A. System Model

The nodes in the tree topology network are arranged in a tree shape, which resembles an inverted tree, hence the name. The tree topology is easy to expand, so new branches or nodes can be added to the network. It is easy to isolate the fault site from the whole system; for example, if one branch node fails, it mainly affects the local area. The tree topology network structure is a hierarchical structure that is suitable for a hierarchical network system. Therefore, we propose a multi-centralized, “group-based and hierarchical” STBFT algorithm based on a tree topology network. We divide the nodes in the network into several layers. Each layer is composed of different areas, and the whole network consensus is divided into several subnetwork local consensuses. Each parent node (nonleaf node) forms a subnetwork with its child nodes, which we call the consensus domain. The network composed of child nodes is called the group domain (group). Figure 1 briefly shows the system model of the STBFT algorithm.

FIGURE 1.

STBFT system model.

Show All

B. STBFT Algorithm Consensus Process

According to the hierarchical structure of the tree topology network, the STBFT algorithm improves the consensus protocol of the PBFT algorithm. First, the primary node in the consensus domain no longer participates in the consensus of its child nodes (slave nodes), and the primary node of each layer is only responsible for sending the request message to the child nodes and collecting the voting results of its child nodes. Second, only the node that has generated the pre-prepare message of certificate $_{< commit>}$ in each layer can be accepted by its child nodes. The certificate is to prove that the group domain of the node has reached consensus.

Figure 2 shows the consensus process of the two-layer STBFT algorithm. We assume that the number of consensus nodes in each group domain is $k$ , and the maximum number of Byzantine nodes that can be tolerated in each group domain is $f_{g}$ , where $k\ge 3f_{g} +1$ and $L_{i}G_{j}N_{o}$ represents the node number. $L_{i}G_{j}$ represents the group number of each layer, where the superscript $L$ represents the layer number, the subscript $i$ represents the index of each layer, the superscript $G$ represents the group number, and the subscript $j$ represents the index of each group, the superscript $N$ represents the node, and the subscript $o$ represents the index of each node. The specific consensus process is as follows:

FIGURE 2.

Consensus process of the STBFT algorithm.

Show All

The root node of the system forms a consensus domain with the nodes in the group domain $L_{1}G_{1}$ . In the request stage, the root node (primary node) collects the transaction requests from the client and sorts and packages the transaction requests. In the pre-prepare phase, the root node multicasts pre-prepare messages to nodes in the group domain $L_{1}G_{1}$ . After receiving the valid pre-prepare message, the node enters the prepare phase by multicasting prepare messages to the other nodes in the group domain. If a node receives more than $2f_{g}$ matching prepare messages from other group domain $L_{1}G_{1}$ nodes, the prepared nodes enter the commit phase by multicasting commit messages to other nodes in the group domain.

When a node receives more than $2f_{g}$ matching commit messages from other group domain $L_{1}G_{1}$ nodes, that operation is committed on this node, and this node forms a certificate. A committed node will perform the following two steps at the same time: first, a committed node enters the reply stage by sending reply message to the root node. second, a committed node is considered as the primary node in its consensus domain and starts consensus reaching by multicasting new pre-prepare messages with certificate $_{< commit>}$ to its child nodes. On the one hand, when the root node receives more than $f_{g} +$ 1 matching reply messages from group domain $L_{1}G_{1}$ nodes, it indicates that this group domain have reached consensus. The root node sends an agree message to the client. On the other hand, a committed node in group domain $L_{1}G_{1}$ forms a consensus domain with its child node. The four stages of pre-prepare ₁, prepare ₁, commit ₁, and reply ₁(the subscript 1 indicates that the message comes from the node of layer 1) mentioned above are carried out in the consensus domain. Finally, the primary nodes in each consensus domain send an agree ₁ message to the client. The client only accepts results replied from primary nodes in all consensus domains when at least half of them are consistent.

C. Random Grouping Strategy Based on VRF

For hierarchical systems, the higher the level of nodes, the greater the impact on the system. If Byzantine nodes collude maliciously and are at a high level of the system, the system’s security will be threatened. Therefore, to make each node randomly distributed in the system, the grouping information of nodes can be verified and confirmed by other nodes. In the grouping stage, the nodes can be divided into provers and verifiers, and the grouping information of each prover needs to be confirmed by the verifier. Therefore, the random grouping process is divided into two parts: the group formation stage and the group verification stage.

1) GST CENTER

The group status table (GST) is used to store the grouping status and information of each node, and some key information of GST is shown in Table 1. At the same time, the GST Center needs to be introduced to maintain the GST. The GST Center is a security service organization that all alliances and institutions recognize and rarely exhibit error behavior. The nodes fully trust all the information recorded by the GST Center. However, introducing the central node in the distributed network environment is not a good solution. In this paper, the GST Center is only used for information storage and does not participate in any grouping strategy. The introduction of the GST Center provides the following functions:

1. Provide a random seed to the prover and determine the grouping of nodes according to the random number $v$ generated by the prover. Store the time each group formed.

2. Store the prover’s proof, $v$ , group information, and timestamp $t$ for each group formed, and record basic information such as the ip address and pk.

3. When the identities of most nodes are exposed, a few nodes can be attacked. Therefore, we first do not publish the grouping information of each node, but rather the grouping information of the nodes is saved in the GST Center.

TABLE 1 Group State Table

3) Group Verification Stage

When all nodes are randomly assigned to different groups at different levels, the grouping information of each node will be confirmed by all verifiers. The group verification stage is shown in Figure 3.

• Step 1:

  GST Center multicasts < broadcast, $m$ (gst), $d>_{\& g}$ message to all verifiers including the prover, where $m$ (gst) contains random number $v$ , proof, timestamp $t$ , and group information, $d$ is the digest of $m$ (gst), and &_gthe subscript is the signature of the GST Center.

• Step 2:

  After receiving the broadcast message from the GST Center, the prover verifies whether it is valid and confirms its grouping information. At the same time, when all verifiers receive the broadcast message from the GST Center, they first verify the information of the verifier according to seed, v, proof, and pk in $m$ (gst) and then confirm the grouping information of the verifier according to the group information, timestamp $t$ , and other information provided by the GST Center. If the broadcast message passes the verification, they will sign with pk and send the < response, $d>_{\&i}$ message to the prover.

• Step 3:

  If the prover receives more than $2f$ matching response messages, it multicasts the < commit, $d>_{\& s-list}$ message to all verifiers. $f$ represents the maximum number of Byzantine nodes that can be tolerated in the total network, and $n\ge 3f+{ }1$ , &$_{s-list}$ represents the set of signatures of all verifiers.

• Step 4:

  After receiving the commit message, all verifiers confirm whether the verifier has received more than $2f$ valid signatures. If the verification passes, it means that the prover has completed the grouping, all verifiers will send < reply$>_{\& i}$ messages to the GST Center and prover. The GST Center and the prover receiving more than $2f$ matching reply messages indicates that the whole system has agreed to the prover’s grouping information.

FIGURE 3.

The group verification stage.

Show All

D. Feedback Mechanism

The basic idea of the STBFT algorithm is to reduce the communication complexity through the internal communication of each group and effectively improve the consensus efficiency. In Section B of III, we know that in the normal consensus process, if a node has reached consensus in the group domain, it will generate corresponding certificates and reply messages, send reply messages to high-level nodes, and send certificates to low-level nodes, these are important support for reaching consensus. However, the hierarchical structure based on the tree topology network will also face some problems. In the case where the high-level nodes are Byzantine nodes,

the lower-level nodes of the entire system cannot receive any correct messages, and frequent view change is needed; however, the cost of view change is expensive. Therefore, for the STBFT algorithm proposed in this paper, a feedback mechanism is designed to supervise and relay the behavior of nodes so that the system can minimize the influence of malicious nodes on the system when the nodes have Byzantine behavior, thereby improving the fault tolerance performance.

First, we define the feedback domain, which is a special autonomous region. As shown in Figure 4, node $N$ is the root node of the feedback domain, the root node forms a feedback domain with the two-layer nodes of its branches, and the feedback domain is also composed of many group domains or consensus domains. In the normal consensus process, there is no concept of a feedback domain, such as the consensus in the tree topology, consensus is reached in the high-level consensus domain and consensus results are transmitted to the lower level in turn. When a node in the feedback domain fails, it temporarily forms a feedback domain. The upper and lower nodes in the feedback domain monitor each other, feedback the consensus results, and trigger the feedback mechanism to address the impact of malicious nodes on the consensus. Figure 4 is one of the feedback domains of Figure 1. Therefore, the network structure of the STBFT algorithm consists of many feedback domains. Second, feedback mechanism only be implemented in each feedback domain; for convenience, we will describe the feedback mechanism according to Figure 4. Finally, we show how the STBFT algorithm can reach consensus based on a feedback mechanism in different situations.

FIGURE 4.

Feedback domain.

Show All

Case $A:$ Assume that the root node $N$ in the feedback domain is an honest node, and the number of Byzantine nodes in the group domain $L_{i}G_{j}$ exceeds $f_{g}$ .

Under normal circumstances, each node in the group domain $L_{i}G_{j}$ receives the pre-prepare $_{i-1}$ message (the subscript $i$ – 1 indicates that the message comes from the node of layer $i$ – 1) from node $N$ . However, when Byzantine nodes in the group domain $L_{i}G_{j}$ generate malicious behavior

(such as sending inconsistent messages or not sending messages within a specified time), at the consensus stage, $certificate< commit_{i-1} >$ cannot be formed because the nodes cannot receive more than $2f_{g}$ matching commit $_{i-1}$ messages in the group domain $L_{i}G_{j}$ . Therefore, during the reply $_{i-1}$ phase, node $N$ does not receive $f_{g} +$ 1 matching reply $_{i-1}$ messages from group domain $L_{i}G_{j}$ . At the same time, during the pre-prepare _i stage, all nodes at layer $i +$ 1 cannot receive the pre-prepare _i message with $certificate< commit_{i} >$ from the group domain $L_{i}G_{j}$ . In this case, once at the end of the reply $_{i-1}$ phase, node $N$ will send new $pre-prepare_{i-1}^{N}$ messages with $certificate< fail-reply_{i-1} >$ to all nodes in layer $i +1$ (once the root node generates $certificate< fail-reply_{i-1} >$ , it means that in the reply $_{i-1}$ phase, node $N$ has not received $f_{g} +$ 1 matching reply $_{i-1}$ messages from the group domain $L_{i}G_{j}$ ).

In addition, in the group domain $L_{i}G_{j}$ , even if consensus cannot be reached and a certificate cannot be generated, the honest node still sends a pre-prepare _i message to its child nodes, but the Byzantine node will generate Byzantine behavior. The pre-prepare _i message from each node in the group domain $L_{i}G_{j}$ will be verified by its child nodes. An honest node will be authenticated by its child nodes, but its child nodes will not accept the pre-prepare _i message (because child nodes cannot receive the $certificate< commit_{i} >$ from the node in group domain $L_{i}G_{j}$ ). If it is a Byzantine node, the system will start view change to replace the primary node in the consensus domain, and all nodes in layer $i +$ 1 cannot receive the $certificate< commit_{i} >$ from the node in group domain $L_{i}G_{j}$ and will wait for a new $pre-prepare_{i-1}^{N}$ message from node $N$ . If all nodes in layer $i +$ 1 receive a valid new$pre-prepare_{i-1}^{N}$ message from node $N$ before the end of the prepare _i phase (normal situation), it accepts the $pre-prepare_{i-1}^{N}$ message again and then executes the $prepare_{i-1}^{N}$ phase and the $commit_{i-1}^{N}$ phase in each group domain in layer $i +1$ . If the primary node corresponding to the group domain in layer $i +$ 1 is verified as an honest node, in the $reply_{i-1}^{N}$ stage, the committed nodes in the group domain not only send the $reply_{i-1}^{N}$ message to node $N$ but also need to send the $reply_{i-1}^{N}$ message to the corresponding primary node of the group domain; otherwise, they just send the $reply_{i-1}^{N}$ message to node $N$ . Finally, node $N$ sends the consensus result to the client.

Case $B:$ Assume that the root node $N$ in the feedback domain is an honest node, and the number of Byzantine nodes in the group domain $L_{i}G_{j}$ is less than $f_{g}$ .

When each node in group domain $L_{i}G_{j}$ receives the valid pre-prepare $_{i-1}$ message from node $N$ , after the prepare $_{i-1}$ phase and the commit $_{i-1}$ phase, the group domain $L_{i}G_{j}$ has reached consensus if node $N$ receives $f_{g} +$ 1 matching reply $_{i-1}$ messages, and the committed and honest nodes in group domain $L_{i}G_{j}$ will send pre-prepare _i messages with $certificate< commit_{i} >$ to their child nodes, while Byzantine nodes in group domain $L_{i}G_{j}$ will produce malicious behavior.

Assume that node $L_{i}G_{j}N_{o}$ is a Byzantine node, When the Byzantine node $L_{i}G_{j}N_{o}$ in the group domain $L_{i}G_{j}$ produces malicious behavior, in the pre-prepare _i phase, the child nodes of node $L_{i}G_{j}N_{o}$ cannot receive messages within the specified time or receive invalid messages. Therefore, if the child nodes of node $L_{i}G_{j}N_{o}$ cannot receive a valid $pre-prepare_{i-1}^{N}$ message from node $N$ before the end of the prepare _i phase, when the prepare _i phase ends, it sends the feedback message with $certificate< L_{i} G_{j} N_{o} -fault>$ to node $N$ (distinguish case $A$ ). When node $N$ receives more than $2f_{g}$ matching feedback messages, it sends $pre-prepare_{i-1}^{N}$ messages to the child nodes of node $L_{i}G_{j}N_{o}$ . After the $prepare_{i-1}^{N}$ stage and the $commit_{i-1}^{N}$ stage in the group domain, the committed nodes send the $reply_{i-1}^{N}$ message to node $N$ to enter the $reply_{i-1}^{N}$ stage. Similarly, node $N$ sends the consensus result to the client.

Case $C:$ Assume that the root node $N$ in the feedback domain is a Byzantine node, the number of Byzantine nodes in the group domain $L_{i}G_{j}$ is less than $f_{g}$ and the node $L_{i}G_{j}N_{o}$ in the group domain $L_{i}G_{j}$ is a Byzantine node.

Since two consecutive nodes in the same branch are Byzantine nodes, in this case, the child nodes of node $L_{i}G_{j}N_{o}$ cannot receive valid messages even if it sends a feedback message to node $N$ . Therefore, all branch nodes with $L_{i}G_{j}N_{o}$ as the root node cannot reach consensus. However, it only affects the local consensus in the feedback domain.

Case $D:$ Assume that the root node $N$ in the feedback domain is a Byzantine node, and the number of Byzantine nodes in the group domain $L_{i}G_{j}$ exceeds $f_{g}$ .

In this case, the feedback mechanism is ineffective in the feedback domain, so all branch nodes with node $N$ as the root cannot reach consensus.

A. Analysis of Failure Probability P of the Feedback Mechanism

In Case $D$ of Part D of Section III, we know that the feedback mechanism is completely invalid in the feedback domain, so we analyze the failure probability of the feedback mechanism. Assuming that the nodes are independent of each other, we have $P = P(A) \times P(B/A)$ , where $P(A)$ is the probability that the root node in the feedback domain is a Byzantine node, which is obtained from Formula 2 ($f_{1}$ represents the number of Byzantine nodes in the feedback domain, and $m$ represents the total number of nodes in the feedback domain). $C_{f_{1}}^{1}$ indicates that a node is randomly selected from $f_{1}$ Byzantine nodes as the root node of the feedback domain, and $C_{m}^{1}$ indicates that a node is randomly selected from m nodes.

View Source\begin{equation*} P(A)=C_{f_{1}}^{1} / C_{m}^{1} \tag{2}\end{equation*}

$$\begin{equation*} {P}({B / A})=\sum \limits _{c=f_{g} +1}^{k} {C_{f_{1} -1}^{c}} {/ C}_{m-1}^{k} \tag{3}\end{equation*}$$ View Source\begin{equation*} {P}({B / A})=\sum \limits _{c=f_{g} +1}^{k} {C_{f_{1} -1}^{c}} {/ C}_{m-1}^{k} \tag{3}\end{equation*}

$$\begin{equation*} {P=P}({A}) \times {P}({B/A})=({C}_{f_{1}}^{1} {/ C}_{m}^{1}) \cdot \left({\sum \limits _{c=f_{g} +1}^{k} {C_{f_{1} -1}^{c}} {/ C}_{m-1}^{k} }\right) \tag{4}\end{equation*}$$ View Source\begin{equation*} {P=P}({A}) \times {P}({B/A})=({C}_{f_{1}}^{1} {/ C}_{m}^{1}) \cdot \left({\sum \limits _{c=f_{g} +1}^{k} {C_{f_{1} -1}^{c}} {/ C}_{m-1}^{k} }\right) \tag{4}\end{equation*}

FIGURE 5.

Probability of feedback mechanism failure.

Show All

B. Communication Complexity Analysis of the STBFT Algorithm

Assuming the number of nodes of the PBFT algorithm is $n$ , the consensus process of the PBFT algorithm can be divided into five phases: the request phase, pre-prepare phase, prepare phase, commit phase, and reply phase. The communication complexity can be calculated to be $1 +{ }(n-1) + (n-1)(n-1) +n(n-1) +n,$ which is simplified to $2n^{2}-n+ 1$ . Therefore, we can obtain the communication complexity of the PBFT algorithm as follows:

View Source\begin{equation*} {C}1=2{n}^{2}-{n +}1 \tag{5}\end{equation*}

prepare stage, commit stage, reply stage, and final agree stage. The communication complexity of each consensus domain is $k+k(k-1) +k(k-1) +k+ 1$ , which is simplified to $2k^{2}+ 1$ . Therefore, we can obtain the communication complexity of the STBFT algorithm as follows:

View Source\begin{equation*} {C}2=[{n}(2{k}^{2}+1)] {/ k} \tag{6}\end{equation*}

$$\begin{equation*} {R}_{c} =[{n}(2{k}^{2}+1)]/[{k}(2{n}^{2}-{n}+1)] \tag{7}\end{equation*}$$ View Source\begin{equation*} {R}_{c} =[{n}(2{k}^{2}+1)]/[{k}(2{n}^{2}-{n}+1)] \tag{7}\end{equation*}

FIGURE 6.

Ratio of the communication complexity of the STBFT to the PBFT.

Show All

C. Fault Tolerance Analysis for the STBFT Algorithm

To improve the fault tolerance and security of the system, we use the randomness of VRF to ensure that nodes are evenly distributed in the consensus network. At the same time, our algorithm uses a feedback mechanism to deal with malicious behavior of Byzantine nodes, which can maximize the success rate of our algorithm in achieving consensus. Part A of Section IV shows that in the case of a random distribution of nodes, the probability that the feedback mechanism cannot be triggered within the acceptable fault tolerance range is extremely low. Therefore, we verify the effectiveness of the mechanism and analyze the success rate under malicious node attacks. By introducing the faulty probability determined (FPD) and faulty number determined (FND) models [38], our algorithm is compared with the Multi-Layer PBFT algorithm [38] to verify that it can improve the fault tolerance of the hierarchical system. The FPD model is used when the probability of every single faulty node is fixed, and the FND model is used when the number of faulty nodes in the system is fixed. We conduct FPD and FND simulation experiments on the two algorithms in MATLAB. Assuming that all nodes are independent of each other in the experiment, we use the same two-layer system structure for both algorithms and take the number of nodes $k$ of the group to be 10 and 15, so the corresponding total network nodes $n$ are 111 and 241, respectively. We use the FPD and FND models to perform 10,000 repeated experiments in the same network environment to calculate the simulation success rate by taking the ratio of success times to the total repeating times. The experimental results are shown in Figure 7. It can be seen from the figure that the STBFT algorithm has better fault tolerance performance than the Multi-Layer PBFT algorithm, and our algorithm can always maintain a high 100% consensus success rate in both the FPD model and the FND model. With the gradual increase in network nodes, the proportion of our algorithm to achieve a 100% success rate gradually increases. It can be seen from Part A of Section IV that with the increase in consensus network nodes, the probability of feedback mechanism failure will be lower, so the success rate of reaching consensus will be higher.

FIGURE 7.

Analytical results of the FPD and FND models with different k and n values for the STBFT and Multi-Layer PBFT.

Show All

To further verify that our algorithm can significantly improve the system’s fault tolerance, we also conduct an experimental analysis of the two algorithms in the same three-layer system structure. The number of nodes $k$ of the group is 10, and the total number of network nodes $n$ is 1111. As shown in Figure 8, similarly, the STBFT algorithm has better fault tolerance performance than the multilayer PBFT algorithm, and our algorithm can always maintain a high 100% consensus success rate in both the FPD model and the FND model.

FIGURE 8.

Analytical results of the FPD and FND models for the STBFT and Multi-Layer PBFT.

Show All