One of the biggest problems in Lightning finally has a solution.
CHANNEL JAMMING–
A Hybrid Approach:
Firstly, what is channel jamming?
Jamming is a type of denial of service (DDoS) attack on Lightning channels.
The goal of the attack is to make a Lightning channel unusable.
To execute this attack, a malicious actor sets up two nodes and sends payments between them.
However, they don’t release the preimage (the secret number that unlocks funds across the route) for each payment promptly, leaving the payment stuck “in flight”.
By sending a payment to themselves, and never releasing the secret, the attacker can let payments “hang” in flight, until the timelock on the HTLC (hashed timelock contract) expires.
This is a problem because each channel can only have a fixed number of in-flight payments: 483.
Side quest:
Why only 483 max “in flight” HTLCs?
Well, it has to do with the maximum size of an on-chain BTC transaction.
If you had more than 483 HTLCs and needed to close the Lightning channel, the transaction would be too large to enforce on-chain.
So, to summarize:
Jamming is a DDoS attack that makes Lightning channels unusable.
Victims of channel jamming cannot send and receive payments or earn routing revenue.
But how big is this problem?
To put it in perspective, an attacker could potentially jam the entire LN for only 500,000 to 3M sats per month (according to Antoine Riard and Gleb Naumenko)
By jamming only 20% of the channels (14,000 channels), the attacker could make the entire network unusable(1).
As you can see now, this is a pretty serious issue.
So what’s the solution?
We are not cavemen, after all!
Channel jamming has been a known problem in LN since 2015.
As you can imagine, there are many ideas about how to properly solve it.
But for this thread, we’re going to focus solely on Carla Kirk-Cohen, Clara Shik, and Sergei Tikhomirov’s “hybrid” approach.
Their approach is a combination of two main ideas:
1. Unconditional fees2. Reputation scheme
Each idea solves a different type of jamming:
Unconditional fees for “fast” jamming.
Reputation scheme for “slow” jamming.
Just to clarify real quick,
Fast jamming is a constant stream of HTLCs that fail instantly (think of a machine gun).
While slow jams remain “in flight” for hours or even days (more like a hostage situation).
1/ Unconditional fees
A fee should be paid unconditionally, regardless of whether the payment fails or succeeds.
Ideally, this would make fast-jamming attacks prohibitively expensive.
However, that may impose too much of a burden on honest users.
A more realistic goal is to compensate the routing node under attack for the lost revenue.
According to a simulation Clara & Sergei built, if we increase the fees paid by just 2%, routing nodes would be fully compensated for any jamming attacks.
So for example, if a normal payment fee was 100 sats, an additional 2 sats upfront on all payments would be sufficient.
2/ Reputation scheme
While fees are great for addressing fast-jamming attacks, they are ineffective against slow-jamming attacks.
For this reason, the hybrid approach incorporates a reputation scheme.
The reputation scheme is local.
Nodes only assign reputation to their peers.
This reduces a ton of complexity, as local reputation requires no coordination across the network.
So how does the reputation scheme work?
Nodes keep track of their peers’ past history.
If a peer forwards honest payments that bring in sufficient fee revenue, the node considers that peer “high-reputation”.
If a peer constantly forwards jams, the node considers it “low reputation”.
Nodes also have the option to “endorse” payments that they forward.
So for example, a payment endorsed by a high-reputation peer is considered *low-risk*.
While an un-endorsed payment from a low-reputation peer may be considered *HIGH* risk.
By using slot bucketing in combination with this reputation scheme, we can limit the number of “in-flight” high risk payments at any given time.
This prevents a malicious actor from fully jamming a channel.
So let’s say the 4 general slots are all jammed.
If an HTLC isn’t endorsed, we fail it.
We don’t allow the un-endorsed HTLC to use up more of our liquidity.
However, if a payment is endorsed from a high-reputation peer, we will forward it along.
Each node can create their own custom parameters for these slots & reputation based on their risk tolerance.
High risk tolerance? Maybe you allocate more slots toward un-endorsed HTLCs.
Low tolerance? Maybe you only forward endorsed HTLCs.
It’s up to the individual to decide.
TLDR;
The hybrid approach combines unconditional fees (for fast-jamming), and a reputation scheme (for slow-jamming).
An upfront fee increase of 2% can effectively repay routing nodes for fast-jamming attacks, and the local reputation scheme takes advantage of HTLC endorsement and slot bucketing to ensure that a given channel can never be fully jammed.
Resources/Further information:
If you’re running a Lightning node, you can help this research effort!
Fill out their survey here:https://docs.google.com/forms/d/e/1FAIpQLScm2xs4hNsrkI8UCBS4aTdO03YrmWT2X0-j6zXWpkZ7keKiUw/viewform?usp=send_form
Check out the BOLT PR here:https://github.com/lightning/bolts/pull/1071
And here’s a summary of the full research paper:https://research.chaincode.com/2022/11/15/unjamming-lightning/
Sources:(1): https://jamming-dev.github.io/book/2-costs.html
That’s it!
We hope you learned something new.
Special thanks to Carla, Clara, Sergei, and Chaincode Labs for their awesome work on this🙏🏻
Follow us for more!
Torq (formerly LN Capital) / LN Capital
npub1kn…gxkhm
2023-09-24 17:18:44
Author Public Key
npub1kn860wn93ky8vnnzm5x5pdkl8npemzn3lcdagj9zdwf98ytwd89sxgxkhmPublished at
2023-09-24 17:18:44Event JSON
{
"id": "9755b6c6394335261e5e8a2295b948733ea45163c3abd0b95dbd00193efaa5b9",
"pubkey": "b4cfa7ba658d88764e62dd0d40b6df3cc39d8a71fe1bd448a26b9253916e69cb",
"created_at": 1695575924,
"kind": 1,
"tags": [
[
"client",
"coracle"
]
],
"content": "One of the biggest problems in Lightning finally has a solution.\nCHANNEL JAMMING–\nA Hybrid Approach:\n\nFirstly, what is channel jamming?\nJamming is a type of denial of service (DDoS) attack on Lightning channels.\nThe goal of the attack is to make a Lightning channel unusable.\n\nTo execute this attack, a malicious actor sets up two nodes and sends payments between them.\nHowever, they don’t release the preimage (the secret number that unlocks funds across the route) for each payment promptly, leaving the payment stuck “in flight”.\n\nBy sending a payment to themselves, and never releasing the secret, the attacker can let payments “hang” in flight, until the timelock on the HTLC (hashed timelock contract) expires.\nThis is a problem because each channel can only have a fixed number of in-flight payments: 483.\n\nSide quest: \nWhy only 483 max “in flight” HTLCs?\nWell, it has to do with the maximum size of an on-chain BTC transaction. \nIf you had more than 483 HTLCs and needed to close the Lightning channel, the transaction would be too large to enforce on-chain.\n\nSo, to summarize:\nJamming is a DDoS attack that makes Lightning channels unusable.\nVictims of channel jamming cannot send and receive payments or earn routing revenue.\nBut how big is this problem?\n\nTo put it in perspective, an attacker could potentially jam the entire LN for only 500,000 to 3M sats per month (according to Antoine Riard and Gleb Naumenko)\nBy jamming only 20% of the channels (14,000 channels), the attacker could make the entire network unusable(1).\n\nAs you can see now, this is a pretty serious issue.\nSo what’s the solution?\nWe are not cavemen, after all!\n\nChannel jamming has been a known problem in LN since 2015.\nAs you can imagine, there are many ideas about how to properly solve it.\nBut for this thread, we’re going to focus solely on Carla Kirk-Cohen, Clara Shik, and Sergei Tikhomirov’s “hybrid” approach.\n\nTheir approach is a combination of two main ideas:\n1. Unconditional fees2. Reputation scheme\n\nEach idea solves a different type of jamming:\nUnconditional fees for “fast” jamming.\nReputation scheme for “slow” jamming.\n\nJust to clarify real quick,\nFast jamming is a constant stream of HTLCs that fail instantly (think of a machine gun).\nWhile slow jams remain “in flight” for hours or even days (more like a hostage situation).\n\n1/ Unconditional fees\nA fee should be paid unconditionally, regardless of whether the payment fails or succeeds.\nIdeally, this would make fast-jamming attacks prohibitively expensive.\n\nHowever, that may impose too much of a burden on honest users. \nA more realistic goal is to compensate the routing node under attack for the lost revenue.\n\nAccording to a simulation Clara \u0026 Sergei built, if we increase the fees paid by just 2%, routing nodes would be fully compensated for any jamming attacks.\nSo for example, if a normal payment fee was 100 sats, an additional 2 sats upfront on all payments would be sufficient.\n\n2/ Reputation scheme\nWhile fees are great for addressing fast-jamming attacks, they are ineffective against slow-jamming attacks.\nFor this reason, the hybrid approach incorporates a reputation scheme.\n\nThe reputation scheme is local.\nNodes only assign reputation to their peers.\nThis reduces a ton of complexity, as local reputation requires no coordination across the network.\n\nSo how does the reputation scheme work?\nNodes keep track of their peers’ past history.\nIf a peer forwards honest payments that bring in sufficient fee revenue, the node considers that peer “high-reputation”.\nIf a peer constantly forwards jams, the node considers it “low reputation”.\n\nNodes also have the option to “endorse” payments that they forward.\nSo for example, a payment endorsed by a high-reputation peer is considered *low-risk*.\nWhile an un-endorsed payment from a low-reputation peer may be considered *HIGH* risk.\n\nBy using slot bucketing in combination with this reputation scheme, we can limit the number of “in-flight” high risk payments at any given time.\nThis prevents a malicious actor from fully jamming a channel.\nSo let’s say the 4 general slots are all jammed.\nIf an HTLC isn’t endorsed, we fail it.\nWe don’t allow the un-endorsed HTLC to use up more of our liquidity.\nHowever, if a payment is endorsed from a high-reputation peer, we will forward it along.\n\nEach node can create their own custom parameters for these slots \u0026 reputation based on their risk tolerance.\nHigh risk tolerance? Maybe you allocate more slots toward un-endorsed HTLCs.\nLow tolerance? Maybe you only forward endorsed HTLCs.\nIt’s up to the individual to decide.\n\nTLDR;\nThe hybrid approach combines unconditional fees (for fast-jamming), and a reputation scheme (for slow-jamming). \nAn upfront fee increase of 2% can effectively repay routing nodes for fast-jamming attacks, and the local reputation scheme takes advantage of HTLC endorsement and slot bucketing to ensure that a given channel can never be fully jammed.\n\nResources/Further information:\nIf you’re running a Lightning node, you can help this research effort!\nFill out their survey here:https://docs.google.com/forms/d/e/1FAIpQLScm2xs4hNsrkI8UCBS4aTdO03YrmWT2X0-j6zXWpkZ7keKiUw/viewform?usp=send_form\nCheck out the BOLT PR here:https://github.com/lightning/bolts/pull/1071\nAnd here’s a summary of the full research paper:https://research.chaincode.com/2022/11/15/unjamming-lightning/\nSources:(1): https://jamming-dev.github.io/book/2-costs.html\n\nThat’s it! \nWe hope you learned something new.\nSpecial thanks to Carla, Clara, Sergei, and Chaincode Labs for their awesome work on this🙏🏻\nFollow us for more!",
"sig": "45ebdbda621263611618f3f11e26dae79f9b9b9dff9ef738b39a74d16f371981ab71ed9de2a3ecf761e11abd717315462659e46323e69425f0eca1505c4be4cf"
}