drand

command module

v0.0.0-...-34685ae Latest Latest Go to latest Published: Nov 15, 2017 License: MIT Imports: 28 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/helinwang/drand

Links

Open Source Insights

README ¶

Drand - A Distributed Randomness Beacon Daemon

Drand (pronounced "dee-rand") is a distributed randomness beacon daemon written in Golang. Servers running drand can be linked with each other to produce collective, publicly verifiable, unbiasable, unpredictable random values at fixed intervals using pairing-based threshold cryptography.

Disclaimer

This software is considered experimental and has NOT received a full audit yet. Therefore, DO NOT USE it in production at this point. You have been warned.

I Want Randomness Now!

Sure thing, here you go:

Make sure that you have a working Docker installation.
Then run:

./run_local.sh

The script spins up six local drand nodes and produces fresh randomness every two seconds. To retrieve and verify the randomness, follow the instructions printed by the script. If you want to run a different number of nodes, simply pass it as an argument to the script.

Drand in a Nutshell

A drand distributed randomness beacon involves a set of nodes and has two phases:

Setup: Each node first generates a long-term public/private key pair. Afterwards, a group file is created which gathers all the participants' public keys together with some further metadata required to operate the beacon. After the group file has been distributed, all participants run a distributed key generation (DKG) protocol to create the collective public key and one private key share per node. The participants NEVER see/use the actual private key explicitly but instead utilize their respective private key shares for drand's cryptographic operations.
Generation: After the setup, the participating nodes switch to the randomness generation mode. Any of the nodes can then function as a leader to initiate a randomness generation round. Therefore, a given leader broadcasts a message (in this case, a timestamp) which is then signed by all participants using a threshold version of the Boneh-Lynn-Shacham (BLS) signature scheme and their respective private key shares. Once any node (or third-party observer) has gathered a threshold of partial signatures, it can reconstruct the full BLS signature (using Lagrange interpolation) which corresponds to the collective random value. This random beacon / full BLS signature can be verified against the distributed public key that was computed with the DKG.

Installation

Drand can be installed via Golang or Docker. By default, drand saves the configuration files such as the long-term key pair, the group file, and the collective public key in $HOME/.drand/.

Via Docker

Make sure that you have a working Docker installation.

Via Golang

Make sure that you have a working Golang installation and that your GOPATH is set.
Install the pairing-based crypto library.
Install drand via:

go get github.com/dedis/drand

Usage

NOTE: If you run drand in Docker, always use the following template

docker run \
    --rm \
    --name drand \
    -p <port>:<port> \
    --volume $HOME/.drand/:/root/.drand/ \
    dedis/drand <command>

where <port> specifies the port through which your drand daemon is reachable and <command> has to be substituted by one of the respective drand commands below.

ISSUE with Docker: We currently have an issue with running drand on docker natively on some platforms. If running drand this way does not work as such, you might want to compile the docker image yourself. For this, make sure you have a working Golang installation and that your GOPATH is set. To have a working drand container, execute the following steps:

go get github.com/dedis/drand
cd $GOPATH/src/github.com/dedis/drand
docker build -t dedis/drand .

The docker drand image should now be functional on your platform. You are encouraged to fill up an issue if you encounter any problems with the installation process, and we'll do our best to help you fix it.

Setup

To setup the drand beacon, each participant generates its long-term key pair from which we can then assemble the group configuration file, and finally all participants run the distributed key generation protocol.

Long-Term Key

To generate the long-term key pair drand_id.{secret,public} of the drand daemon, execute

drand keygen <ip>:<port>

where <ip>:<port> is the address from which your drand daemon is reachable.

NOTE: If you use Docker, make sure to use the same <port> value consistently.

Group Configuration

To generate the group configuration file drand_group.toml, run

drand group <pk1> <pk2> ... <pkn>

where <pki> is the public key file drand_id.public of the i-th participant.

NOTE: This group file MUST be distributed to all participants and MUST be stored in the respective application folder (e.g., $HOME/.drand).

Distributed Key Generation

After receiving the drand_group.toml file, participants can start drand via:

drand run

One of the nodes has to function as the leader which finalizes the setup and later also initiates regular randomness generation rounds. To start the drand daemon in leader mode, execute:

drand run --leader

Once running, the leader initiates the distributed key generation protocol to compute the distributed public key (dist_key.public) and the private key shares (dist_key.private) together with the participants specified in drand_group.toml.

Randomness Generation

The leader initiates a new randomness generation round automatically as per the specified time interval (default interval: 1m). All beacon values are stored as $HOME/.drand/beacons/<timestamp>.sig.

To change the duration of the randomness generation interval, e.g., to 30s, start drand via

drand run --leader --period 30s

Randomness Verification

To verify a beacon <timestamp>.sig using dist_key.public simply run:

drand verify --distkey dist_key.public <timestamp>.sig

The command returns 0 if the signature is valid and 1 otherwise.

Learn More About The Crypto Magic Behind Drand

Drand relies on the following cryptographic constructions:

All drand protocols rely on pairing-based cryptography using an optimized implementation of the Barreto-Naehrig curves.
For the setup of the distributed key, drand uses an implementation of Pedersen's distributed key generation protocol. There are more advanced DKG protocols which we plan to implement in the future.
For the randomness generation, drand uses an implementation of threshold BLS signatures.
For a more general overview on generation of public randomness, see the paper Scalable Bias-Resistant Distributed Randomness

What's Next?

Although being already functional, drand is still at an early stage of development, so there's a lot left to be done. Feel free to submit feature or, even better, pull requests. ;)

For more details on the open issues see our TODO list.

License

The drand source code is released under MIT license, see the file LICENSE for the full text.

Designers and Contributors

Nicolas Gailly (@nikkolasg1)
Philipp Jovanovic (@daeinar)

Acknowledgments

Thanks to @herumi for providing support for his optimized pairing-based cryptographic library.

Documentation ¶

Overview ¶

drand is a distributed randomness beacon. It provides periodically an unpredictable, bias-resistant, and verifiable random value.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
bls
pbc

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL