BITE: Bitcoin Lightweight Client Privacy using Trusted Execution

Authors: Siniša Matetić, Karl Wüst, Moritz Schneider, Kari Kostiainen, Ghassan Karame, and Srdjan Čapkun

Proceedings of the 28th USENIX Conference on Security Symposium (SEC'19)

Abstract

Blockchains offer attractive advantages over traditional payments such as the ability to operate without a trusted authority and increased user privacy. However, the verification of blockchain payments requires the user to download and process the entire chain which can be infeasible for resource-constrained devices like mobile phones. To address this problem, most major blockchain systems support so called lightweight clients that outsource most of the computational and storage burden to full blockchain nodes. However, such verification leaks critical information about clients’ transactions, thus defeating user privacy that is often considered one of the main goals of decentralized cryptocurrencies. In this paper, we propose a new approach to protect the privacy of light clients in Bitcoin. Our main idea is to leverage the trusted execution capabilities of commonly available SGX enclaves. We design and implement a system called BITE where enclaves on full nodes serve privacy-preserving requests from light clients. However, as we will show, naive processing of client requests from within SGX enclaves still leaks client’s addresses and transactions. BITE therefore integrates several private information retrieval and side-channel protection techniques at critical parts of the system. We show that BITE provides significantly improved privacy protection for light clients without compromising the performance of the assisting full nodes.

Research Areas: Decentralized Systems and Trusted Computing

People

Dr. Siniša Matetić

Doctoral Student (2015 – 2019)

SwissSign Group AG

Dr. Karl Wüst

Doctoral Student (2016 – 2021)

Faculty, CISPA

Dr. Moritz Schneider

Post-doc (2018 – 2025)

CTO, Soverli AG

Dr. Kari Kostiainen

Senior Scientist

Dr. Ghassan Karame

Doctoral Student (2007 – 2011)

Professor, Ruhr University Bochum

Prof. Srdjan Čapkun

Group Leader

BibTex

@inproceedings{matetic2019bitcoin,
  author    = {Matetic, Sinisa and W{\"{u}}st, Karl and Schneider, Moritz and Kostiainen, Kari and Karame, Ghassan and Capkun, Srdjan},
  title     = {{BITE: Bitcoin Lightweight Client Privacy using Trusted Execution}},
  booktitle = {Proceedings of the 28th USENIX Conference on Security Symposium (SEC'19)},
  address   = {Santa Clara, CA, USA},
  year      = 2019,
  month     = aug,
  publisher = {USENIX Association},
  url       = {https://www.usenix.org/conference/usenixsecurity19/presentation/matetic}
}

Research Collection: 20.500.11850/389346