ERC725: self-sovereign identity standard for ETH released

Ethereum developer Fabian Vogelsteller creates Ethereum Request for Comment 725 (ERC725) on GitHub
12 October 2017   2527

Ethereum developer Fabian Vogelsteller created Ethereum Request for Comment 725 (ERC725) on GitHub. Despite the fact, that the project doesn’t even have an assigned Ethereum Improvement Proposal number, within 24 hours, the plan for a standardized identity system for humans and machines gained significant hype.

On GitHub, UX designer and fellow Ethereum Foundation member Alex Van de Sande called the ERC “very useful,” while suggesting some adjustments.

In an email to ethnews.com, Vogelsteller explaines, that “identity is certainly one of the most [important] missing pieces in the blockchain ecosystem". According to the creator, ERC725 solves quite a lot of problems. 

“This needs to be standardized so that other contracts can interact with real world identities, automatically check and verify them. It’s not mainly necessary for interfaces alone. Also, this contract represents ONE identity. The addition of claims needs to be standardized, so that other identities can issue claims about each other.
 

Fabian Vogelsteller
Ethereum Request for Comment 725 (ERC725) creator

As the man views it, crrently everybody collects all information about you separately to make sure they know who you are (e.g. banks, credit services, or any service which needs to have KYC). A standard will help insofar that everybody can auto check certain claims, and therefore don’t need to store actual details about you anymore, as they - as long as they trust the claim issuer – don’t need to have the actual information. The current over-collecting is because of lack of a better system.

On October 12th, Fabian Vogelsteller is to present ERC725 at the Ethereum London Meetup. What the future has in stock for it, remains to be seen, yet is is definitely worth monitoring.

Ethereum price chart on coinmarketcap.com
Ethereum price chart on coinmarketcap.com

Meanwhile, at the time of writing, Ethereum price is about $303.33, its market capitalization is $28,835,297,776.

Potentional Vulnerabilities Found in ETH 2.0

Least Authority have found potentional security issues in the network P2P interaction and block proposal system
26 March 2020   1018

Technology security firm Least Authority, at the request of the Ethereum Foundation, conducted an audit of the Ethereum 2.0 specifications and identified several potential vulnerabilities at once.

Least Authority said that developers need to solve problems with vulnerabilities in the network layer of peer-to-peer (P2P) interaction, as well as in the block proposal system. At the same time, the auditor noted that the specifications are "very well thought out and competent."

However, at the moment there is no large ecosystem based on PoS and using sharding in the world, so it is impossible to accurately assess the prospects for system stability.
Also, information security experts emphasized that the specifications did not pay enough attention to the description of the P2P network level and the system of records about Ethereum nodes. Vulnerability risks are also observed in the block proposal system and the messaging system between nodes.

Experts said that in the blockchains running on PoS, the choice of a new block is simple and no one can predict who will get the new block. In PoS systems, it is the block proposal system that decides whose block will fall into the blockchain, and this leads to the risk of data leakage. To solve the problem, auditors suggested using the mechanism of "Single Secret Leader Election" (SSLE).

As for the peer-to-peer exchange system, there is a danger of spam. There is no centralized node in the system that would evaluate the actions of other nodes, so a “malicious" node can spam the entire network with various messages without any special punishment. The solution to this problem may be to use special protocols for exchanging messages between nodes.