The growing popularity of blockchain technology has underscored the need for robust network security. However, public blockchain networks remain vulnerable to attacks in which adversaries exploit numerous nonfunctional peer connections to disrupt block propagation across the entire network. Inthis article, we propose a practical nontargeted delay attack method and validate its feasibility, scalability, and significant impacts on blockchain networks of varying sizes, including EthereumPoW (ETHW) and premerge Ethereum Mainnet. In the ETHW network with 95 nodes, our adversarial peers introduce delays ranging from 0.33 to 2.8 s for half the nodes, with nearly one-third experiencing delays exceeding 5.9 s, derived from the 90th percentile of delay times. When in the premerge Ethereum network with 5739 nodes, over 80% of peers experience prolonged block propagation, resulting in a 77% increase in delay time, underlining the attacks' scalability and efficacy in large-scale environments. We also optimize the Ethereum client Geth by relaxing certain connection restriction, significantly reducing attack costs. Delving deeper, we analyze the implications of delay attacks on proof-of-work (PoW) and proof-of-stake (PoS) consensus mechanisms, illustrating how attackers can gain extra revenues through such attacks. Specifically, we propose a novel combined strategy to facilitate reorganization attacks under PoS. These findings highlight the urgent need to strengthen network-layer defenses and reinforce peer-to-peer (P2P) network protocol security against real-world delay exploits.
Zeng et al. (Mon,) studied this question.