Sybil Attack - Reading Assignment

1. Creating multiple fake identities to obtain a disproportionate amount of control over a given network and have more more influence over it.
2. It doesn’t cost anything to create “new identities” on the cryptocurrency network because there is really no real identity/KYC or information about the person behind an address which makes a sybil attack theoretically possible.

What is the general idea of a sybil attack?

In a Sybil attack, the attacker subverts the reputation system of a network service by creating a large number of pseudonymous identities and uses them to gain a disproportionately large influence e.g. a United State voting system etc.

What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?

A Sybil attack grants undue influence to a single entity simply because that entity controls many pseudonyms. A successful Sybil attack against a blockchain would allow bad actors disproportionate control over the network. If these fake identities receive recognition from the network (e.g. fake bitcoin nodes), they might be able to vote on behalf of various proposals or interrupt the flow of information across the network (e.g. push an update and cause a hard fork).

A blockchain can prevent this type of attacks by:

1. Having high vost to Create an Identity e.g. increase dramatically the cost of creating a new identity.
2. Building a chain of trust e.g. requiring trust before allowing a new identity to join the network.
3. Using unequal reputation mechanisms e.g. weighting user power based on reputation.

• What is the general idea of a sybil attack?

Where somebody runs multiple nodes on a blockchain network.

• What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?

It is easy to create multiple ID’s, it just expensive and impracticable to carry out an attack as POW is costly.

The exploitation of the p2p network system through fake identity generating malfunction
Anonymity

1. The general idea of a sybil attack is…
   One person or entity creating multiple accounts or identities on a network.
   To sway influence in voting or manipulating nodes.

2. When there is no cost to enter the network it can be flooded by bad actors.

1. What is the general idea of a sybil attack?

A sybil attack is when someone tries to pretend to be different people with multiple nodes to try to control the network and perform a 51% attack to double spend.

2. What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?

A 51% attack (For PoW) in the Bitcoin blockchain can allow a sybil attack. While in PoS, 1 person may be rich enough to buy or bought in very cheap to a crypto that they have majority vote which is not very decentralized if pretty much everything they say will almost always get passed in voting.

1 Where a reputation system is subverted by creating multiple identities, the susceptibility is dependent upon how easily and cheaply identities can be generated.

2. The degree to which the reputation system accepts inputs from entities that do not have a chain of trust linking them to a trusted entity, and whether the reputation system treats all entities identically.

1. Creating a large number of fake identities and uses them to gain disproportionately large influence.

2. Because creating identities in cryptocurrency network is cheap and easy.

1. a single person gaining disproportionate influence on a network through creating multiple identities.
2. The anonymity of block chain allows for one source to create numerous new identities while remaining hidden and safe.

1. To infiltrate a system/network by creating a large number of pseudonymous identities to gain influence.

2. The ability to create multiple nodes in a peer-to-peer network and then acquire a disproportionate level of control over that network, all without proof of identity.

1. The General idea of sybil attacks is when any account holder misuses their account to create multipul identities to influence the nodes on the network.

2. I believe deficiencies in a system or network could be, many factors mainly the ease and low cost of creating many identities as well as possibly minimal to no KYC.

1. to create large number of fake identities in order to bring down the reputation of a network

2. how cheap identities can be created, which means its so easy to create new users

1. What is the general idea of a sybil attack?
2. What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?

1. The the general idea of a sybil attack is masquerade as a different person trying to create the impression numerous nodes are contacting somebody who wants to verify a transaction. The point is to influence somebody by creating a false sense of security.

2)Having a poor consensus algorithm would contribute ti the likelihood of a sybil attack. By being given the sole to create multiple identities then a sybil attack becomes more likely. A voting system without proof of identity is also another deficiency.

Sybil Attack

1. What is the general idea of a sybil attack?
   The general idea is that one entity can create multiple identities that are then used to disproportionally influence the entire network or parts of it – ultimately down to a single node.

2. What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?
   Factors that can negatively impact a system like a cryptocurrency network are e.g.:

   • If it’s cost efficient and easy to create new identities in large numbers
   • If the network is relatively small so that a smaller number of malicious identities can have high impact
   • If nodes stay connected to the same set of peers for too long and thus depend on limited sources of truth

1. What is the general idea of a sybil attack?
   An attack wherein a reputation system is subverted by creating multiple identities.

2. What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?
   When it is easy (low cost and simple) to create many identities with minimal disproportionately high rewards vs low/non-existing punishment for bad actors.

1. What is the general idea of a sybil attack?
   TO create a disproportionate umber of fake identities to gain influence on a network.
2. What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?
   If the network alows/ makes cheap to create many identities by a single user, it makes itself vulnerable.

1- On a peer-to-peer network to create as many identities as possible (by a single entity) to gain influence in that network.
2- If there isn’t an economic cost, like proof of work, or when there isn’t a way to properly manage identity validation

Sybi Attack - Reading

1. The general idea of a Sybil attack is when an attacker create a large number of pseudonymous identities and use them to gain a disproportionately large influence.

2. Deficiencies within a system (such as cryptocurrency network) that can allow a Sybil attack to occur are:

• if there is a wide degree to which a reputation system accepts inputs from entities that do not have a chain of trust linking them to a trusted entity.

• if the reputation system treats all entities identically.

• if the mapping of identities is many to one.

1. Influence a network service in a (most of the times I guess) negative way. As explained by Ivan in the lecture, an example of a sybil attack for the btc network would mean the creation of numerous nodes with the intention to broadcast false informations to other nodes.

• no or little account/node creation cost
• no verification of personal identity/personhood
• absence of social trust graphs (e.g. a reputation system)
• code written without considering sybil prevention

1. What is the general idea of a sybil attack?
   One node created multiple identities and acts as a majority to reach consensus among the nodes.

2. What deficiencies within a system (such as a cryptocurrency network) can allow a sybil attack to occur?
   -Glitches in the consensus algorithm.
   -Low cost and effort to create multiple identities.