Skip to main content

Lightning Network Exploits Continue to Hinder the Bitcoin Scaling Solution


via Bitcoin News https://ift.tt/3mGmODQ Lightning Network Exploits Continue to Hinder the Bitcoin Scaling Solution

While bitcoin has run-up to all new price highs in 2020, a great number of crypto supporters have been complaining about the mempool backlog and the high fees needed to send a transaction. Meanwhile, the Lightning Network is far from seeing widespread adoption, and a number of attack vectors have been revealed this year.

At the time of publication, the Bitcoin (BTC) mempool (backlog of transactions) shows 113,000+ unconfirmed transactions and the backlog hasn’t been this high since 2017. When the bull run took place three years ago, transaction fees and unconfirmed transactions shot through the roof. Currently, according to bitcoinfees.cash data on October 31, the next BTC block fee is $10.77 and the current median fee is $6.43.

Even with the high fees and the mempool clog, the greater bitcoin community is still transacting mostly onchain. The Layer 2 protocol built on top of Bitcoin called the Lightning Network (LN) was supposed to ease the problems, and it was assumed people would shift to the LN solution. However, this never came to fruition, as the LN software has been considered too difficult for the average user, many apps are custodial, and there have been numerous vulnerabilities disclosed this year.

Even though the LN total-value-locked (TVL) in 2020 has been at an all-time high ($14.3M), it hasn’t come close to the over $2 billion worth of bitcoin (BTC) held on Ethereum. The attack vectors have also been making crypto advocates leery of the Layer 2 protocol, as there’s been a number of vulnerabilities disclosed. For instance, Joost Jager, an independent Bitcoin and Lightning Network engineer tweeted about one on Sept. 22.

“Lightning is great, but can’t say it is battle-tested,” said Jager. “If script kids would be interested, they could take down those shiny new 5 BTC wumbo channels with negligible cost and no effort at all.” The fact that any script kiddie could leverage the ‘griefing attack’ to take down those 5 BTC channels, with very little effort, is quite discouraging.

The Bitcoin (BTC) mempool (backlog of transactions) shows 113,000+ unconfirmed transactions on October 31, 2020.

Moreover, the researchers Jona Harris and Aviv Zohar recently published a paper called: “Flood & Loot: A Systemic Attack On The Lightning Network,” which is similar to the griefing attack.

“One of the risks that were identified early on is that of a wide systemic attack on the protocol, in which an attacker triggers the closure of many Lightning channels at once,” explains the paper’s authors. “The resulting high volume of transactions in the blockchain will not allow for the proper settlement of all debts, and attackers may get away with stealing some funds. This paper explores the details of such an attack and evaluates its cost and overall impact on Bitcoin and the Lightning Network.”

Furthermore, on June 2, 2020, Antoine Riard and Gleb Naumenko published a paper on another Lightning Network vulnerability called the “time-dilation attack.” One scary fact that Naumenko and Riard disclose about the time-dilation attack, is that it is “currently possible to steal the total channel capacity by keeping a node eclipsed for as little as 2 hours.”

Not too long after that issue, Antoine Riard recently discussed another susceptible exploit called the “Pinning Attack.” Riard notes that to the best of his knowledge, “currently deployed LN peers aren’t secure against [certain Pinning Attack] scenarios.” One particular scenario “requires heavy, long-term work at the base layer,” Riard stressed.

The Lightning Network has been around for quite some time, but these vulnerabilities and exploits combined with how unfriendly the user experience is, it hard to imagine the second layer solution catching on.

Of course, some of the exploits are more costly than other attacks, and engineers are working on solutions to fix these issues. However, many Lightning Network skeptics don’t believe the LN protocol will ever be ready, as one individual noted on Twitter:

Even if that were a success (by 2051, with one-third of the buyers already dead of old age) Lightning Network would STILL be vulnerable to Flood and Loot attack, and trivial DDOS at the protocol level. Lightning Network is no solution whatsoever.

What do you think about the Lightning Network vulnerabilities disclosed this year? Do you think it’s a good scaling solution? Let us know what you think in the comments section below.

The post Lightning Network Exploits Continue to Hinder the Bitcoin Scaling Solution appeared first on Bitcoin News.

Labels:

Comments

Post a Comment

Any questions, Please.

Popular posts from this blog

DeFi isn’t dead, it just needs to fix these 3 critical problems

It’s been a rough year for DeFi, and it may not get any better until projects focus more on security, regulation and usability. The persistent challenges  decentralized finance  face have been well documented by a handful of analysts and the recent collapse of the Terra ecosystem re-enforced the fact that something is critically wrong with DeFi. I think DeFi today is completely broken for 99% of the population. The promise of a more transparent financial system has been overtaken by greed. UST/LUNA is just the latest in a string of bad developments: — Peter Yang (@petergyang) May 11, 2022 Let's take a look at what experts say DeFi needs to do in order to have another revival.  Improved usability To date, the promise of open and uncensored access to a global decentralized financial system has been largely hampered by the complicated interface, confusing multi-step staking processes and lack of clarity surrounding the yields on various tokens. What do you thi...
Post a Comment
Read more

ENS DAO delegates offer perspective on DAO governance and decentralized identity

AlphaWallet CEO and Spruce co-founder talk about their roles as contributors to the Ethereum Name Service following the project's recent airdrop. Earlier this month, the Ethereum Name Service, or ENS, formed a decentralized autonomous organization, or DAO, for the ENS community.  Cointelegraph spoke to two ENS DAO delegates who applied for the opportunity to represent the community and stay involved in the decision making process: Victor Zhang, CEO of AlphaWallet, an open source Ethereum wallet, and Gregory Rocco, co-founder of Spruce, a decentralized ID and data toolkit for developers. Zhang spoke about his experience as an external contributor to ENS and an early supporter since 2018. Zhang initially sought to help ENS by offering Alpha Wallet as a user-friendly tool for  resolving .eth names and cryptocurrency wallet addresses. Essentially, if a user inputs an .eth name in the AlphaWallet, it will show the wallet address, and vice versa using reverse resolution. Alpha...
Post a Comment
Read more

Institutional demand for crypto isn’t subsiding, but impact will be gradual

As another $2-trillion stimulus package looms in the U.S., institutions will continue to look at BTC as a hedge against inflation. For example, just last week, when the currency was hovering around the $30,000 threshold, a whole host of pundits was warning investors to brace for impact, suggesting that the premier crypto asset was on the verge of a correction and could once again dip to around the $20,000 region. However, in just one day, Bitcoin was once again playing with the bulls, retesting the $38,500 limit, only to witness a selloff and eventually settle around the $33,500 region. While for most crypto veterans that might have been another day at the office, others branded the upsurge as “Elon’s Candle,” which relates to Elon Musk, the CEO of Tesla, who included “Bitcoin” in his Twitter bio as well as sent out the following cryptic message “in retrospect, it was inevitable” to his 40 million-odd followers online. Regardless of the cause, has the recent price volatility sca...
Post a Comment
Read more