Hyperledger Besu Archives

May 26

#HyperledgerInterop: A Sampling of Production Cross-Platform Solutions and Deployments Built with Hyperledger Technologies

By Hyperledger Blog, Hyperledger Besu, Hyperledger Fabric, Hyperledger Sawtooth

The rapid pace of innovation in the development and deployment of blockchain technologies is creating more points of intersection for cross chain and cross application data and transaction flow. Fortunately, there is also a robust effort underway to deliver new approaches to ensuring that solutions work across platforms and protocols. Case in point: at the upcoming Hyperledger Global Forum, there will be 20 talks covering various aspects of blockchain interoperability and integration.

Below, we take a look at a sampling of use cases where Hyperledger technologies are at play in solutions that are operating in or enabling cross-platform production deployments:

Daml
Daml, a multi-party application platform created by Digital Asset, is widely used in distributed applications that deliver portability across a number of blockchain platforms, including Hyperledger frameworks: Besu, Fabric and Sawtooth. Recently, using Hyperledger Fabric, Ethereum and a traditional Postgres database, Digital Asset demonstrated platform interoperability and open sourced the code to help CBDCs (and other applications that need to integrate with CBDCs) interoperate, making the digital currencies compatible regardless of the underlying technology. The code for this CBDC use case is available on Git Hub. Read more and watch the demo here.

Hala System’s Sentry

Hala Systems is using Hyperledger Fabric alongside Hedera as part of its Sentry early warning system, which helps protect 2M+ people in Syria. Hala Systems uses both Hyperledger Fabric and Hedera to manage the metadata of created media and user input produced in conflict. The hashed metadata is simultaneously written to a private blockchain built on an IBM Blockchain Platform powered by Hyperledger Fabric and to Hedera Consensus Service. Hala Systems uses the IBM Blockchain Platform to act as its internal repository, preserving additional metadata to augment the auditable hash data sent to Hedera Consensus Service. With these two sets of records, any third party can verify the information on the public ledger to match the image and, if necessary, its accompanying data stored on the private ledger.

Project Starling

Project Starling was developed to help empower organizations to securely capture, store, and verify human history. Starling represents a ground-breaking methodology in the fight against the spread of misinformation and the looming threat of deep fakes by providing open-source tools. Starling uses the latest cryptographic methods and decentralized web protocols to meet the challenges of establishing trust in our most sensitive digital records.

Jointly developed by teams at USC and Stanford, the Starling framework leverages multiple decentralized technologies including IPFS, GUN, Hyperledger Fabric, and Hedera Hashgraph throughout its process. For each piece of media captured, the framework is designed to store images on IPFS, using Filecoin, these image’s associated metadata is then stored in a permissioned Hyperledger Fabric network, securely protecting any sensitive information. For each media file, a hash of the information stored in Hyperledger Fabric is taken and recorded on the public Hedera network. By doing so, third parties are able to more readily trust the application owner and be assured no bad actor has falsified or modified results after the fact.

Join the conversation this month about developments and deployments using Hyperledger technologies to drive interoperability with #HyperledgerInterop on social channels.

Cover image by Clker-Free-Vector-Images from Pixabay.

May 19

Love0

Poste Italiane Turns to Hyperledger Besu to Streamline Multibrand Loyalty Program

By Hyperledger Blog, Hyperledger Besu

Poste Italiane, the Italian postal service, is one of the country’s oldest and biggest organizations with a role that extends well beyond mail and package delivery. Today, Poste Italiane is not just mail delivery but an online marketplace. The Poste Italiane website offers financial products, logistics and insurance services as well as online payments to facilitate integrated communications throughout Italy. With 158 years of history, a network of more than 12,800 post offices, a workforce of 126,000, total financial assets of €536 billion and 35 million customers, Poste Italiane is at the center of Italian commerce.

As the center of commerce and online transactions, Poste Italiane wanted to support the companies within its ecosystem with customer acquisition and retention. Poste Italiane also wanted to encourage customers to engage with its merchant partners and follow their recommendations or accept offers through them.

Poste Italiane began working with the loyalty programs in 2017 when, in partnership with SIA, it created the Extra Sconti App that enables cost savings to debit card holders that also use Postepay cards. Instead of starting with a network of big shops, it created a platform called Sconti BancoPosta that initially served over 30 thousand small merchants and soon grew to other well-known brands.

What makes Poste Italiane’s platform stand out is the creation of a single point of access to multiple loyalty schemes and formation of a loyalty point exchange. It is common for customers to log into an airline miles/rewards account only to see they’re 100 miles shy of a travel reward. The Poste Italiane solution lets customers combine points from different programs to reach the threshold required to purchase the rewards, making it a truly customer centric approach. When customers only accrue points with one merchant, the value of those points are limited.

To build this solution, Poste Italiane turned to blockchain technology, specifically, Hyperledger Besu. The system uses blockchain for digital wallets, tokens and smart contracts to deliver value for consumers and the retail partners in the system.

Customers can easily access their accounts and rewards, via a mobile app provided either by Poste Italiane or any of the partners and set up their account. After accepting the terms and conditions, a new wallet is generated. Whenever they want to use their rewards, they can create a voucher that combines points from various programs and is redeemable in the system. The collection of points is also digital – the user can generate a QRcode that represents their wallet address where the partner and merchants can transfer the points. While having a single platform makes it convenient for consumers, they can still use the designated apps from various merchants and use the Poste Italiane app to transfer their points and convert them into loyalty tokens on the platform.

Points, vouchers and any other assets that consumers collect through the partner programs in the Poste Italiane app get converted to loyalty tokens. This way, all are equal and can be moved seamlessly between partners. Thanks to smart contracts, it is possible to establish rules that allow the programmability of the tokens for the management of the entire network. Any transaction, be it earning points, exchanging them for tokens or purchasing a reward, happens through a smart contract. Using smart contracts makes the system much more trustworthy and transparent.

Hyperledger worked up with Poste Italians on a case study that details the vital role of loyalty programs in retail and how this solution works to create a differentiated experience for retail partners and consumers. Read the full case study here.

May 10

Love0

Universal DLT interoperability is now a practical reality

By Luke Riley, Head of Innovation at Quant Blog, Hyperledger Besu, Hyperledger Fabric

Anyone who’s involved in the implementation of DLT-based solutions will need no introduction to the problem of interoperability. It’s an issue that has dogged the technology from the very beginning and has severely limited its application. Now, though, that era is in the past. Today, DLTs can interoperate seamlessly and easily, allowing their full potential to be realised across a multitude of use cases. Here, we’ll take a look at how this breakthrough has been achieved. And we’ll begin with a review of the problem and the various attempts to solve it.

Over the years, there have been many attempts to solve the problem of interoperability. Of the various approaches taken, the World Economic Forum (WEF) identified three main categories: Cross Authentication (DLT-relayers), Oracles and the API Gateway. Which, of course, begs the obvious question: which is the best path to follow in the search for true universal interoperability?

To answer this question we will firstly introduce each approach and follow with a comparison between them.

WEF DLT Interoperability Category 1: Cross Authentication

This interoperability category is the most decentralised of the three categories. It requires separate authorization on each side of the interoperability connection. Examples include:
– Hash-locking: this is used, for example, to atomically swap assets across distributed ledgers.
– DLT-Relayers: these are distributed ledger communication protocols that act as orchestration layers between other distributed ledgers. They are designed for the exchange of different types of messages between these networks. Two DLT- relayer examples are Polkadot and Ethereum 2.0.

WEF DLT Interoperability Category 2: Oracles

Oracles allow distributed ledgers to connect to external data resources (which may be another distributed ledger). Oracles are therefore orchestration layers, connected to different resources, that perform various actions according to on-chain and off-chain pre-defined bespoke rules. Some oracles not only pass information from an external data resource to smart contracts but also send data from the distributed ledger back to the external resources. There is usually a single oracle to perform each task, but occasionally there can be a collection of oracles performing the same task (in a permissioned or permissionless manner). Smart contract logic then states how consensus of data is achieved between multiple inputs recorded by different oracles. An example of an oracle system is Chainlink.

WEF DLT Interoperability Category 3: API Gateway

An API provides access to a server and the resources it is connected to. An API gateway provides organised access to many underlying API resources, simplifying requests to the underlying resources to improve the user experience. A DLT API gateway can have shared end points across distributed ledger networks, standardise DLT data objects and can compress many DLT actions into one endpoint. This is the approach we take with Quant’s Overledger API.

One way to determine the best interoperability path to follow in the search for true universal interoperability is to look at how each approach “scores” in terms of the key functional criteria that defines a robust, flexible and scalable solution. These criteria are:

Proven Technology

While it’s true that DLT-relayers have been in development for many years, they are not yet proven technology – there is, as yet, no stable implementation running in a high-load environment. A similar story is true of oracles – although data feed technology is established, data feeds from one distributed ledger network (DLN) to another and back again has yet to be proven in practice. API gateways, on the other hand, have a long-proven record with many thousands of implementations around the world.

Decentralisation method: As pointed out by the WEF, the three different models have different decentralisation properties. DLT-relayers, for example, can be fully decentralised if a permissionless DLN is used. Oracles, however, have two different levels of permissions. One depends on the network permissions, the other depends on the smart contract permissions. With API gateways, on the other hand, the amount of decentralisation is provided by the ecosystem of separate API gateways run by different stakeholders.

How users interact: For DLT-relayers, users either need to be provided with direct access to relayer nodes, or they must be given access to DLT-relayer nodes through an API gateway model. Non-oracle users can interact with the on-chain oracle smart contracts, or they can interact with an off-chain oracle instance. For the API gateway itself, users interact through the API using standard elements like REST.

Resilience: The resilience of DLT-relayers depends on the consensus protocols it runs, particularly that of the connecting chain. As each consensus protocol has limits on the percentage of malicious nodes that it can handle, the resilience of the entire network is dependent on the number of nodes in the network. With oracles, the more oracles that feed data about the same topic, the more resilient the system – generally speaking – will be. An API gateway’s resilience is determined by the number of instances running and its load balancing capabilities and can be tuned for each type of use case.

Combining permissionless and permissioned DLNs: As yet there is no technical, or convincing theoretical demonstration, of how this can be completed using DLT-relayers without compromising security.

The brief analysis above points to a clear conclusion: API gateways have significant advantages over the other approaches. And it was for this reason that Quant chose the API gateway model for Overledger, our own solution to the challenge of interoperability. Developed by a team highly experienced in enterprise security and nation-level critical systems, Overledger is built on research that began as a collaboration with UCL, and now provides a secure, simple, and cost-effective API connection to all major DLTs. A robust, enterprise-grade solution, Overledger is easily integrated with multiple DLTs, including Hyperledger Fabric and Hyperledger Besu, and Quant is constantly expanding the list of supported DLTs.

Today, Overledger is helping to unlock the potential of DLTs in many major projects across the world. One of the most ambitious of these projects is LACChain, an alliance led by the Inter-American Development Bank. Operating across the Latin American and Caribbean region, LACChain is already having demonstrable positive social impact, and the consortium has developed a roadmap that will ultimately lead to the interconnection of regional DLT ecosystems.

Achieving success will require the integration of LACChain (which provides both Hyperledger Besu and EOS technologies) and Quant’s unique Overledger technology. This will facilitate the creation of a new, fast cross-border payments system for the region, using tokenised currency. By flexibly tokenising money, using Quant’s (patent-pending) multi-DLT token technology (MLTS), the LACChain DLN will power a variety of new solutions, ranging from money transfers between private individuals to government and corporate payments, as well as many other future LACChain use cases.

One immediate benefit of this breakthrough will be a revolution in remittances and financial inclusion. For example, where, currently, cross-border banking services for people such as migrant workers or farmers are hard to access and unreliable, the LACChain solution, supported by Overledger, will allow foreign and/or local currency to be transferred in a simple but secure manner, with affordable transaction costs. The system has the potential to be expanded to the large-volume market of the unbanked or others currently excluded from the financial system. In short, the LACChain/Quant partnership will open the door to a host of faster, more efficient and more inclusive financial processes and applications in the LAC region, ranging from cross-border and interbank settlement, to the deployment of digital wallets and smart contracts. The pilot phase of the LACChain project is already well advanced, and full commercial development over the coming twelve months will be a landmark year for DLTs and DLNs.

Nov 04

Love0

Announcing Hyperledger Besu 20.10.0

By Hyperledger Besu Team Blog, Hyperledger Besu

This release includes new versioning and mainnet-focused advancements

The Hyperledger Besu team is excited to announce today’s Hyperledger Besu 20.10.0 release.

You might have noticed that the versioning for this quarterly release is a little different than prior Hyperledger Besu releases. The Hyperledger Besu community recently decided to switch its versioning to calendar versioning, known as CalVer. Instead of the historic semantic versioning used by Besu and other Hyperledger projects, the Besu team decided to use CalVer moving forward. In all future releases, you will notice the project versions will start with the year and month (YY.M) of the last major release candidate, followed by a patch number for incremental releases, which results in a YY.M.patch, or 20.10.0 for this release. The Besu team believes this will better track the project’s changes and it follows many other successful open source projects that use Calver, including Splunk and Ubuntu.

Check out the old vs. new versioning in the table below.

Project	Release	Old Release Versioning	New Calver Release Versioning
Hyperledger Besu	Hyperledger Besu Q4 Release Candidate 1	1.6.0-RC1	20.10.0-RC1
Hyperledger Besu	Hyperledger Besu Q4 Release Candidate 2	1.6.0-RC2	20.10.0-RC2
Hyperledger Besu	Hyperledger Besu Q4 2020 Quarterly Release	1.6.0	20.10.0
Hyperledger Besu	Hyperledger Besu subsequent bi-weekly release	1.6.1	20.10.1

Now to share what is included in the latest release. The Besu community is excited about the continued advancements of the Hyperledger Besu project featured in this release.

A few highlights for this release include:

Flexible Privacy Group Performance tests
Mainnet Support Work, including preparing for the Berlin Network Upgrade and EIP-1559 support

Flexible Privacy Group Performance Tests

The ‘add and remove members for privacy groups’ feature was released earlier this year as an early access feature. With privacy groups in Hyperledger Besu, you can add and remove members from a privacy group, creating an improved user experience for private transactions. Privacy groups are built using a private transaction manager, called Orion, to help send private transactions in a permissioned network.

In the 20.10.0 version, privacy groups have been further improved to ensure robust performance. The team performed various tests to ensure the flexible privacy group feature is not a performance bottleneck.

Flexible privacy groups are now supported when using multi-tenancy. In addition, the team created more library examples and documentation of use cases.

Mainnet Support Work

Since Hyperledger Besu runs on the public Ethereum mainnet, the Besu community also sought to improve its public chain settings. As a reminder, Hyperledger Besu is the only Hyperledger project that runs on a public chain and in permissioned network settings. This optionality makes it unique and a popular project for trying out both public chain or permissioned network options for a use case.

Berlin Network Upgrade

In this release, the community prioritized work ensuring Hyperledger Besu is ready for the next Ethereum hard fork, Berlin, scheduled to happen in the next few months. You can learn more about Ethereum’s hard forks here. For the Berlin hard fork, the Besu and Ethereum communities are broadly focused on implementing EIPs, or Ethereum Improvement Proposals, that will help with the UX of the Ethereum 2.0 deposit contract, add new functionality to the EVM and change gas costs to reflect their execution time more accurately.

EIP-1559

In addition to its work on the Berlin network upgrade, the Besu team has also been leading efforts to implement EIP-1559. EIP-1559 is a highly anticipated upgrade to Ethereum’s transaction fee market. This EIP’s goal is to make the Ethereum fee market more efficient. You can read more about the current status of EIP-1559 here in a post written by Tim Beiko, one of our Besu team members.

What’s Next?

The Hyperledger Besu community remains committed to improving its project and making it fit for production blockchain use cases. Watch for new features addressing node hibernation and Bonsai Tries database improvements in our next quarterly release.

Get Involved

Download the latest version of Hyperledger Besu here.

Interested in learning more or curious on how to get started with Hyperledger Besu? Check out the Besu docs, view the tutorials, visit the wiki, or take a look at some open issues in GitHub.

Stay tuned to hear more about our work in Ethereum and Hyperledger and about how Hyperledger Besu is continuing to lead the enterprise blockchain space.

Sep 28

Love1

#HyperledgerFinTech: A sampling of production applications using Hyperledger technologies in the finance market

By Hyperledger Blog, Finance, Hyperledger Besu, Hyperledger Fabric, Hyperledger Indy, Hyperledger Iroha

The financial services market has long turned to technology to address a range of back-end challenges and enhance customer-facing services. Blockchain is increasingly becoming a go-to technology for advancing many different financial systems and solutions with different Hyperledger platforms serving as the core for an array of applications now in production.

Read on for just a sampling #HyperledgerFinTech solutions, built using a mix of Hyperledger technologies:

Bakong

Sponsored by the National Bank of Cambodia, the country’s central bank, Bakong is the first retail payments system in the world using blockchain technology. Built on Hyperledger Iroha, Bakong delivers value for customers, merchants and banks. Individuals can now transfer money and buy from merchants with a simple smartphone app. Merchants gain a fast, cashless, and secure payments system. And banks can do interbank transfers at much lower cost.

Bakong was developed by Soramitsu and, after a soft launch in 2019, is now expanding with 16 financial institutions using the system and more expected to join in the near future. The project was also designed to promote financial inclusion for the country’s large number of unbanked citizens. Any citizen of the country can open a Bakong account, even if they don’t have a traditional bank account. The more than 500 merchants that accept Bakong can be viewed in a map inside the app.

daura

Built atop the private Swiss Trust Chain run by Swisscom and Swiss Post and powered by Hyperledger Fabric, daura is a digital share platform for financing and investing in Swiss SMEs. With daura, the share register is easily digitized and capital increases are carried out quickly and inexpensively at the push of a button. Shares can be split into any number of small lots and the share register is always digitally maintained, complete and up-to-date. With daura, companies have also transitioned virtual Annual General Meetings as a response to COVID-19 with authorization and access are granted directly via the blockchain.

ioCash

ioBuilders is a blockchain technology company focused on building regulated fintech and enterprise solutions based on distributed ledger technology to help businesses succeed in their blockchain adoption. The company offers professional services, including technical, business and regulatory, and develops its own product line. ioBuilders has been one of the first adopters and advocates of Hyperledger Besu, providing essential feedback to improve its enterprise requirements capabilities.

ioCash, one of ioBuilder’s core products, is a fintech platform enabling the use of regulated fiat money on blockchain networks, making it programmable with smart contracts and able to interact with other blockchain use cases. ioCash’s platform operates under an electronic money licence, providing accounts (with or without IBAN) and complex payments functionalities through API and smart contracts connectivity. ioCash is also available as a technology license for financial institutions that hold banking or electronic money licences and are aiming to add the benefits of blockchain into their payment systems.

Memberpass

CULedger, a credit union service organization (CUSO) that began when a group of credit unions came together in 2016 as a direct response to the increasing threat of fraud, set out to bring a decentralized identity solution product for credit unions to market. The result was MemberPass, a permanent, portable digital identity credential for credit union members.

Built in partnership with Evernym and using Hyperledger Indy, Memberpass replaces vulnerable authentication processes such as common knowledge-based questions. Now credit unions are able to issue a digital credential to members, giving them a hassle-free way to control and prove their identity quickly and easily while protecting their personal information.

Verified.Me

Verified.Me offers a secure and convenient way to help Canadians verify their identities.

Verified.Me is a service offered by SecureKey Technologies Inc. The Verified.Me service was developed in cooperation with seven of Canada’s major financial institutions – BMO, CIBC, Desjardins, National Bank of Canada, RBC, Scotiabank and TD. The Verified.Me network continues to evolve adding new identity providers and service providers to make your life easier.

Verified.Me is built on top of the IBM Blockchain Platform which is based on Linux Foundation’s open source Hyperledger Fabric v1.2, and will be interoperable with Hyperledger Indy projects.

Users of the Verified.Me mobile app or web browser experience are able to get a free credit score with Equifax, register with Sun Life, verify their identity when registering for Dynacare Plus, an online and mobile service that lets users manage their health remotely, and more.

Join the conversation about solutions and applications in the financial service market with #HyperledgerFinTech this month on social channels. Or get involved with the Capital Markets or Trade Finance Special Interest Groups.

If you are interested in peer-to-peer transactions, mark your calendar for a webinar hosted by CoinDesk at 11:00 am ET on October 20th. A panel of experts on different Hyperledger platforms will be discussing “Governance, standards and interoperability: Getting past the roadblocks to peer-to-peer financial transactions.” Go here to find out more.

Aug 06

Love5

Hyperledger Besu 1.5 Performance Enhancements

By Hyperledger Besu Team Blog, Hyperledger Besu

Overview

Over the past quarter, the Hyperledger Besu team has been hard at work improving performance across many fronts, from adding support for native encryption libraries to tuning our EVM execution code, experimenting with different different JVMs and building more robust benchmarking infrastructure. This has resulted in performance improvements across sync times, transactions per second and requests per second.

We are excited to share these results as well as the details of future work we have planned around stability and performance.

Native Encryption Libraries

When writing Hyperledger Besu (back when it was called Pantheon), we had a principle that the code had to be correct first. If the execution of a block was wrong, it didn’t matter how fast it was because we would fall out of consensus. Combine this with the complexity and specificity of encryption software, and any attempts to optimize performance could have a destructive effect on the whole project if we got even one corner case wrong. To avoid this, we used mostly pre-existing Java-based cryptography implementations.

Starting in Besu 1.4.2, we shifted our model to use external non-Java or “native” encryption (specifically, external libraries called through native OS calling conventions). This opened us up to a large swath of optimized implementations. The first library we added was secp256k1(AKA the Bitcoin Elliptic Curve). This library is heavily used throughout Ethereum, often invoked multiple times in each transaction. The implementation we use is Bitcoin Core’s optimized library (https://github.com/bitcoin-core/secp256k1). It is mostly written in C but also features a handwritten assembly loop in the “hottest” parts of the calculation. The second library we use is for the altbn128 curve, a precompiled contract that has seen a significant uptick in use as Eth2 testnets have started popping up.

For now, Hyperledger Besu supports both the native versions and pure Java versions, so they are still usable if a native library isn’t compiled for your target device. We split these specific libraries out into a standalone package to simplify the process of building and packaging them for the various platforms on which they must run. They can be accessed on GitHub (https://github.com/hyperledger/besu-native).

This change has led to a noticeable speedup in fast syncing times (and transactions per second, but more on that below!), especially for networks where secp256k1 verification takes a significant part of the sync time, such as testnets or networks with lots of empty blocks. For example, this change reduced our fast sync time on Goerli by 13%, from 92 minutes (Besu 1.4.0) to 80 minutes (Besu 1.5 RC2). The full sync speedup (processing every transaction and storing every block state) was even larger: a 1,571% improvement, from just over six days (Besu 1.4.0) to just over nine hours (Besu 1.5.0)!

EVM Implementation Optimizations

Another place we improved performance is in our pure Java implementation of the Ethereum Virtual Machine (EVM). There are three significant improvements of note:

We simplified our exceptional halt detection with simpler language constructs,
We flattened out a series of three calls into one call and removed a lot of duplicate calculations along the way, and
We adopted some low-level optimizations that we upstreamed to Apache Tuweni 1.1.

To determine where we needed to perform these optimizations, we used a combination of a handwritten tool and off-the-shelf profilers. The Besu community uses a mix of the VisualVM, Java Flight Recorder/Mission Control, and YourKit profilers (provided to Besu under their Open Source Licencing program – https://github.com/hyperledger/besu/blob/master/README.md#special-thanks).

We then pointed those profilers at a tool we built called “EVMTool” https://github.com/hyperledger/besu/tree/master/ethereum/evmtool) that was initially written to support cross-client fuzz testing of EVM smart contracts. With very slight modifications, we were able to turn it into a repeated EVM executor. Setting the repetitions up to an absurdly high number, we could point our profiler of choice at the EVM and get some longer term performance numbers. This revealed a large amount of unneeded copying of byte arrays, duplicate calculations, and inefficient call structures.

When compared to 1.4.2, our EVM evaluations (i.e., “gas per second”) have now improved from 78-220% depending on the specific contract structure and state size, with all but one benchmark showing over 100% improvement. While we don’t have raw measurements, we suspect this change is also partially responsible for the sync times improvements mentioned earlier.

GraalVM

Since Besu runs on top of Java, we have access to the full range of Java Virtual Machines. Previously, we have recommended OpenJDK 11 as it is a known and stable version of the JVM with many downstream distributions (Corretto, AdoptOpenJDK, Zulu).

Recently we’ve started testing with GraalVM (https://www.graalvm.org/), a JVM implementation that is Oracle’s successor to the HotSpot JVM that’s been at the core of Java for over two decades. It is also at the core of several new projects such as Micronaut and Quarkus. While it has lots of fancy features (such as Ruby support, experimental WASM support, native image generation, AOT compilation), it offers several significant performance advantages while remaining a drop in replacement for the JDK.

Just dropping in GraalVM Community Edition 20.1 without any additional JVM tuning resulted in a 14% increase in our TPS numbers, from roughly 350 to 400 smart contract calls per second. All the other fancy features it will bring along in the future is just icing on the cake.

Transactions Per Second (TPS)

As mentioned in the prior section, we have seen great improvement to Hyperledger Besu’s TPS numbers in a private chain setting. All in all, our efforts have moved us from 300 TPS on Besu 1.4.0 to 350 for Besu 1.5 and 400 TPS when using GraalVM. In order to get repeatable measurements for our TPS improvements, we worked with Hyperledger Caliper, another project under the Hyperledger umbrella to benchmark our numbers across various Besu versions.

The network we used was composed of five nodes. Four of these were validators, and the only non-validator node was used as an RPC node. One of the validator nodes was designated for use as a bootnode.

The network used IBFT 2.0 as its consensus algorithm with a two second block time, an epoch length of 30,000, and a 10 second request timeout value. A very high block gas limit of 672,000,000 was set, and blocks were monitored to be sure that this gas limit was not saturated. The function called to benchmark TPS numbers was a “register” transaction from one of LACChain’s registry contracts.

All of this was set up using Ansible playbooks we had developed to launch Besu instances.

Requests Per Second (RPS)

Another area where we saw notable improvements was in Hyperledger Besu’s handling of JSON RPC requests. Using ethspam (https://github.com/shazow/ethspam), a library that generates realistic read-only JSON RPC queries to bombard a node with, we saw an 64% improvement in Besu’s request-per-second performance. On version 1.4.0, when sent 100,000 requests, Besu could answer on average 5242.39 per second. Using the 1.5.0 release, that number was up to 8632.75. Even better results were obtained using GraalVM on Besu 1.5.0, with RPS reaching 8988.59, an increase of 71% over the 1.4.0 release!

For our RPS benchmarks, we used Versus (https://github.com/INFURA/versus), a tool developed by Infura, which can compare the RPS performance across various Ethereum node implementations and, of course, Infura itself.

Stay Tuned

While the Hyperledger Besu team is pleased with the progress made, we are continuing to focus on performance and, over the coming months, will make it one of our main priorities for the codebase. Specifically, along with continuing to fine tune various parts of the codebase, we will begin major refactors of two areas of the codebase: the peer-to-peer (P2P) layer and the database.

Besu’s P2P layer has grown and been extended significantly over the past few releases with the addition of privacy, permissioning and various other improvements. It is now time to take a step back to redesign it so that it is maximally stable and performs well. We’ll also be looking to add even more new functionality, such as enabling the new eth/65 version of the eth networking protocol.

On the database side, the Ethereum mainnet’s growing state size has made database access reading and writing state a major performance bottleneck. Over the next few months, the Besu team will be experimenting with a new database format that is designed to be more performant for networks with large state sizes. The first “feature” coming out of this work should enable users to more easily backup and restore their network’s state, providing an offline disaster recovery backup.

Stay tuned!

Download Hyperledger Besu
Join the Conversation about Hyperledger Besu

Aug 03

Love5

IoT Deployment Tutorial Part II: Deploying Hyperledger Besu to Support Hardware Layer

By Krzysztof Radecki, CEO at rexs.io, and Marek Tatara, R&D Projects Coordinator at DAC.digital Blog, Hyperledger Besu

As we pointed out in part I of this series, the days when hardware and software were separate entities are long gone. Along with the ongoing worldwide digitization and digitalization, the integration between the virtual and physical worlds is getting stronger – making the Internet of Things (IoT) a real thing. Going further, we can leverage blockchain features like data immutability, distributed character, and exploit the smart contracts it offers to connect it with IoT applications to build a trusted and all-inclusive solution. We’ve created a two-part tutorial to showcase how to deploy and connect all the pieces. In part I of our tutorial, we set up a private Hyperledger Besu network and configured a Raspberry Pi to sign transactions with its own keys. We used this to write a Python program, hosted on Raspberry, sending Ether to other participants of the network. The final solution used quite a broad technological stack: Terraform, Amazon Web Services, MetaMask, and, finally, Raspberry Pi. In part II, we don’t want to lower the bar, so here we add some extra technological stack on the top of what we had.

Scenario

Let us consider a contract between a supplier and a buyer. They both agree on some delivery time, conditions, pick up and drop off locations, and, of course, the price the buyer is willing to pay. Among the conditions, they can agree on some penalty for delayed delivery or that the parcel couldn’t be exposed to a temperature higher than some threshold longer than X minutes. While the delivery time can be verified, the monitoring of the second condition is not that easy to verify. Even if we suspect that the temperature threshold has been exceeded (because, for example, the delivered food is spoiled), how can we prove that transport conditions were inappropriate?

In part II, Ratified Smart Contract for Constrained Delivery with Oraclized Data, we created an automated solution covering the entire supply process, including:

publishing the delivery offer with specified conditions,
acceptance of the conditions by contractor,
starting the delivery by an authorized person (using personalized hardware signature),
monitoring the delivery temperature and contract voiding conditions, confirming the delivery, and
calculating the final payment for the supplier.

To achieve this, we take advantage of the Hyperledger Besu network that was deployed in part I and now write a smart contract on the top of it that handles the delivery operations.

Overview

In the full tutorial, we detail all the steps to designing a smart contract for the presented delivery use case. To do this, we use web-based Remix IDE as an environment for contract development while the contract itself is written in the Vyper language. We opted for this pythonic language for the simplicity and readability of its code. Once the contract is developed, we show how to test the deployment to verify that all the functionalities are working correctly.

Further, we go through the steps required to use the hardware signature (contained in the smart card) to sign the transaction, to configure the temperature sensor and measure the current value of the temperature, and, finally, to integrate all the parts into one program that will serve as “delivery starter” and “temperature measurement provider.”

Our tutorial covers a very concrete use case, and it is only the tip of the iceberg. There’s much more, and the possibilities are endless. We hope that this tutorial will give you the thrill to build your own blockchain application. If you have any questions, feel free to contact us!

Jul 31

Love5

IoT Deployment Tutorial Part I: Deploying Hyperledger Besu to Support Hardware Layer

By Krzysztof Radecki, CEO at rexs.io, and Marek Tatara, R&D Projects Coordinator at DAC.digital Blog, Hyperledger Besu

The days when hardware and software were separate entities are long gone. Along with the ongoing worldwide digitization and digitalization, the integration between the virtual and physical worlds is getting stronger – making the Internet of Things (IoT) a real thing. Going further, we can leverage blockchain features like data immutability, distributed character, and exploit the smart contracts it offers to connect it with IoT applications to build a trusted and all-inclusive solution.

Of course, step one is to build out a network to support such solutions. We’ve created a two-part tutorial to showcase how to deploy and connect all the pieces. In part I, we discuss the deployment of a private Hyperledger Besu network on Amazon Web Services (AWS) and the minimum configuration of a Raspberry Pi to interact with the deployed network. In part II, we will do a more complex configuration of a Raspberry Pi, making it a physical instance of an externally owned account with an ability to send hardware signed transactions and interact with smart contracts as both signature and measurements provider.

Our goal with part I, Deployment of Private Hyperledger Besu on AWS with Hardware Layer for Externally Owned Account, is to provide an introduction to the topic as well as guidance for getting started. The tutorial details how to connect a hardware node to the network and configure it to interact with the blockchain. In this regard, it can be treated as a blockchain enabler for IoT solutions.

For a quick overview of the setup, see below. The entire methodology and codebase can be found here.

Setting up the blockchain, accounts and hardware node

First of all, a Hyperledger Besu network should be hosted. For our scenario, we show how to provision a network of four Hyperledger Besu nodes, running an IBFT2.0 consensus, and deployed on AWS. If, like us, you’re not a fan of dull and repetitive tasks, you can use terraform to set the scene instead of manually creating all four nodes.

For general-purpose account management, we use MetaMask – a browser extension that helps to create and manage Ethereum blockchain identities. In the tutorial, we present how to connect to our private, test network, and create a new account – used as an identifier and signature of Raspberry Pi.

Next, we show how to configure Raspberry Pi to:

hold its own identity given as a private-public key pair
become a part of our private blockchain network
sign transactions using its own keys and send ether to other nodes

These steps show how to build a hardware-inclusive blockchain network

Next steps

Getting a handle on the basic ideas and configurations that have to be done in order to have a private Hyperledger Besu blockchain with a hardware node attached is only the beginning. In Part II of our tutorial, we will go beyond merely sending some virtual (and, in fact, worthless) tokens between virtual accounts. We’ll take advantage of the functionalities offered by smart contracts and dive into a business case where the hardware node serves as a trusted source of measurements used to invalidate or finalize a contract. Stay tuned!

Jul 27

Love4

Hyperledger-powered Internet of Things applications

By Hyperledger Blog, Hyperledger Besu, Hyperledger Fabric

The Internet of Things (IoT) is driving an array of new distributed technology models and applications. The potential for pairing IoT and blockchain is increasingly a hot topic. This month, as part of #HypereldgerIoT, we take a look at some productions examples where the technologies are already working together.

Read on for more about Hyperledger-powered IoT applications at work across a mix of use cases:

Norwegian Seafood Traceability Network

A recently launched Norwegian seafood traceability network leverages IBM Blockchain, which is built on Hyperledger Fabric, to share supply chain data throughout Norway’s seafood industry. The goal is to provide safer, better seafood to consumers worldwide. The network uses IoT sensors to report key environmental parameters. Starting with aquaculture, the sensors will monitor and report on the conditions required to produce high quality fish, such as water temperature, oxygen levels, and water quality, and when the fish are transported, IoT sensors will track and report factors such as the length of journey, temperature, and movement in transit. Several Norwegian seafood companies are now in the process of putting data onto the network.

My Sensor

My Sensor is an IoT device developed by Movistar that detects minute concentrations of Radon gas in the surroundings. Radon is a naturally occurring gas which may build up in your property in enclosed spaces, particularly in the basement and on lower floors. If Radon levels exceed certain thresholds, it can affect people’s health.

Leveraging Telefonica’s TrustOS MQTT module, My Sensor tracks and certifies the historical series of Radon gas concentration. The user can get a certification with full proof that guarantees the concentration did not exceed the thresholds in a period or did it during n measurements in a raw. The sensor sent the measurements through TrustOS to a Hyperledger Fabric network where some chaincodes are monitoring and certifying that the measures are in the expected range (or eventually are out of the range). The network itself certifies the series of measurements and anyone can verify it without any doubt avoiding the participation of a trusted expert third party.

VideoCoin Network

The VideoCoin Network is a decentralised video infrastructure that provides developers with video processing services that are simple to use and inexpensive compared to centralised providers. Developed by the VideoCoin Development Association Ltd. and implemented by services provider Live Planet, Inc., the VideoCoin Network runs on the Public Mint platform and is enabled by a native protocol token, the VideoCoin (VID).

Powered by a large-scale, distributed video infrastructure, the VideoCoin Network marshals under-utilised computing resources from around the world, including IoT devices, to revolutionise enterprise-grade video services with blockchain technology.

“Public Mint provides a revolutionary and first of its kind money system that lets us use real USD as programmable currency allowing us to pay tens of thousands of participants on our network. This satisfies our needs to pay anyone whether they’re running a datacenter or a Raspberry Pi IoT device.” – Devadutta Ghat, CTO at LivePlanet Inc.

Backed by Hyperledger Besu distributed ledger technology, Public Mint fosters a marketplace of Smart Services that can run on top of Public Mint’s programmable fiat platform. Anyone can use the current Smart Services or build new ones, using Public Mint’s Open APIs and open-source wallet.

IoT devices integrity service

This service is an extra feature of the Hyperledger Fabric-based TrustOS product. A part of Telefonica’s TrustOS software, this library is provided to be executed by IoT devices in the secure boot. It adds as an additional HTTP header including a checksum of the secure boot for each request sent by the devices.

The first time a device sends this header, TrustOS creates an asset to track any variation in the device behaviour (including besides detecting new checksum, an IA assessing pace and frequency of the requests). Any request is registered and, if something unexpected is detected, a warning is triggered to quickly act over the affected device.

This service can’t avoid unauthorized tampering or unexpected updates but helps in identifying problems earlier and without any doubt. The result: it adds extra trustworthiness-proof beyond KPII.

Join the conversation about blockchain-based IoT applications with #HyperledgerIoT this month on social channels.

Cover image by Tumisu from Pixabay

Jul 16

Love0

Announcing Hyperledger Besu 1.5: Available Now

By Hyperledger Besu team Blog, Hyperledger Besu

The latest release of Hyperledger Besu is now available for download. The 1.5 version offers better performance and improved enterprise functionality.

In February, Hyperledger Besu 1.4 was released. Since then, we’ve been concentrating on continuing to bring Hyperledger Besu users the best experience among enterprise blockchain clients. Today, we’re announcing the release of Hyperledger Besu 1.5, which brings with it significant improvements to performance, usability, and privacy.

Hyperledger Besu 1.5 comes with primary upgrades that focus on enterprise requirements.

PRIMARY UPGRADES: HYPERLEDGER BESU 1.5

Privacy

The most recent set of privacy enhancements include:

Ability to add and remove members from privacy groups.
Filters and subscriptions for private contracts.
Web3j and web3js support for private transactions and filters.

Read more about privacy enhancements in Besu 1.5.

Performance

Added native encryption libraries to provide optimization optionality
EVM execution improvements
Improved logs querying performance
Improved transactions per second (TPS) performance by 33%

Look for more details on the improvements in an upcoming blog post.

Parity Tracing APIs

In the Hyperledger Besu 1.4 upgrade, we introduced new tracing APIs as early access features. Since then, we’ve ensured they worked smoothly across every edge case we could find and are now ready to suggest using them by default.

“Hands-on with Hyperledger Besu” is a guided introduction to Besu, hosted by some of the people who build, maintain, train, and work with the Ethereum client. The program is a four-week, detailed introduction to building with the client. Sign up and start learning about Besu today.

EARLY ACCESS FEATURES

The following features are still under active development, may not be documented and have unstable APIs. Nevertheless, because community feedback is valuable to their development, we want to share them as “early access” features. All feedback and questions are welcomed in our contributor chat.

EIP-1559 Support
Hyperledger Besu has been one of the clients leading the implementation of EIP-1559, a major upgrade to Ethereum’s transaction fee market. The upgrade will allow better transaction fee estimation and faster transaction inclusion in periods of high demand on the network.

Ephemeral Testnet YOLO
In preparation for the next network upgrade, Berlin, an ephemeral testnet called YOLO was launched with two new EIPs enabled: EIP-2315, which adds subroutines to the EVM, and EIP-2537, which introduces a new precompile for the BLS12-381 curve.

While the network is currently down (its status can be seen at https://yolonet.xyz/) Hyperledger Besu is YOLO-compatible.

Download the latest version of Hyperledger Besu here.

Interested in learning more or curious on how to get started with Hyperledger Besu? Check out the Besu docs, view the tutorials, visit the wiki, or take a look at some open issues in GitHub.

Those looking to interact one on one with Besu developers and contributors can join the conversation on Rocketchat at #besu, or join our regular contributor calls.