gtag('config', 'G-0PFHD683JR');
Bitcoin

Discover a serious mistake in the distinguished symbol system in Solana

the Solana Recently revealed a decisive security vulnerability in the privacy -focused symbol system, a defect that could have devastating consequences for the ecosystem. The case, specified in Zk Elgamal Proof The program, exclusively anxious Confidential transfers From symbolic symbols 22 and did not affect SPL standard symbols Not the main logic of Distinguished Code -2022 program.

Calipation of error on Solana: Zero Evidence (ZKP)

The weakness was linked to implementation ZKP (Evidence of zero knowledge)A sophisticated encryption method that allows the proof of the treatment of treatment without detecting sensitive data such as quantities or addresses. This system is necessary to ensure privacy in Blockchain transactions, but it was specifically here that the error was overlapping.

According to the institution, the problem arose due to the lack of some Forced ingredients In the retail process during Fiat Shamir The transformation, a major step to make the proofs not interactive. In practice, this defect allowed the skilled striker Create false evidence This will remain acceptable by the series auditor.

Possible consequences: distinctive endless symbols and illegal clouds

If exploited, this defect allowed the malicious actors Establishing an unlimited number of symbols or Withdrawal of money from other accounts Without permission. Possible catastrophic risks for the safety of the network and the user’s confidence.

However, it is important to emphasize that the weakness was Discover in time There is no evidence that it was exploited. All money, according to the Solana Foundation, It remains safe.

The first warning sign came April 16when Enlarged The security team published a notice of GitHub, accompanied by Proof of work. The alert immediately mobilized engineers from Solana, Anza, Fredancer and Jito Development teams, which verify the error and immediately began mitigations.

the next day , April 17Primary Patch It was distributed to the auditors, followed by another correction issued in the same evening to solve a relevant problem in another part of the code. Both reforms were reviewed by three independent security companies: Unlike search, neodyme, and ottersec.

Rapid adoption and no effect on users

Thanks to the timely cooperation between the various teams and transparency in managing the accident, by April 18 The majority of auditors have already implemented the spots, which greatly reduces the risk of exploitation.

Solana Foundation, in a/An/ After the death, it was later publishedHe confirmed that there were no attacks or money loss. However, the incident highlighted the importance of continuous monitoring and infrastructure of solid security, especially for advanced features such as secret transfers.

Distinguished symbol 22: innovation under examination

The distinctive symbol is 22, one of the most ambitious innovations of the Solana ecosystem, which serves Advanced privacy features By encrypting quantities and using ZKP. However, this complexity is very complicated it is possible to make such an advanced weakness.

The defect did not affect the standard symbols, which remain the most used coordination on the Solana network, and did not harm the main logic of the distinctive code -2022. This indicates that the problem was confined to a specific extension of the system, which reduces the potential effect.

A lesson for the entire Blockchain sector

The episode represents an invitation to wake up to the entire cryptocurrency sectorAs the adoption of advanced technologies increases is also a relatively relatively level of safety. ZKPS, with great privacy advantages, provides new technical challenges that must be treated very carefully.

The rapid and coordinated response of the Solana Foundation and its partners shows the effectiveness of managing security gaps that can prevent great damage and enhance confidence in the network.

Conclusion: Enhancing security and maintaining confidence for the Solana ecosystem

Despite the severity of the discovered defect, the Solana Foundation showed a high ability to interact and transparently, and the basic elements to preserve the confidence of society.

Thanks to cooperation between development teams and external security companies, it was weak It was neutralized before exploitationAnd the safety of the network remained intact.

This episode sheds light on the importance of the proactive approach to safety, especially in a constantly advanced context such as the context of Blockchain. Technology progresses, but also threats: only those who can face them with willingness and efficiency will be able to ensure a strong and safe future for the entire ecosystem.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button