{"id":690,"date":"2017-09-06T12:22:12","date_gmt":"2017-09-06T12:22:12","guid":{"rendered":"https:\/\/davidgerard.co.uk\/blockchain\/?p=690"},"modified":"2017-12-27T22:41:26","modified_gmt":"2017-12-27T22:41:26","slug":"estonias-smartcard-security-problem-is-probably-not-blockchain-related-but-what-is-estonias-blockchain","status":"publish","type":"post","link":"https:\/\/davidgerard.co.uk\/blockchain\/2017\/09\/06\/estonias-smartcard-security-problem-is-probably-not-blockchain-related-but-what-is-estonias-blockchain\/","title":{"rendered":"Estonia’s smartcard security problem is probably not blockchain-related \u2014 but what is Estonia’s “KSI Blockchain”?"},"content":{"rendered":"

Estonia’s ID card system apparently has a security flaw, though it hasn’t been exploited yet. Technical details are not available, but Estonian World<\/i><\/a> says “The ID-cards issued before 16 October 2014 use a different chip and are not affected,” which suggests this is more likely in the smartcard chip than in the underlying system.<\/p>\n

Someone emailed this morning asking if this had anything to do with Estonia’s widely publicised<\/a> blockchain infrastructure initiatives. I would say probably not … but the reason I can’t say “definitely not” is that Estonia’s Blockchain\u2122 promotion mostly supplies excellent examples of the media game of “telephone” I talk about in chapter 11<\/a> of the book<\/a>:<\/p>\n

\u201cTalking about\u201d becomes \u201cconsidering doing,\u201d becomes \u201cwill do,\u201d becomes \u201cis doing.\u201d Even if a given blockchain trial does in fact happen, later failure is not documented. The mainstream press assume this is specialist press rather than boosterism, and run stories taking all this at face value. As the buzzword \u201cBlockchain\u201d has gained currency, they have tended to run blockchain marketers\u2019 press releases barely edited, assuming there must be something to all of this.<\/p><\/blockquote>\n

I tried tracing back through to the original press releases (since zero of the journalists running these stories ask them even slightly pointed questions). Everything from e-Estonia<\/a> itself is long on hype, short on detail and furiously mixes present and future tense.<\/p>\n

e-Estonia’s preferred Blockchain\u2122 software is KSI Blockchain<\/a>. Amongst the generic blockchain claims, the only specific<\/em> claim on that page is that “KSI Blockchain scales to 1012<\/sup> items of data every second.” This would be a remarkable<\/i> number for an actual database \u2014 for comparison, the extreme limit of IOPS<\/a> (I\/O operations per second) for an Oracle database on fast solid-state disks is in the millions<\/a>.<\/p>\n

That e-Estonia page links to the company site for suppliers Guardtime<\/a>. KSI stands for “Keyless Signatures Infrastructure\u00ae” and was started in 2007. Their “blockchain” achieves fast throughput by limiting the number of participants<\/a>, which also means they don’t need a computationally expensive consensus mechanism. Now, you might think this was functionally indistinguishable from a database …<\/p>\n

I did find a PDF<\/a> which Guardtime provided to the US Government’s HealthIT.gov<\/a>. I am not a cryptographer and don’t fully understand this; if anyone who is could tell me if this makes any sense, I’d be most grateful. The promise is:<\/p>\n

Through the properties of verifiable authenticity, identity of the client, and non-global positioning system-based non-spoofable time; KSI provides provenance, integrity and identity associated with digital assets. This implementation consumes far less storage and bandwidth than widely proliferated blockchain technology and can provide the above defined attributes for thousands of files a second scalable to billions.<\/p><\/blockquote>\n

The “blockchain” bit of KSI appears to be that it’s got a Merkle tree<\/a>. Indeed, the paper says:<\/p>\n

Unlike traditional approaches that depend on asymmetric key cryptography, KSI uses only hash-function cryptography, allowing verification to rely only on the security of hash-functions and the availability of the history of cryptologically linked root hashes (the blockchain).<\/p><\/blockquote>\n

\u2014 that is, they redefine the word “blockchain” to mean “Merkle tree.” Specifically, “hash-linked time-stamping.”<\/a> (What the e-Estonia claim presumably means, then, is that KSI Blockchain can scale up to calculating 1012<\/sup> hashes a second.) So anywhere I see the words “Estonia” and “Blockchain” together in the near future, my first thought will be “ledger in a Merkle tree.” This makes sense of press releases such as “KSI Blockchain to Secure Driverless Buses in Tallinn”<\/a> \u2014 what they mean is they’re storing at least some data from the buses in a ledger authenticated by hashes.<\/p>\n

What I say in chapter 11<\/a> of the book<\/a> still seems to hold:<\/p>\n

Transaction ledgers in tamper-evident chains and trees of hashes are a good idea, and businesses are about to discover how to use them for tamper-evident ledgers. These will likely be branded \u201cBlockchain,\u201d whether or not the product has anything else to do with blockchains.<\/p><\/blockquote>\n

Per Guardtime’s site<\/a>, “Cryptocurrency protocols are great\u00a0 for cryptocurrencies\u00a0\u2014 not for building solutions for enterprise data management.” Pretty good for years of coverage in the bitcoin press, though.<\/p>\n

So this is not in fact good news<\/em> for blockchains. Though it might be for Blockchain\u2122. Thanks to Paul Marsch for the good question.<\/p>\n

\"Become<\/a>

Your subscriptions keep this site going. Sign up today!<\/a><\/i><\/p><\/div>","protected":false},"excerpt":{"rendered":"

What is KSI Blockchain, the technology at the heart of Estonia’s heavily-publicised Blockchain\u2122 initiatives? Answer: less than it appears. Firstly, it’s not actually a blockchain.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[56,55,57,58],"class_list":["post-690","post","type-post","status-publish","format-standard","hentry","category-uncategorised","tag-e-estonia","tag-estonia","tag-guardtime","tag-ksi-blockchain"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/posts\/690","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/comments?post=690"}],"version-history":[{"count":51,"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/posts\/690\/revisions"}],"predecessor-version":[{"id":3447,"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/posts\/690\/revisions\/3447"}],"wp:attachment":[{"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/media?parent=690"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/categories?post=690"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/davidgerard.co.uk\/blockchain\/wp-json\/wp\/v2\/tags?post=690"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}