Analysis of the Sybil defense of Duniter-based cryptocurrencies
Lucas Isenmann
TL;DR
The paper analyzes the Sybil-defense capabilities of the Duniter Web of Trust via a graph-theoretical model, isolating the certifications network from time-based constraints. It derives a Moore-like upper bound on how many fake vertices a Sybil attack can generate within distance $k$, using a bound $g_k = c(A) \frac{(\Delta-\delta+1)^k-1}{\Delta-\delta}$ and auxiliary definitions $c(X)$ and $\alpha$, and contrasts general bounds with a practical basic attack strategy. The results show that while worst-case bounds can be extremely large, real networks with thousands of users exhibit much slower growth due to distance rules and referent dynamics; social constraints such as Dunbar's number can further limit attack size. Overall, the work supports the resilience of Duniter's Web of Trust against large-scale Sybil inflations under the studied graph-theoretical framework and highlights areas for future modeling, including time constraints and potential vertex/arc deletions.
Abstract
Duniter-based cryptocurrencies, which are providing a kind of universal basic income, are using a system called "Web of Trust" based on a social network whose evolution is subject to graph theoretical rules, time constraints and a licence in order to avoid large Sybil attacks. We investigate in this article the largest size of a Sybil attack that a simplified version of the graph theoretical rules of a Web of Trust can undergo depending on the number of attackers and on the parameters of the system. We show that even if in theory, without considering social and time constraints, this system cannot in general prevent huge attacks, in the real-world case of a Duniter-based cryptocurrency (with thousands of users), the system can prevent attacks of large size with only graph theoretical rules.