Skip to content

Latest commit

 

History

History
38 lines (19 loc) · 6.65 KB

02_overview.md

File metadata and controls

38 lines (19 loc) · 6.65 KB

2. Overview

2.1 Goals

We propose a new payment channel communication protocol designed to incentivize the delivery of messages over even low bandwidth MANETs. We accomplish this by reducing the transmission overhead needed to make payments between nodes. Our protocol also minimizes the trust required between mesh nodes when not connected to the internet.

2.2 Approach

Figure 1: Mesh nodes are peers that take on different roles. In this example Node A is sending data (ie. SMS) to destination Node D and Nodes B and C are relaying the data.  Once Node D confirms receipt of  the message, anyone can send the signed incentive payment transactions made to the relays to a witness Node G via relay Node E and relay/gateway Node F connected to the internet. Node G settles these transactions on a global distributed ledger.

To reduce payment overhead that must be relayed to the internet via gateways, we use an aggregate signature scheme that maintains cryptographic security but only requires half the signature data. Signature data is the largest part of a transaction that can not be inferred or compressed. Signature data is reduced by signers locally negotiating one aggregated signature instead of sending two signatures, one per signer, to confirm a transaction. This also reduces on-chain transaction fees.

After a payment channel has been established between nodes they only need to locally communicate with each other to update the state of their channel. We use an efficient commitment scheme to commit the payer to a new channel state without requiring the payment receiver to respond until they have proof that a message is delivered. This reduces total transmission overhead substantially.

We transmit to the internet only the minimum information necessary to reconstruct each implied transaction signed with a single aggregate signature. A small set of predefined transaction types also reduces the information that must be transmitted to reconstruct each implied transaction.

Payments to mesh relays and internet gateways are prepaid by the data sender and are only valid if the destination node returns a secret value created by the sender. This ensures that relay nodes are only paid for successfully delivered data. Destination nodes also earn value when they confirm they received data to ensure they cooperate in settling transactions.

Our system proposes the use of internet connected witness nodes to efficiently verify payment channel setup and settlement transactions for mesh nodes that are not directly connected to the internet. Nodes without internet connections communicate via gateway nodes that are both connected to the mesh and to the internet. All other transactions are negotiated locally between mesh nodes within direct communication range as payment channel updates. The latest channel update is cached for later online settlement if the channel is not cooperatively closed.

2.3 Protocol

In any mesh network, nodes transmit messages to nearby nodes that includes both a header and data payload. Payload data could be anything from an SMS message to arbitrary internet protocol packets. The header contains information on how to route the data payload to a destination node. Nearby relay nodes read and modify header information as they route the message to its destination.

Our incentive protocol builds on this existing behavior and adds additional header information to create and update payment channels between nodes. We also add an encrypted secret to the data payload that can only be revealed by the destination node; similar to the spontaneous payments proposed [45] for the Lightning Network. If a node has set up a payment channel with another node, they can authorize a payment to that node in exchange for it relaying some data to a destination node. Each relay node commits to pay the next node along the route and uses the same delivery condition. Each node proposes to pay the next node less than they received to transmit the data; the difference represents the value they earn for relaying the data. Each payment update must satisfy certain conditions to be valid. The primary payment condition is that the final destination node confirms receipt of the data by revealing a secret obtained from the data.

Figure 2: In this example, node A is sending data to node D via nodes B and C at time T1. Nodes A&B, B&C and C&D have payment channels set up with each other and initially equal balances in the channels. Node A proposes to increase node B’s balance if node D receives the data. Nodes B and C make similar proposals to their next hop.

Once the data has been received, the destination node transmits back a secret value to the data sender that satisfies the primary payment condition. This payment receipt is used by the nodes that relayed the data to update the state of their payment channels with each other.

Figure 3: Node D has confirmed receipt of the data and finalizes at time T4 the previously proposed balance transfer made by node C. Nodes C and B do the same with their respective upstream nodes B and A.

Once the destination node confirms receipt of the data by revealing a secret, any node that receives the secret can settle their update transaction on the distributed ledger even if their channel partner disappears or becomes uncooperative. Nodes can observed transactions settled by other relay nodes involved with the same message delivery to learn the secret they need to settle their own channel updates.

When a payment channel does not already exist between two nodes it must be set up and funded. A transaction that funds a new channel can not be confirmed locally between mesh nodes because it involves a payment that could have been committed to fund a different channel. These transactions must be confirmed directly by the Bitcoin network before they are relied on.

A mesh connected node must use an internet gateway to access the Bitcoin network, but staying in sync with the state of the blockchain is impractical over a low bandwidth network. Instead, mesh nodes query a witness node they trust. Witness nodes are persistently connected to the internet so they can monitor and report in a low bandwidth way the current state of transactions of interest. Witness nodes will earn payments if they report truthfully about the state of the blockchain. They can be held accountable by checking the underlying blockchain data when a node has online access or by using multiple independent Witness nodes.