We consider an asynchronous network of $n$ parties connected to each other via secure channels, up to $t$ of which are byzantine. We study common coin tossing, a task where the parties try to agree on an unpredictable random value, with some chance of failure due to the byzantine parties' influence. Coin tossing is a well-known and often-studied task due to its use in byzantine agreement. In this work, we present a committee-based method to transform strong (rarely failing) binary common coins into weaker ones that asymptotically require less communication. For any $k > 2$ and $\varepsilon > 0$, we can transform a strong binary coin that costs $\widetilde{O}(n^k)$ bits of communication into a weak binary coin that costs $\widetilde{O}(\varepsilon^{-2k}n^{3 - 2/k})$ bits. This latter coin tolerates $\varepsilon n$ fewer byzantine parties than the strong coin it is based on, and it fails with an arbitrarily small constant probability. With our method, we obtain a secure-channel-based perfectly secure coin for $t \leq (\frac{1}{4} - \varepsilon)n$ faults that costs $\widetilde{O}(n^{2.5})$ bits, as well as a coin based on cryptographic hashing for $t \leq (\frac{1}{3} - \varepsilon)n$ faults that costs $\widetilde{O}(n^{7/3}κ)$ bits. These are to our knowledge the first PKI-free asynchronous common coins that cost $o(n^3)$ bits of communication but still succeed with at least constant probability against $t = Θ(n)$ adaptive byzantine faults.
翻译:暂无翻译