Proof of Byzantine Fault Tolerance

Mathematics of Hashgraph

Assumptions

• More of ⅔ of all members are honest and less than ⅓ are not honest.

Assumptions

• More of ⅔ of all members are honest and less than ⅓ are not honest.
• The digital signatures and cryptographic hashes are secure.

Assumptions

• More of ⅔ of all members are honest and less than ⅓ are not honest.
• The digital signatures and cryptographic hashes are secure.
• If Alice sends Bob all the events she knows, Bob accepts only those that are valid.

Assumptions

• More of ⅔ of all members are honest and less than ⅓ are not honest.
• The digital signatures and cryptographic hashes are secure.
• If Alice sends Bob all the events she knows, Bob accepts only those that are valid.
• If Alice and Bob are honest, and Alice repeatedly tries to send Bob a message, she will eventually succeed.

Definitions

• c and d are parents of a
• c is a self-parent of a

Definitions

• c and d are parents of a
• c is a self-parent of a
• a has the ancestors a, c, d, e, f, g
• a has the self-ancestors a, c, g
• b is neither an ancestor nor a self-ancestor of a

Definitions

• c and d are parents of a
• c is a self-parent of a
• a has the ancestors a, c, d, e, f, g
• a has the self-ancestors a, c, g
• b is neither an ancestor nor a self-ancestor of a
• A pair of events (a, a’) is a fork if both have the same creator, but neither is a self-ancestor of the other

Definitions

• c and d are parents of a
• c is a self-parent of a
• a has the ancestors a, c, d, e, f, g
• a has the self-ancestors a, c, g
• b is neither an ancestor nor a self-ancestor of a
• A pair of events (a, a’) is a fork if both have the same creator, but neither is a self-ancestor of the other
• d can see e, f, g if these events (and their ancestors) does not include a fork
• d cannot see a, b, c

Lemma 1: All members have consistent hashgraphs.

Lemma 1: All members have consistent hashgraphs.

Definition:

Two hashgraphs A and B are consistent if for any event x in A and B, both contain the same set of ancestors for x (with the same edges between those ancestors).

Lemma 1: All members have consistent hashgraphs.

Proof:

​

x

Hashgraph A

Hashgraph B

Lemma 1: All members have consistent hashgraphs.

Proof:

​

​

x

y’

z’

y’’

z’’

Hashgraph A

Hashgraph B

Lemma 1: All members have consistent hashgraphs.

Proof:

​

x

y

z

Hashgraph A

Hashgraph B

Lemma 2 (Strongly Seeing Lemma)

Lemma 2 (Strongly Seeing Lemma)

Definition:

An event x can strongly see y if

• x can see y,
• there is a set S of events by more than ⅔ of the members such that
• x can see every event in S and
• every event in S can see y.

S

Lemma 2 (Strongly Seeing Lemma)

If the pair of events (x, y) is a fork and x is strongly seen by v in hashgraph A, then y will not be strongly seen by any event in any hashgraph B that is consistent with A.

Lemma 2 (Strongly Seeing Lemma)

If the pair of events (x, y) is a fork and x is strongly seen by v in hashgraph A, then y will not be strongly seen by any event in any hashgraph B that is consistent with A.

S

S

A

B

x

y

v

w

A, B

​

​

consistent

Lemma 2 (Strongly Seeing Lemma)

Proof:

Assume, there exists a hashgraph B that is consistent with A, such that

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

​

Part of the members, created events in SA:

Lemma 2 (Strongly Seeing Lemma)

Proof:

​

Part of the members, created events in SB:

Lemma 2 (Strongly Seeing Lemma)

Proof:

​

​

​

​

Part of the members, created events in both:

Lemma 2 (Strongly Seeing Lemma)

Proof:

​

​

​

​

At least one honest member created events here!

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent
• ​
• ​

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent
• ​

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent
• ​

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent
• ​
• ​

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

Proof:

• Let Nhan be that member with events
• Nhan ist honest, so both events cannot be forks
• Without loss of generality let be the self-ancestor of
• Lemma 1 Hashgraphs A and B are consistent
• ​
• ​
• ​
• Contradiction!

​

S

S

A

B

x

y

v

w

Lemma 2 (Strongly Seeing Lemma)

If the pair of events (x, y) is a fork and x is strongly seen by v in hashgraph A, then y will not be strongly seen by any event in any hashgraph B that is consistent with A.

S

S

A

B

x

y

v

w

A, B

​

​

consistent

Summary so far and further implications

• At every moment all members will have consistent hashgraphs.
• All members will agree on every property of a given event.

Summary so far and further implications

• At every moment all members will have consistent hashgraphs.
• All members will agree on every property of a given event.

Implications:

• The members assign a unique round created number to a given element.
• The election votes of a witness are unique.
• Theorem: For any single YES/NO question, consensus is achieved eventually with probability 1.
• Every round will immutably classify all its witnesses as famous or not famous.

Byzantine Fault Tolerance Theorem

​

Each event x created by an honest member will eventually be assigned a consensus position in the total order of events, with probability 1.

Demo

​

The Coq Proof Assistant

Coq is a formal proof management system. It provides a formal language to write mathematical definitions, executable algorithms and theorems together with an environment for semi-interactive development of machine-checked proofs.

Any Questions?

Thank you for your attention!

Sources

• https://www.hedera.com/
• https://www.hedera.com/hh-whitepaper-v1.5-190219.pdf
• https://www.hedera.com/platform#security
• https://www.swirlds.com/downloads/SWIRLDS-TR-2016-02.pdf
• https://cs.uwaterloo.ca/~tozsu/courses/CS755/F13/Presentations/jose.pdf
• https://people.eecs.berkeley.edu/~luca/cs174/byzantine.pdf
• https://www.youtube.com/watch?v=cje1vuVKhwY
• https://coq.inria.fr/
• https://ilyasergey.net/pnp-2014/
• https://blog.liliaanisimova.com/
• https://medium.com/coinmonks/is-blockchain-alternative-hashgraph-really-a-game-changer-a-beginners-guide-a1bdadf959de
• https://steemit.com/bitcoin/@humanjets/the-byzantine-generals-problem
• https://www.cryptonomy.com/knowledge/byzantine-general-problem

Contact Details

​

​

​

​

KrystianGaus@gmail.com

https://www.xing.com/profile/Krystian_Gaus

https://www.linkedin.com/in/krystian-gaus-86aa1b15a/

​

​

​