Corda Enterprise Released

Main feature of the platform is "the first firewall for blockchain applications" 
11 July 2018   991

The blockchain consortium R3 announced the launch of the Corda Enterprise platform targeted at institutional clients. One of the main features of the release of Corda Enterprise is "the first firewall for blockchain applications."

It is reported that the new function is able to restrict communication between nodes with different information needs, working in different environments.

Traditional permissionless blockchain platforms, in which all data is shared with all parties, have issues around privacy, scalability and interoperability that render them largely unsuited for global business. This is the problem Corda was designed to solve and it is gaining adoption at a rapid pace across a range of industries. However many enterprises – especially larger ones – face unique technical constraints. Corda Enterprise fine tunes Corda for these firms so that they can adopt blockchain technology in a way that is straightforward and natural. The launch of the platform is a watershed moment for business blockchain technology.
 

Richard Gendal Brown

CTO, R3

Brown believes that thanks to the use of the blockchhain firewall, the Corda Enterprise platform will be more attractive to corporate customers than traditional open source platforms.

The technical director of R3 predicts that the market of blockchain platforms for business will soon be consolidated, and only a few players will remain.

Potentional Vulnerabilities Found in ETH 2.0

Least Authority have found potentional security issues in the network P2P interaction and block proposal system
26 March 2020   1026

Technology security firm Least Authority, at the request of the Ethereum Foundation, conducted an audit of the Ethereum 2.0 specifications and identified several potential vulnerabilities at once.

Least Authority said that developers need to solve problems with vulnerabilities in the network layer of peer-to-peer (P2P) interaction, as well as in the block proposal system. At the same time, the auditor noted that the specifications are "very well thought out and competent."

However, at the moment there is no large ecosystem based on PoS and using sharding in the world, so it is impossible to accurately assess the prospects for system stability.
Also, information security experts emphasized that the specifications did not pay enough attention to the description of the P2P network level and the system of records about Ethereum nodes. Vulnerability risks are also observed in the block proposal system and the messaging system between nodes.

Experts said that in the blockchains running on PoS, the choice of a new block is simple and no one can predict who will get the new block. In PoS systems, it is the block proposal system that decides whose block will fall into the blockchain, and this leads to the risk of data leakage. To solve the problem, auditors suggested using the mechanism of "Single Secret Leader Election" (SSLE).

As for the peer-to-peer exchange system, there is a danger of spam. There is no centralized node in the system that would evaluate the actions of other nodes, so a “malicious" node can spam the entire network with various messages without any special punishment. The solution to this problem may be to use special protocols for exchanging messages between nodes.