SoK: Cross-Chain Bridging Architectural Design Flaws and Mitigations
Cross-chain bridges are solutions that enable interoperability between heterogeneous blockchains. In contrast to the underlying blockchains, the bridges often provide inferior security guarantees and have been targets of hacks causing damage in the range of 1.5 to 2 billion USD in 2022. The current...
Saved in:
| Published in | arXiv.org |
|---|---|
| Main Authors | , , , |
| Format | Paper |
| Language | English |
| Published |
Ithaca
Cornell University Library, arXiv.org
01.03.2024
|
| Subjects | |
| Online Access | Get full text |
Cover
Loading…
| Abstract | Cross-chain bridges are solutions that enable interoperability between heterogeneous blockchains. In contrast to the underlying blockchains, the bridges often provide inferior security guarantees and have been targets of hacks causing damage in the range of 1.5 to 2 billion USD in 2022. The current state of bridge architectures is that they are ambiguous, and there is next to no notion of how different architectures and their components are related to different vulnerabilities. Throughout this study, we have analysed 60 different bridges and 34 bridge exploits in the last three years (2021-2023). Our analyses identified 13 architectural components of the bridges. We linked the components to eight types of vulnerabilities, also called design flaws. We identified prevention measures and proposed 11 impact reduction measures based on the existing and possible countermeasures to address the imminent exploits of the design flaws. The results are meant to be used as guidelines for designing and implementing secure cross-chain bridge architectures, preventing design flaws, and mitigating the negative impacts of exploits. |
|---|---|
| AbstractList | Cross-chain bridges are solutions that enable interoperability between heterogeneous blockchains. In contrast to the underlying blockchains, the bridges often provide inferior security guarantees and have been targets of hacks causing damage in the range of 1.5 to 2 billion USD in 2022. The current state of bridge architectures is that they are ambiguous, and there is next to no notion of how different architectures and their components are related to different vulnerabilities. Throughout this study, we have analysed 60 different bridges and 34 bridge exploits in the last three years (2021-2023). Our analyses identified 13 architectural components of the bridges. We linked the components to eight types of vulnerabilities, also called design flaws. We identified prevention measures and proposed 11 impact reduction measures based on the existing and possible countermeasures to address the imminent exploits of the design flaws. The results are meant to be used as guidelines for designing and implementing secure cross-chain bridge architectures, preventing design flaws, and mitigating the negative impacts of exploits. |
| Author | Notland, Jakob Svennevik Haro, Peter Halland Nowostawski, Mariusz Li, Jinguye |
| Author_xml | – sequence: 1 givenname: Jakob surname: Notland middlename: Svennevik fullname: Notland, Jakob Svennevik – sequence: 2 givenname: Jinguye surname: Li fullname: Li, Jinguye – sequence: 3 givenname: Mariusz surname: Nowostawski fullname: Nowostawski, Mariusz – sequence: 4 givenname: Peter surname: Haro middlename: Halland fullname: Haro, Peter Halland |
| BookMark | eNqNykELgjAYgOERBVn5HwadBd1Ss1tpEUSnusvQNT-Rb7Vv0t-vQz-g03t43gWbokU9YYGQMom2GyHmLCTq4zgWWS7SVAasutnLjpfOEkVlpwD5wUFrAA3fu6YDrxs_OjXwShMY5KdBvYkrbPkVPBjlwSKt2OyhBtLhr0u2Ph3v5Tl6OvsaNfm6t6PDL9WikHkik6zI5X_XByS5O6s |
| ContentType | Paper |
| Copyright | 2024. This work is published under http://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License. |
| Copyright_xml | – notice: 2024. This work is published under http://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License. |
| DBID | 8FE 8FG ABJCF ABUWG AFKRA AZQEC BENPR BGLVJ CCPQU DWQXO HCIFZ L6V M7S PIMPY PQEST PQQKQ PQUKI PRINS PTHSS |
| DatabaseName | ProQuest SciTech Collection ProQuest Technology Collection Materials Science & Engineering Collection ProQuest Central (Alumni) ProQuest Central ProQuest Central Essentials ProQuest Central Technology Collection ProQuest One Community College ProQuest Central SciTech Premium Collection ProQuest Engineering Collection Engineering Database Publicly Available Content Database ProQuest One Academic Eastern Edition (DO NOT USE) ProQuest One Academic ProQuest One Academic UKI Edition ProQuest Central China Engineering Collection |
| DatabaseTitle | Publicly Available Content Database Engineering Database Technology Collection ProQuest Central Essentials ProQuest One Academic Eastern Edition ProQuest Central (Alumni Edition) SciTech Premium Collection ProQuest One Community College ProQuest Technology Collection ProQuest SciTech Collection ProQuest Central China ProQuest Central ProQuest Engineering Collection ProQuest One Academic UKI Edition ProQuest Central Korea Materials Science & Engineering Collection ProQuest One Academic Engineering Collection |
| DatabaseTitleList | Publicly Available Content Database |
| Database_xml | – sequence: 1 dbid: 8FG name: ProQuest Technology Collection url: https://search.proquest.com/technologycollection1 sourceTypes: Aggregation Database |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Physics |
| EISSN | 2331-8422 |
| Genre | Working Paper/Pre-Print |
| GroupedDBID | 8FE 8FG ABJCF ABUWG AFKRA ALMA_UNASSIGNED_HOLDINGS AZQEC BENPR BGLVJ CCPQU DWQXO FRJ HCIFZ L6V M7S M~E PIMPY PQEST PQQKQ PQUKI PRINS PTHSS |
| ID | FETCH-proquest_journals_29371316973 |
| IEDL.DBID | BENPR |
| IngestDate | Wed Sep 25 01:51:33 EDT 2024 |
| IsOpenAccess | true |
| IsPeerReviewed | false |
| IsScholarly | false |
| Language | English |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-proquest_journals_29371316973 |
| OpenAccessLink | https://www.proquest.com/docview/2937131697/abstract/?pq-origsite=%requestingapplication% |
| PQID | 2937131697 |
| PQPubID | 2050157 |
| ParticipantIDs | proquest_journals_2937131697 |
| PublicationCentury | 2000 |
| PublicationDate | 20240301 |
| PublicationDateYYYYMMDD | 2024-03-01 |
| PublicationDate_xml | – month: 03 year: 2024 text: 20240301 day: 01 |
| PublicationDecade | 2020 |
| PublicationPlace | Ithaca |
| PublicationPlace_xml | – name: Ithaca |
| PublicationTitle | arXiv.org |
| PublicationYear | 2024 |
| Publisher | Cornell University Library, arXiv.org |
| Publisher_xml | – name: Cornell University Library, arXiv.org |
| SSID | ssj0002672553 |
| Score | 3.5198298 |
| SecondaryResourceType | preprint |
| Snippet | Cross-chain bridges are solutions that enable interoperability between heterogeneous blockchains. In contrast to the underlying blockchains, the bridges often... |
| SourceID | proquest |
| SourceType | Aggregation Database |
| SubjectTerms | Blockchain Cryptography |
| Title | SoK: Cross-Chain Bridging Architectural Design Flaws and Mitigations |
| URI | https://www.proquest.com/docview/2937131697/abstract/ |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV1La8MwDBZtw2C3PdmjK4btajI7adLsMtY0WdhIKXtAb8WxXVYobddk7LbfPjlN1sOgR2PwC1mf9EmyAW6YzqaeuvVpgMukrqd6VKDSo5IpLdB-xrtu-I506CXv7tO4O25AUtfCmLTKWieWilotpeHIbW4ebnOYF_i2yAwLIAv7fvVJzf9RJs5afabRBIsz1wRsrX40HL388S3c89F6dv6p3BJH4gOwRmKl14fQ0Isj2CvTL2V-DIPX5fMdCQ1i0fADnXXSN4VUCCvkYcv0izkZlAkXJJ6L75yIhSLpbPNIBgrPCVzH0VuY0HrqSSUo-WS7LecUWujx6zMgTHcd7kyVowOJDpc0XhxiGec6CzKm5Tm0d410sbv7EvY5IvMmkaoNrWL9pa8QWYusA81e_Nipjg5b6U_0C51PhJ0 |
| link.rule.ids | 786,790,12792,21416,33408,33779,43635,43840 |
| linkProvider | ProQuest |
| linkToHtml | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV1LSwMxEB60RfTmEx9VA3oNmmSbdb2Ibl1X2y2CFXpbsklKhWJrt-Lfd5Ju7UHoOZAXk_nyfZmZAFwyWwykuQ5phNOkgTQ3VKHTo5oZq_D-jGfd6R1ZV6bvwUu_2a8Et7IKq1z4RO-ozVg7jfyKu8JtgskovJt8UfdrlHtdrb7QWId6IBA6XaZ48vSnsXAZ4o1Z_HOzHjuSbai_qomd7sCa_dyFDR9yqcs9aL2N27ckdihF4yESdPLgkqcQSsj9Ut1XI9LyQRYkGamfkiDxJ9nHvDAGGsw-XCSPvTili6HzyjjKfLkUcQA1ZPn2EAizTcHFwAgbaSRZ2jE3xC_ObREVzOojaKzq6Xh18zlspr2sk3eeu-0T2OKIzPNAqgbUZtNve4rIOivO_Pb9AixKgFM |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=SoK%3A+Cross-Chain+Bridging+Architectural+Design+Flaws+and+Mitigations&rft.jtitle=arXiv.org&rft.au=Notland%2C+Jakob+Svennevik&rft.au=Li%2C+Jinguye&rft.au=Nowostawski%2C+Mariusz&rft.au=Haro%2C+Peter+Halland&rft.date=2024-03-01&rft.pub=Cornell+University+Library%2C+arXiv.org&rft.eissn=2331-8422 |