Corda starts to work with Amazon Web Services

R3 Consortium went to the Amazon Web Services (AWS) marketplace with DLT solution
05 December 2017   1558

Corda distributed ledger (DLT) platform of the R3 consortium has launched with the Amazon Web Services (AWS) marketplace. AWS users can develop and deploy own finance and commerce applications or use "CorDapps" from R3. On the marketplace Corda has become one of the first DLT solutions.

Corda is a leading DLT platform for businesses and this announcement marks a significant milestone for enterprise-grade blockchain technology. Corda’s strength comes from its vibrant ecosystem of interoperable applications, and extending the pool of potential developers to the vast network of Amazon Web Services users will spark further innovation amongst businesses building innovative DLT apps for finance and commerce.

 

David E. Rutter

CEO of R3

The R3 consortium now consist over 100 banks, regulators and technology firms. Corda removes costly friction in business transactions by enabling institutions to transact directly using smart contracts and has high privacy and security. It can be built on by third party providers which can operate and earn revenue from DLT applications and using the platform’s code and protocols.

Also earlier R3 developed Corda’s version 2.0 of Corda which adds functional to the stable core application programming interface (API) achieved in version 1.0.

Potentional Vulnerabilities Found in ETH 2.0

Least Authority have found potentional security issues in the network P2P interaction and block proposal system
26 March 2020   903

Technology security firm Least Authority, at the request of the Ethereum Foundation, conducted an audit of the Ethereum 2.0 specifications and identified several potential vulnerabilities at once.

Least Authority said that developers need to solve problems with vulnerabilities in the network layer of peer-to-peer (P2P) interaction, as well as in the block proposal system. At the same time, the auditor noted that the specifications are "very well thought out and competent."

However, at the moment there is no large ecosystem based on PoS and using sharding in the world, so it is impossible to accurately assess the prospects for system stability.
Also, information security experts emphasized that the specifications did not pay enough attention to the description of the P2P network level and the system of records about Ethereum nodes. Vulnerability risks are also observed in the block proposal system and the messaging system between nodes.

Experts said that in the blockchains running on PoS, the choice of a new block is simple and no one can predict who will get the new block. In PoS systems, it is the block proposal system that decides whose block will fall into the blockchain, and this leads to the risk of data leakage. To solve the problem, auditors suggested using the mechanism of "Single Secret Leader Election" (SSLE).

As for the peer-to-peer exchange system, there is a danger of spam. There is no centralized node in the system that would evaluate the actions of other nodes, so a “malicious" node can spam the entire network with various messages without any special punishment. The solution to this problem may be to use special protocols for exchanging messages between nodes.