed with sufficiently many signatures. Nonetheless, a mild additional assumption on the accuracy of the reputation system, i.e., that within a polylogarithmic number of rounds an honest-majority committee will be elected, allows to break this deadlock and detect such an attack. In a nutshell, to make sure the above attack to liveness is exposed we employ the following mechanism: In every round, if a reputation party does not receive any block with majority support from the current committee in the last round of BlockAnnounce, then it issues a complaint on the fallback chain. If for any upcoming round ρ there have been complaints posted on the main chain by a majority of the members of BA corresponding to round ρ, then the parties decide that the PoR-blockchain has halted. This ensure that at the latest when the next honest majority committee is elected, the above liveness attack will be exposed. We refer to Sec. 5.4 for a more detailed discussion.

5.3 PoR/PoS Hybrid Protocol

Figure B describes our PoR/PoS-Hybrid Blockchain Protocol for static reputation.


ΠBC PoR/PoS(,,Rep,B_ρ-1,ρ,δ,ϵ,L = O(1)) Every party receives the genesis block which includes: the reputation system Rep, the public keys of all initial reputation parties spk₁,…,spk_\|\| (where each party _i ∈ knows the corresponding private key sprk_i), the public keys of all stake holders (users and reputation parties) in , i.e., pk₁,…,pk_\|\| (where each P_i ∈ knows the corresponding private key rpk_i)^a , and the initial distribution of stake S₁,…,S_\|\|. Let ρBA denote the number of (clock) rounds that each invocation of BlockAnnounce takes to complete.^b Each slot in our protocol will be ρBA clock-rounds. Without loss of generality, we assume that the protocol starts when the global clock round is 1. The parties execute the following processes in parallel: __ Extendingtheblockchain: In the ρth slot: 1. Let B_ρ-1 denote the block adopted in the previous slot (where B₀ is the genesis block): 2. The parties execute BlockAnnounce(,,Rep,B_ρ-1,ρ,δ,ϵ,L) to announce and agree on the ρ-th slot block. __ Using the PoS blockchain as fallback: Invoke the PoS-blockchain where in each PoS-slot^c : The current PoS-slot leader P (who is in charge of posting the block for the current PoS-slot) creates a block as follows: If there are any valid complains, (see below) they are added to the block. Other than such complains, P includes to his block his view of the latest valid block on the PoR-blockchain without the actual transactions, i.e., if B_{ρ_L} is the latest block that P_i sees—where B_{ρ_L} includes h(Y,h = h(B_{ρ_L-1}),ρ_L) as specified in BlockAnnounce, then P_i includes in his PoS-block: h = h(Y,h = h(B_{ρ_L-1}),ρ_L), the committee BA of the block B_{ρ_L}, and at least ⌈\|BA\|⌉ signatures from parties in BA on h. Every party P_i ∈ (independently of whether or not they are slot leaders): If P_i observes a view of a PoR-block B_j included in the PoS-blockchain which is different than his own view of that block (as extracted from the PoR-blockchain) then create a complaint-transaction for the PoS-blockchain transferring coins back to its own wallet which includes the conflicted PoS-block slot number, and his local view of block B_j (along with the associated signatures). Every party P_j ∈ , if there is a valid complaint by any party on the PoS chain, then output Complaint(q₁,q₂), where q₁ and q₂ are the PoS-blocks containing the disputed view of the PoR-blockchain

Fig. 10: The PoR/PoS-Hybrid Blockchain Protocol (Static Reputation)

5.4 Countering Liveness Attacks

Our safety-violation detection mechanism does not prevent the following attack on liveness in the fallback case: A flawed reputation system might allow the attacker controlling a majority of round committees to prevent the blockchain from advancing, by not issuing a block signed with sufficiently many signatures.

We remark that in order to attack liveness as above, the adversary will need to allow no honest reputation party to learn the contents of the current block, as otherwise that honest party will diffuse it to their network and therefore, (1) every reputation party will learn it within one round—since they are connected by a direct channels— and (2) every party will adopt it in time Δ_max + Δ_round, where Δ_max is the maximum delay for any message from a reputation party to reach a non-reputation party in the network and Δ_round is the round duration/time-out.

To make sure the above attack to liveness is exposed we employ the following mechanism: In every round, if a reputation party does not receive any block with majority support from the current committee in the last round of BlockAnnounce, then it issues a complaint on the fallback chain. If for any upcoming round ρ there have been complaints posted on the main chain by a majority in ρ, then the parties detect the halt (and, as above, an external protocol for recalibrating reputations can be employed).

The above mechanism ensures that under a very weak assumption on the accuracy of the reputation system, i.e., that an honest-majority committee is elected within a polylogarithmic number of rounds, any such halt will be detected by the system. Note that as long as the reputation is accurate, the fallback chain will never induce such a detection, as all committees will have honest majority and therefore no honest party complains. Note, also, that our lottery will satisfy the above assumption under very realistic assumptions on the the reputation, e.g., that a constant fraction of the reputations in each of the the high tiers is correct. We refer to the full version of this work for a detailed treatment.

Notwithstanding, the above mechanism does not prevent the following attack on liveness: A flawed reputation system might allow the attacker controlling a majority of slot committee members to prevent the blockchain from advancing, by not issuing a block signed with sufficiently many signatures. Nonetheless, a very mild assumption on the accuracy reputation allows to break this deadlock and detect such an attack. In a nutshell, to make sure the above attack to liveness is exposed we employ the following mechanism: In every round, if a reputation party does not receive any block with majority support from the current committee in the last round of BlockAnnounce, then it issues a complaint on the fallback chain. If for any upcoming round ρ there have been complaints posted on the main chain by a majority of the members in ρ, then the parties detect the halt (and, as above, an external protocol for recalibrating reputations can be employed). This ensure that at the latest when the next honest majority committee is elected, the above liveness attack will be exposed.

5.5 Reboostrapping from PoS

Our above hybrid design ensures that if any of the two independent assumptions—i.e., quality/accuracy of the reputation system and honest majority of stake—holds, then no fork will settle on the distributed ledger—i.e., any fork will be quickly detected. This will be guaranteed by our protocol. This property suffices to ensure that the system does not preserve deep forks, which in case of cryptocurrencies can lead to double spending. Additionally, we can even add support for recovery, not just detection, as follows: If malfunction of the PoR-blockchain is confirmed, then, as long as the majority of the stake is in honest hands, the parties will be able to will be able to reinitialize the reputation system (see Section 6 ) and restart the PoR-blockchain from the point before the detected misbehavior.

^a Note that for simplicity we will separate the staking keys from the reputation keys. In reality, a reputation party can use its staking key as its reputation key.↩

^b Recall that for simplicity we describe the protocol with deterministic Byzantine Agreement; using the techniques from [37] we can extend our treatment to use randomized—and more round-efficient—protocols.↩

^c Note that the slot in the PoS chain might be different than the slot in the PoR-chain. To make this distinction explicit we will refer to the former as a PoS-slot and to the latter as a PoR-slot↩

The Möbby Blockchain and Digital Asset

Technical Whitepaper

Summary

1 Motivation

2 Model

3 Reputation-based Lotteries

4 The PoR-Blockchain

5 The PoR/PoS-Hybrid Blockchain

6 Establishing, Updating, and Extending the Reputation System

7 Conclusions and Open Problems

References

A Supplementary Material to Section 3

B Supplementary Material to Section 4

C Deferred Proofs

D Hoeffding's Inequality

E Reputation Systems with Limited Correlations

F Epoch-Resettable Adversaries

G Extensions and Future Research

About the Authors

Möbby Tokenomics

1 Monetizing Reputation for a Stable and Truthful Recommender / Reputation System

2 The Möbby Decentralized Ledger Technology (DLT) backbone

3 Major Möbby Deployment Milestones

4 Rewards and Transaction Fees

5 Reputation Rewards

6 Applications and Utilization

1. Binance Smart Chain: A parallel binance chain to enable smart contracts. https://github.com/binance-chain/whitepaper/blob/master/WHITEPAPER.md.94. Qianwei Zhuang, Yuan Liu, Lisi Chen, and Zhengpeng Ai. Proof of reputation: A reputation-based consensus protocol for blockchain based systems. In Proceedings of the 2019 International Electronics CommunicationConference, pages 131–138, 2019.
2. Eurus economic blockchain network. https://www.eurus.network/technology/.
3. GoChain: Proof of reputation. https://medium.com/gochain/proof-of-reputation-e37432420712.
4. OpenEthereum Documentation: Proof-of-authority chains - wiki. https://openethereum.github.io/Proof-of-Authority-Chains.
5. PoA Private Chains. https://github.com/ethereum/guide/blob/master/poa.md.
6. The New York Times a fashion brand agrees to pay $4.2 million after f.t.c. says it suppressed negative reviews online. https://www.nytimes.com/2022/01/25/business/fashion-nova-reviews.html.
7. The Verge split screen: The crowdfunded phone of the future was a multimillion-dollar scam. https://www.theverge.com/2019/8/13/20758599/idealfuture-dragonfly-futurefon-indiegogo-crowdfunding-phone-scam-fraud-case.
8. Time how extortion scams and review bombing trolls turned goodreads into many authors’ worst nightmare. https://time.com/6078993/goodreads-review-bombing/.
9. Vechain whitepaper 2.0. https://www.vechain.org/whitepaper/.
10. Ahmed S Almasoud, Farookh Khadeer Hussain, and Omar K Hussain. Smart contracts for blockchain-based reputation systems: A systematic literature review. Journal of Network and Computer Applications, 170:102814, 2020.
11. Akram Alofi, Rami Bahsoon, and Robert Hendley. Minerrepu: A reputation model for miners in blockchain networks. In 2021 IEEE International Conference on Web Services (ICWS), pages 724–733. IEEE, 2021.
12. Oladotun Aluko and Anton Kolonin. Proof-of-reputation: An alternative consensus mechanism for blockchain systems. International Journal of Network Security & Its Applications (IJNSA) Vol, 13, 2021.
13. Gilad Asharov, Yehuda Lindell, and Hila Zarosim. Fair and efficient secure multiparty computation with reputation systems. In Kazue Sako and Palash Sarkar, editors, ASIACRYPT 2013, Part II, volume 8270 of LNCS, pages 201–220. Springer, Heidelberg, December 2013.
14. Alia Asheralieva and Dusit Niyato. Reputation-based coalition formation for secure self-organized and scalable sharding in iot blockchains with mobile-edge computing. IEEE Internet of Things Journal, 7(12):11830–11850, 2020.
15. Hagit Attiya, Amir Herzberg, and Sergio Rajsbaum. Optimal clock synchronization under different delay assumptions (preliminary version). In Jim Anderson and Sam Toueg, editors, 12th ACM PODC, pages 109–120. ACM, August 1993.
16. Christian Badertscher, Peter Gazi, Aggelos Kiayias, Alexander Russell, and Vassilis Zikas. Ouroboros genesis: Composable proof-of-stake blockchains with dynamic availability. In David Lie, Mohammad Mannan, Michael Backes, and XiaoFeng Wang, editors, ACM CCS 2018, pages 913–930. ACM Press, October 2018.
17. Christian Badertscher, Peter Gazi, Aggelos Kiayias, Alexander Russell, and Vassilis Zikas. Consensus redux: Distributed ledgers in the face of adversarial supremacy. Cryptology ePrint Archive, Report 2020/1021, 2020. https://eprint.iacr.org/2020/1021.
18. Christian Badertscher, Ueli Maurer, Daniel Tschudi, and Vassilis Zikas. Bitcoin as a transaction ledger: A composable treatment. In Jonathan Katz and Hovav Shacham, editors, CRYPTO 2017, Part I, volume 10401 of LNCS, pages 324–356. Springer, Heidelberg, August 2017.
19. Leila Bahri and Sarunas Girdzijauskas. Trust mends blockchains: Living up to expectations. In 2019 IEEE 39th International Conference on Distributed Computing Systems (ICDCS), pages 1358–1368. IEEE, 2019.
20. Ammar Battah, Youssef Iraqi, and Ernesto Damiani. Blockchain-based reputation systems: Implementation challenges and mitigation. Electronics, 10(3):289, 2021.
21. Mihir Bellare and Sara K. Miner. A forward-secure digital signature scheme. In Michael J. Wiener, editor, CRYPTO’99, volume 1666 of LNCS, pages 431–448. Springer, Heidelberg, August 1999.
22. Emanuele Bellini, Youssef Iraqi, and Ernesto Damiani. Blockchain-based distributed trust and reputation management systems: A survey. IEEE Access, 8:21127–21151, 2020.
23. Iddo Bentov, Pavel Hubáček, Tal Moran, and Asaf Nadler. Tortoise and hares consensus: the meshcash framework for incentive-compatible, scalable cryptocurrencies. IACR Cryptology ePrint Archive, 2017:300, 2017.
24. Alex Biryukov and Daniel Feher. Recon: Sybil-resistant consensus from reputation. Pervasive and Mobile Computing, 61:101109, 2020.
25. Alex Biryukov, Daniel Feher, and Dmitry Khovratovich. Guru: Universal reputation module for distributed consensus protocols. Cryptology ePrint Archive, Report 2017/671, 2017. http://eprint.iacr.org/2017/671.
26. Alex Biryukov, Daniel Feher, and Dmitry Khovratovich. Guru: Universal reputation module for distributed consensus protocols. Technical report, University of Luxembourg, 2017.
27. Jacques Bou Abdo, Rayane El Sibai, and Jacques Demerjian. Permissionless proof-of-reputation-x: A hybrid reputation-based consensus algorithm for permissionless blockchains. Transactions on Emerging Telecommunications Technologies, 32(1):e4148, 2021.
28. Jacques Bou Abdo, Rayane El Sibai, Krishna Kambhampaty, and Jacques Demerjian. Permissionless reputation-based consensus algorithm for blockchain. Internet Technology Letters, 3(3):e151, 2020.
29. Ahmet Bugday, Adnan Ozsoy, Serdar Murat Öztaner, and Hayri Sever. Creating consensus group using online learning based reputation in blockchain networks. Pervasive and Mobile Computing, 59:101056, 2019.
30. Vitalik Buterin. A next-generation smart contract and decentralized application platform, 2013. https://github.com/ethereum/wiki/wiki/White-Paper.
31. Wenjun Cai, Wei Jiang, Ke Xie, Yan Zhu, Yingli Liu, and Tao Shen. Dynamic reputation–based consensus mechanism: Real-time transactions for energy blockchain. International Journal of Distributed Sensor Networks, 16(3):1550147720907335, 2020.
32. Ran Canetti. Security and composition of multiparty cryptographic protocols. Journal of Cryptology, 13(1):143–202, January 2000.
33. Haoye Chai, Supeng Leng, Ke Zhang, and Sun Mao. Proof-of-reputation based-consortium blockchain for trust resource sharing in internet of vehicles. IEEE Access, 7:175744–175757, 2019.
34. Hongyin Chen, Zhaohua Chen, Yukun Cheng, Xiaotie Deng, Wenhan Huang, Jichen Li, Hongyi Ling, and Mengqian Zhang. A provable softmax reputation-based protocol for permissioned blockchains. IEEE Transactions on Cloud Computing, 2021.
35. Zelei Cheng, Zuotian Li, Bowen Sun, Shuhan Zhang, and Yuanrong Shao. Reputation-based q-routing for robust inter-committee routing in the sharding-based blockchain. In 2020 IEEE Intl Conf on Dependable, Autonomic and Secure Computing, Intl Conf on Pervasive Intelligence and Computing, Intl Conf on Cloud and Big Data Computing, Intl Conf on Cyber Science and Technology Congress (DASC/PiCom/CBDCom/CyberSciTech), pages 230–236. IEEE, 2020.
36. Sherman S. M. Chow. Running on Karma - P2P reputation and currency systems. In Feng Bao, San Ling, Tatsuaki Okamoto, Huaxiong Wang, and Chaoping Xing, editors, CANS 07, volume 4856 of LNCS, pages 146–158. Springer, Heidelberg, December 2007.
37. Ran Cohen, Sandro Coretti, Juan A. Garay, and Vassilis Zikas. Probabilistic termination and composability of cryptographic protocols. In Matthew Robshaw and Jonathan Katz, editors, CRYPTO 2016, Part III, volume 9816 of LNCS, pages 240–269. Springer, Heidelberg, August 2016.
38. Ran Cohen, Sandro Coretti, Juan A. Garay, and Vassilis Zikas. Round-preserving parallel composition of probabilistic-termination cryptographic protocols. In Ioannis Chatzigiannakis, Piotr Indyk, Fabian Kuhn, and Anca Muscholl, editors, ICALP 2017, volume 80 of LIPIcs, pages 37:1–37:15. Schloss Dagstuhl, July 2017.
39. Bernardo David, Peter Gazi, Aggelos Kiayias, and Alexander Russell. Ouroboros praos: An adaptively-secure, semi-synchronous proof-of-stake blockchain. In Jesper Buus Nielsen and Vincent Rijmen, editors, EUROCRYPT 2018, Part II, volume 10821 of LNCS, pages 66–98. Springer, Heidelberg, April / May 2018.
40. Marcela T de Oliveira, Lúcio HA Reis, Dianne SV Medeiros, Ricardo C Carrano, Sílvia D Olabarriaga, and Diogo MF Mattos. Blockchain reputation-based consensus: A scalable and resilient mechanism for distributed mistrusting applications. Computer Networks, 179:107367, 2020.
41. Thuat Do, Thao Nguyen, and Hung Pham. Delegated proof of reputation: A novel blockchain consensus. In Proceedings of the 2019 International Electronics Communication Conference, pages 90–98, 2019.
42. Danny Dolev, Joseph Y. Halpern, and H. Raymond Strong. On the possibility and impossibility of achieving clock synchronization. In 16th ACM STOC, pages 504–511. ACM Press, 1984.
43. Danny Dolev and H. Raymond Strong. Authenticated algorithms for byzantine agreement. SIAM J. Comput., 12(4):656–666, 1983.
44. Shlomi Dolev and Jennifer L. Welch. Wait-free clock synchronization (extended abstract). In Jim Anderson and Sam Toueg, editors, 12th ACM PODC, pages 97–108. ACM, August 1993.
45. Shlomi Dolev and Jennifer L. Welch. Self-stabilizing clock synchronization in the presence of byzantine faults (abstract). In James H. Anderson, editor, 14th ACM PODC, page 256. ACM, August 1995.
46. Fangyu Gai, Baosheng Wang, Wenping Deng, and Wei Peng. Proof of reputation: A reputation-based consensus protocol for peer-to-peer network. In DASFAA, 2018.
47. Juan A. Garay, Yuval Ishai, Rafail Ostrovsky, and Vassilis Zikas. The price of low communication in secure multi-party computation. In Jonathan Katz and Hovav Shacham, editors, CRYPTO 2017, Part I, volume 10401 of LNCS, pages 420–446. Springer, Heidelberg, August 2017.
48. Juan A. Garay, Aggelos Kiayias, and Nikos Leonardos. The bitcoin backbone protocol: Analysis and applications. In Elisabeth Oswald and Marc Fischlin, editors, EUROCRYPT 2015, Part II, volume 9057 of LNCS, pages 281–310. Springer, Heidelberg, April 2015.
49. Yossi Gilad, Rotem Hemo, Silvio Micali, Georgios Vlachos, and Nickolai Zeldovich. Algorand: Scaling byzantine agreements for cryptocurrencies. Cryptology ePrint Archive, Report 2017/454, 2017. http://eprint.iacr.org/2017/454.
50. Yossi Gilad, Rotem Hemo, Silvio Micali, Georgios Vlachos, and Nickolai Zeldovich. Algorand: Scaling byzantine agreements for cryptocurrencies. In Proceedings of the 26th Symposium on Operating Systems Principles, SOSP ’17, page 51–68, New York, NY, USA, 2017. Association for Computing Machinery.
51. Shafi Goldwasser, Silvio Micali, and Ronald L. Rivest. A digital signature scheme secure against adaptive chosen-message attacks. SIAM Journal on Computing, 17(2):281–308, April 1988.
52. Joseph Y. Halpern, Barbara Simons, H. Raymond Strong, and Danny Dolev. Fault-tolerant clock synchronization. In Robert L. Probert, Nancy A. Lynch, and Nicola Santoro, editors, 3rd ACM PODC, pages 89–102. ACM, August 1984.
53. Wassily Hoeffding. Probability inequalities for sums of bounded random variables. Journal of the American Statistical Association, 58(301):13–30, March 1963.
54. Qiaohong Hu, Hongju Cheng, Xiaoqi Zhang, and Chengkuan Lin. Trusted resource allocation based on proof-of-reputation consensus mechanism for edge computing. Peer-to-Peer Networking and Applications, pages 1–17, 2021.
55. Shuang Hu, Lin Hou, Gongliang Chen, Jian Weng, and Jianhua Li. Reputation-based distributed knowledge sharing system in blockchain. In Proceedings of the 15th EAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services, pages 476–481, 2018.
56. Zhuo Hu, Yuhao Du, Congjun Rao, and Mark Goh. Delegated proof of reputation consensus mechanism for blockchain-enabled distributed carbon emission trading system. IEEE Access, 8:214932–214944, 2020.
57. Chenyu Huang, Zeyu Wang, Huangxun Chen, Qiwei Hu, Qian Zhang, Wei Wang, and Xia Guan. Repchain: A reputation-based secure, fast, and high incentive blockchain system via sharding. IEEE Internet of Things Journal, 8(6):4291–4304, 2020.
58. Gene Itkis and Leonid Reyzin. Forward-secure signatures with optimal signing and verifying. In Joe Kilian, editor, CRYPTO 2001, volume 2139 of LNCS, pages 332–354. Springer, Heidelberg, August 2001.
59. Abdellah Kaci and Abderrezak Rachedi. Toward a machine learning and software defined network approaches to manage miners’ reputation in blockchain. Journal of Network and Systems Management, 28(3):478–501, 2020.
60. Sep Kamvar, Marek Olszewski, and Rene Reinsberg. Celo: A multi-asset cryptographic protocol for decentralized social payments.(2017). 2017.
61. Sepandar D Kamvar, Mario T Schlosser, and Hector Garcia-Molina. The eigentrust algorithm for reputation management in p2p networks. In Proceedings of the 12th international conference on World Wide Web, pages 640–651, 2003.
62. Jiawen Kang, Zehui Xiong, Dusit Niyato, Dongdong Ye, Dong In Kim, and Jun Zhao. Toward secure blockchain-enabled internet of vehicles: Optimizing consensus management using reputation and contract theory. IEEE Transactions on Vehicular Technology, 68(3):2906–2920, 2019.
63. Jonathan Katz and Chiu-Yuen Koo. On expected constant-round protocols for byzantine agreement. In Cynthia Dwork, editor, CRYPTO 2006, volume 4117 of LNCS, pages 445–462. Springer, Heidelberg, August 2006.
64. Hakima Khelifi, Senlin Luo, Boubakr Nour, Hassine Moungla, and Syed Hassan Ahmed. Reputation-based blockchain for secure ndn caching in vehicular networks. In 2018 IEEE Conference on Standards for Communications and Networking (CSCN), pages 1–6. IEEE, 2018.
65. Aggelos Kiayias, Alexander Russell, Bernardo David, and Roman Oliynykov. Ouroboros: A provably secure proof-of-stake blockchain protocol. In Jonathan Katz and Hovav Shacham, editors, CRYPTO 2017, Part I, volume 10401 of LNCS, pages 357–388. Springer, Heidelberg, August 2017.
66. Aggelos Kiayias, Hong-Sheng Zhou, and Vassilis Zikas. Fair and robust multi-party computation using a global transaction ledger. In Marc Fischlin and Jean-Sébastien Coron, editors, EUROCRYPT 2016, Part II, volume 9666 of LNCS, pages 705–734. Springer, Heidelberg, May 2016.
67. Leslie Lamport and P. M. Melliar-Smith. Byzantine clock synchronization. In Robert L. Probert, Nancy A. Lynch, and Nicola Santoro, editors, 3rd ACM PODC, pages 68–74. ACM, August 1984.
68. Kai Lei, Qichao Zhang, Limei Xu, and Zhuyun Qi. Reputation-based byzantine fault-tolerance for consortium blockchain. In 2018 IEEE 24th International Conference on Parallel and Distributed Systems (ICPADS), pages 604–611. IEEE, 2018.
69. Christoph Lenzen, Thomas Locher, and Roger Wattenhofer. Clock synchronization with bounded global and local skew. In 49th FOCS, pages 509–518. IEEE Computer Society Press, October 2008.
70. Bernardo Magri, Christian Matt, Jesper Buus Nielsen, and Daniel Tschudi. Afgjort - A semi-synchronous finality layer for blockchains. IACR Cryptology ePrint Archive, 2019:504, 2019.
71. Shirshak Maskey, Shahriar Badsha, Shamik Sengupta, and Ibrahim Khalil. Reputation-based miner node selection in blockchain-based vehicular edge computing. IEEE Consumer Electronics Magazine, 2020.
72. Silvio Micali, Michael O. Rabin, and Salil P. Vadhan. Verifiable random functions. In 40th FOCS, pages 120–130. IEEE Computer Society Press, October 1999.
73. Andrew Miller, Yu Xia, Kyle Croman, Elaine Shi, and Dawn Song. The honey badger of BFT protocols. In Edgar R. Weippl, Stefan Katzenbeisser, Christopher Kruegel, Andrew C. Myers, and Shai Halevi, editors, ACM CCS 2016, pages 31–42. ACM Press, October 2016.
74. Satoshi Nakamoto. Bitcoin: A peer-to-peer electronic cash system, 2008. http://bitcoin.org/bitcoin.pdf.
75. Mehrdad Nojoumian, Arash Golchubian, Laurent Njilla, Kevin Kwiat, and Charles Kamhoua. Incentivizing blockchain miners to avoid dishonest mining strategies by a reputation-based paradigm. In Science and Information Conference, pages 1118–1134. Springer, 2018.
76. Rafail Ostrovsky and Boaz Patt-Shamir. Optimal and efficient clock synchronization under drifting clocks. In Brian A. Coan and Jennifer L. Welch, editors, 18th ACM PODC, pages 3–12. ACM, May 1999.
77. Rafail Ostrovsky and Moti Yung. How to withstand mobile virus attacks (extended abstract). In Luigi Logrippo, editor, 10th ACM PODC, pages 51–59. ACM, August 1991.
78. Rafael Pass, Lior Seeman, and abhi shelat. Analysis of the blockchain protocol in asynchronous networks. In Jean-Sébastien Coron and Jesper Buus Nielsen, editors, EUROCRYPT 2017, Part II, volume 10211 of LNCS, pages 643–673. Springer, Heidelberg, April / May 2017.
79. Rafael Pass and Elaine Shi. Thunderella: Blockchains with optimistic instant confirmation. In Jesper Buus Nielsen and Vincent Rijmen, editors, EUROCRYPT 2018, Part II, volume 10821 of LNCS, pages 3–33. Springer, Heidelberg, April / May 2018.
80. Muntadher Sallal, Gareth Owenson, Dawood Salman, and Mo Adda. Security and performance evaluation of master node protocol based reputation blockchain in the bitcoin network. Blockchain: Research and Applications, page 100048, 2021.
81. Sidharth Shyamsukha, Pronaya Bhattacharya, Farnazbanu Patel, Sudeep Tanwar, Rajesh Gupta, and Emil Pricop. Porf: Proof-of-reputation-based consensus scheme for fair transaction ordering. In 2021 13th International Conference on Electronics, Computers and Artificial Intelligence (ECAI), pages 1–6. IEEE, 2021.
82. T. K. Srikanth and Sam Toueg. Optimal clock synchronization. In Michael A. Malcolm and H. Raymond Strong, editors, 4th ACM PODC, pages 71–86. ACM, August 1985.
83. You Sun, Rui Xue, Rui Zhang, Qianqian Su, and Sheng Gao. Rtchain: A reputation system with transaction and consensus incentives for e-commerce blockchain. ACM Transactions on Internet Technology (TOIT), 21(1):1–24, 2020.
84. You Sun, Rui Zhang, Rui Xue, Qianqian Su, and Pengchao Li. A reputation based hybrid consensus for e-commerce blockchain. In International Conference on Web Services, pages 1–16. Springer, 2020.
85. Changbing Tang, Luya Wu, Guanghui Wen, and Zhonglong Zheng. Incentivizing honest mining in blockchain networks: a reputation approach. IEEE Transactions on Circuits and Systems II: Express Briefs, 67(1):117–121, 2019.
86. Eric Ke Wang, Zuodong Liang, Chien-Ming Chen, Saru Kumari, and Muhammad Khurram Khan. Porx: A reputation incentive scheme for blockchain consensus of iiot. Future Generation Computer Systems, 102:140–151, 2020.
87. Gang Wang. Repshard: Reputation-based sharding scheme achieves linearly scaling efficiency and security simultaneously. In 2020 IEEE International Conference on Blockchain (Blockchain), pages 237–246. IEEE, 2020.
88. J. Yu, D. Kozhaya, J. Decouchant, and P. Esteves-Verissimo. Repucoin: Your reputation is your power. IEEE Transactions on Computers, 68(8):1225–1237, Aug 2019.
89. Jiangshan Yu, David Kozhaya, Jeremie Decouchant, and Paulo Esteves-Verissimo. Repucoin: Your reputation is your power. IEEE Transactions on Computers, 68(8):1225–1237, 2019.
90. Jiarui Zhang, Yukun Cheng, Xiaotie Deng, Bo Wang, Jan Xie, Yuanyuan Yang, and Mengqian Zhang. A reputation-based mechanism for transaction processing in blockchain systems. IEEE Transactions on Computers, 2021.
91. Jiarui Zhang, Yaodong Huang, Fan Ye, and Yuanyuan Yang. A novel proof-of-reputation consensus for storage allocation in edge blockchain systems. In 2021 IEEE/ACM 29th International Symposium on Quality of Service (IWQOS), pages 1–10. IEEE, 2021.
92. Mengqian Zhang, Yukun Cheng, Xiaotie Deng, Bo Wang, Jan Xie, Yuanyuan Yang, and Jiarui Zhang. Accelerating transactions relay in blockchain networks via reputation. In 2021 IEEE/ACM 29th International Symposium on Quality of Service (IWQOS), pages 1–10. IEEE, 2021.
93. Shenchen Zhu, Ziyan Zhang, Liquan Chen, Hui Chen, and Yanbo Wang. A pbft consensus scheme with reputation value voting based on dynamic clustering. In International Conference on Security and Privacy in Digital Economy, pages 336–354. Springer, 2020.
94. Qianwei Zhuang, Yuan Liu, Lisi Chen, and Zhengpeng Ai. Proof of reputation: A reputation-based consensus protocol for blockchain based systems. In Proceedings of the 2019 International Electronics CommunicationConference, pages 131–138, 2019.