Parity's vulnerability can lead to Ethereum hardfork

Another "issue" of popular Ethereum wallet can lead to unplanned hardfork
08 November 2017   3248

On Monday, November 6, a new critical vulnerability was discovered in the Parity Ethereum wallet, as a result of which users' funds on multi-signature wallet were frozen. To solve the problem, new Ethereum's hardfork can be implemented. This is reported by the CoinDesk.

Scope of the problem

As it became known, a critical vulnerability was discovered in the version of the smart contract that is responsible for the user wallets with the multi-signature created after July 20. It is assumed that one of the developers "accidentally" gave the smart contract to self-destruct, thereby freezing $ 154 million in ETH-equivalent.

The researchers managed to obtain exact figures during the analysis of problematic smart contracts. At the moment, frozen funds are three times higher than the amount stolen as a result of The DAO hack.

Nevertheless, the developers of Ethereum hastened to state that the problem is not directly related to the network, but only codes of smart contracts written on top of the blockchain.

Smart contracts Ethereum can not be changed after they are activated; the same is true for the bugs contained in these contracts.

Although some industry representatives said that the practice of writing the right smart contracts is only being worked out, other members of the cryptocoins community attacked Parity Technologies with accusations and funny pictures.

Reaction

Vulcanize developer Rick Dudley is sure that the developers responsible for the security sphere should be punished.

Hope Liu, CEO Eximchain already questioned the following updates from Parity Technologies, as the new vulnerability arose only a few months after the previous one. In the same company, they claim that smart contracts were audited before the official release, and accuse social media of speculation.

Ciaian Murray also believes that users can sue developers of smart contracts in connection with the loss of funds, thereby creating a legal precedent.

Charlie Lee, creator of Litecoin spoke his word too.

The founder of Ethereum Vitalik Buterin said that he "deliberately" refrains from any comments, but expressed support to all developers of contracts for electronic purses and their auditors.

How to solve this "issue"?

However, the representative of the security department of the Ethereum Foundation, Martin Holst Schwende, stated that it is impossible to recreate the code of the destroyed smart contract without carrying out the network's hardfork. In his opinion, any decision to defuse users' funds without exception requires a hardfork.

Service Localethereum conducted a Twitter-survey about the advisability of hardfork to rescue frozen in multi-signature wallets. 59% of respondents were against such an outcome.

Despite the general pessimistic attitude, some developers hope that the "white hackers" will find a way to unblock funds without activating hardfork.

It also worth noting that it is not the first "issue" of Parity wallet. In July, hackers were able to stole $30M from Parity

Buterin to Propose Way to Speed Up ETH 2.0 Migration

Vitalik Buterin,creator of Ethereum, believes the eth1 system can exist as a zero shard in eth2 
25 December 2019   257

Ethereum founder Vitalik Buterin proposed a solution that allows you to quickly get rid of the Proof-of-Work (PoW) algorithm chain and move everything in Ethereum 2.0 to Proof-of-Stake (PoS).

According to him, the eth1 system can exist as a zero shard in eth2.

Validators who choose to participate in eth1 will be able to register as friendly. They are expected to support the full eth1 node in addition to the eth2 node.

A full eth1 node will load all blocks of the zero shard and maintain the updated state of the old circuit.

Buterin believes that his proposal does not make any changes to the planned procedure for the transition from eth1 to eth2. Only software for stateless clients and witness size changes in the eth1 protocol are required.