Byzantine Agreement in Polynomial Time with Near-Optimal Resilience*

It has been known since the early 1980s that Byzantine Agreement in the full information, asynchronous model is impossible to solve deterministically against even one crash fault [FLP 1985], but that it can be solved with probability 1 [Ben-Or 1983], even against an adversary that controls the scheduling of all messages and corrupts up to f < n/3 players [Bracha 1987]. The main downside of [BenOr 1983, Bracha 1987] is that they terminate with 2T(..) latency in expectation whenever f = Theta(n). King and Saia [KS 2016, KS 2018] developed a polynomial protocol (polynomial latency, polynomial local computation) that is resilient to f < ( 1.14 x 10(-9)).. Byzantine faults. The new idea in their protocol is to detect-and blacklist-coalitions of likely-bad players by analyzing the deviations of random variables generated by those players over many rounds. In this work we design a simple collective coin-flipping protocol such that if any coalition of faulty players repeatedly does not follow protocol, then they will eventually be detected by one of two simple statistical tests. Using this coin-flipping protocol, we solve Byzantine Agreement in polynomial latency, even in the presence of up to f < n/4 Byzantine faults. This comes close to the f < n/3 upper bound on the maximum number of faults [LSP 1982, BT 1985, FLM 1986].