CRYPTO LITTER
TrendsyToken.io
  • Coin Tracker
  • Bitcoin

    BTC To See Correction Below $10K, Predicts Founder Of Midas

    Can XRP Continue To Outperform Bitcoin?

    Ethereum Price Remains Vulnerable, Will ETH Fall Back To $1K?

    Stablecoin Could be Russia’s Preferred Medium of Exchange for Foreign Trade: Chainalysis

  • Ethereum

    Finalized no. 25 | Ethereum Foundation Blog

    EF-Supported Teams: Research & Development Update

    Grantee Roundup: April 2021 | Ethereum Foundation Blog

    Announcing the EF Fellowship Program, Cohort #2

  • Blockchain
  • NFT Trends

    DeGods Removes Royalties from Resales

    Orange Comet Strikes Partnership with Sir Anthony Hopkins

    CNN’s NFT Platform Shuts Down, Users are Raging

    The SEC Casts a Beady Eye Over Yuga Labs’ Operations

  • Fashion Trends

    What to Wear Hiking This Summer

    35 Affordable Items I’m Eyeing From the Shopbop Sale

    12 Water-Based Makeup Products That Give You Dewy Skin

    The Best Postpartum Clothes I Wore on Maternity Leave

  • VR & Metaverse

    Meta Working With Ray-Ban On New Smart Glasses

    Quest Pro’s Controllers Have “Up To” 8-Hour Battery Life

    VR Developer Schell Games Donates $20K To Charities

    Meta Avatars Getting Legs Soon, And New Graphics Next Year

No Result
View All Result
  • Coin Tracker
  • Bitcoin

    BTC To See Correction Below $10K, Predicts Founder Of Midas

    Can XRP Continue To Outperform Bitcoin?

    Ethereum Price Remains Vulnerable, Will ETH Fall Back To $1K?

    Stablecoin Could be Russia’s Preferred Medium of Exchange for Foreign Trade: Chainalysis

  • Ethereum

    Finalized no. 25 | Ethereum Foundation Blog

    EF-Supported Teams: Research & Development Update

    Grantee Roundup: April 2021 | Ethereum Foundation Blog

    Announcing the EF Fellowship Program, Cohort #2

  • Blockchain
  • NFT Trends

    DeGods Removes Royalties from Resales

    Orange Comet Strikes Partnership with Sir Anthony Hopkins

    CNN’s NFT Platform Shuts Down, Users are Raging

    The SEC Casts a Beady Eye Over Yuga Labs’ Operations

  • Fashion Trends

    What to Wear Hiking This Summer

    35 Affordable Items I’m Eyeing From the Shopbop Sale

    12 Water-Based Makeup Products That Give You Dewy Skin

    The Best Postpartum Clothes I Wore on Maternity Leave

  • VR & Metaverse

    Meta Working With Ray-Ban On New Smart Glasses

    Quest Pro’s Controllers Have “Up To” 8-Hour Battery Life

    VR Developer Schell Games Donates $20K To Charities

    Meta Avatars Getting Legs Soon, And New Graphics Next Year

No Result
View All Result
Crypto Litter
No Result
View All Result
Home Ethereum

Secured no. 1 | Ethereum Foundation Blog

September 10, 2021
in Ethereum
189
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter

[ad_1]

Earlier this year, we launched a bug bounty program focused on finding issues in the beacon chain specification, and/or in client implementations (Lighthouse, Nimbus, Teku, Prysm etc…). The results (and vulnerability reports) have been enlightening as have the lessons learned while patching potential issues.

In this new series, we aim to explore and share some of the insight we’ve gained from security work to date and as we move forward.

This first post will analyze some of the submissions specifically targeting BLS primitives.

Disclaimer: All bugs mentioned in this post have been already fixed.

BLS is everywhere

A few years ago, Diego F. Aranha gave a talk at the 21st Workshop on Elliptic Curve Cryptography with the title: Pairings are not dead, just resting. How prophetic.

Related articles

Finalized no. 25 | Ethereum Foundation Blog

EF-Supported Teams: Research & Development Update

Here we are in 2021, and pairings are one of the primary actors behind many of the cryptographic primitives used in the blockchain space (and beyond): BLS aggregate signatures, ZK-SNARKS systems, etc.

Development and standardization work related to BLS signatures has been an ongoing project for EF researchers for a while now, driven in-part by Justin Drake and summarized in a recent post of his on reddit.

The latest and greatest

In the meantime, there have been plenty of updates. BLS12-381 is now universally recognized as the pairing curve to be used given our present knowledge.

Three different IRTF drafts are currently under development:

  1. Pairing-Friendly Curves
  2. BLS signatures
  3. Hashing to Elliptic Curves

Moreover, the beacon chain specification has matured and is already partially deployed. As mentioned above, BLS signatures are an important piece of the puzzle behind proof-of-stake (PoS) and the beacon chain.

Recent lessons learned

After collecting submissions targeting the BLS primitives used in the consensus-layer, we’re able to split reported bugs into three areas:

  • IRTF draft oversights
  • Implementation mistakes
  • IRTF draft implementation violations

Let’s zoom into each section.

IRTF draft oversights

One of the reporters, (Nguyen Thoi Minh Quan), found discrepancies in the IRTF draft, and published two white papers with findings:

While the specific inconsistencies are still subject for debate, he found some interesting implementation issues while conducting his research.

Implementation mistakes

Guido Vranken was able to uncover several “little” issues in BLST using differential fuzzing. See examples of those below:

He topped this off with discovery of a moderate vulnerability affecting the BLST’s blst_fp_eucl_inverse function.

IRTF draft implementation violations

A third category of bug was related to IRTF draft implementation violations. The first one affected the Prysm client.

In order to describe this we need first to provide a bit of background. The BLS signatures IRTF draft includes 3 schemes:

  1. Basic scheme
  2. Message augmentation
  3. Proof of possession

The Prysm client doesn’t make any distinction between the 3 in its API, which is unique among implementations (e.g. py_ecc). One peculiarity about the basic scheme is quoting verbatim: ‘This function first ensures that all messages are distinct’ . This was not ensured in the AggregateVerify function. Prysm fixed this discrepancy by deprecating the usage of AggregateVerify (which is not used anywhere in the beacon chain specification).

A second issue impacted py_ecc. In this case, the serialization process described in the ZCash BLS12-381 specification that stores integers are always within the range of [0, p - 1]. The py_ecc implementation did this check for the G2 group of BLS12-381 only for the real part but did not perform the modulus operation for the imaginary part. The issue was fixed with the following pull request: Insufficient Validation on decompress_G2 Deserialization in py_ecc.

Wrapping up

Today, we took a look at the BLS related reports we have received as part of our bug bounty program, but this is definitely not the end of the story for security work or for adventures related to BLS.

We strongly encourage you to help ensure the consensus-layer continues to grow safer over time. With that, we look forward hearing from you and encourage you to DIG! If you think you’ve found a security vulnerability or any bug related to the beacon chain or related clients, submit a bug report! ??



[ad_2]

Tags: BlogEthereumFoundationSecured
Share76Tweet47

Related Posts

Finalized no. 25 | Ethereum Foundation Blog

tl;dr Rayonism☀️, hacking the Merge together This week, protolambda and others released plans for Rayonism, an ambitious month-long hack...

EF-Supported Teams: Research & Development Update

Friends, The year ahead will be filled with upgrades and big ideas from across the Ethereum ecosystem. Since our...

Grantee Roundup: April 2021 | Ethereum Foundation Blog

It’s always fun to hear about new grants as they’re awarded, but what happens after the announcement? In this...

Announcing the EF Fellowship Program, Cohort #2

Things are looking up for Ethereum. Now that The Merge is complete, a huge weight (measured in tonnes of...

Announcing Supporters & Impact Booths

This year’s Devcon is special in many ways. We’ve used the last three years to create a whole new...

Load More
  • Trending
  • Comments
  • Latest

Trendsy Token Is Taking Over

Introducing A0K1VERSE- The New Metaverse From Steve Aoki –

The Sandbox Secures Strategic Partnership with Warner Music Group

Optimized Ethereum Mining Settings for Nvidia RTX 3060 Ti, RTX 3070, RTX 3080 and RTX 3090 GPUs

BTC To See Correction Below $10K, Predicts Founder Of Midas

Buy Stuff with Bitcoin | Which Online Stores Accept CryptoCurrency?

Bitcoin bulls ‘hold back’ as BTC’s monthly futures expiry approaches

Made in Umbria: IBM Food Trust helps certify food authenticity

BTC To See Correction Below $10K, Predicts Founder Of Midas

Can XRP Continue To Outperform Bitcoin?

Ethereum Price Remains Vulnerable, Will ETH Fall Back To $1K?

Stablecoin Could be Russia’s Preferred Medium of Exchange for Foreign Trade: Chainalysis

  • Coin Tracker
  • Bitcoin
  • Ethereum
  • Blockchain
  • NFT Trends
  • Fashion Trends
  • VR & Metaverse

© 2021 Crypto Litter - The #1 Source for Crypto Shit

No Result
View All Result
  • Coin Tracker
  • Bitcoin
  • Ethereum
  • Blockchain
  • NFT Trends
  • Fashion Trends
  • VR & Metaverse

© 2021 Crypto Litter - The #1 Source for Crypto Shit

  • RelevantRelevant(REL)$0.780.38%
  • Heart NumberHeart Number(HTN)$0.000553-30.47%
  • TadpoleTadpole(TAD)$7.32-1.74%
  • SEENSEEN(SEEN)$2.05-2.27%
  • EvedoEvedo(EVED)$0.082301-0.80%
  • MarginswapMarginswap(MFI)$0.184214-2.17%
  • SakeTokenSakeToken(SAKE)$0.0127135.28%
  • WTF TokenWTF Token(WTF)$0.0113500.17%
  • BNSD FinanceBNSD Finance(BNSD)$0.005461-5.83%
  • RobotinaRobotina(ROX)$0.00266138.50%