Shopify to Test New Blockchain Plugin

Plugin will allow manufacturers to generate non-replaceable tokens tied to their goods therefore giving customers ability check authenticity
23 January 2020   535

The Shopify e-commerce platform, together with San Francisco-based startup Real Items Foundation, is beta testing a new plugin on the VeChain blockchain and the TAM cloud application to authenticate tokenized goods.

According to the developers, this plugin will allow manufacturers to generate non-replaceable tokens (NFTs) tied to their physical goods. This means that customers who purchase NFT-affiliated products can verify their authenticity by scanning a QR code.

Founder of Real Items Foundation David Menard said that to date Shopify plugin is being tested by several companies producing clothes, decorative cosmetics and skin care products. Menard added that the launch of the plugin is scheduled for the first quarter of this year.

The Real Items Foundation management believes that such a solution on the blockchain will protect customers from buying fake products, because thanks to the new plugin, people can verify their authenticity without downloading additional applications. In addition, consumers can use WeChat to scan items to make sure they are original.

Using the VeChain open blockchain, Real Items Foundation can track the supply chain of goods, and buyers can see detailed information about their origin.

At the same time, Menard noted that the Real Items Foundation does not have a utility token associated with the platform, but the startup uses the VeChain multilateral payment protocol for operational interaction with users and companies.

Potentional Vulnerabilities Found in ETH 2.0

Least Authority have found potentional security issues in the network P2P interaction and block proposal system
26 March 2020   206

Technology security firm Least Authority, at the request of the Ethereum Foundation, conducted an audit of the Ethereum 2.0 specifications and identified several potential vulnerabilities at once.

Least Authority said that developers need to solve problems with vulnerabilities in the network layer of peer-to-peer (P2P) interaction, as well as in the block proposal system. At the same time, the auditor noted that the specifications are "very well thought out and competent."

However, at the moment there is no large ecosystem based on PoS and using sharding in the world, so it is impossible to accurately assess the prospects for system stability.
Also, information security experts emphasized that the specifications did not pay enough attention to the description of the P2P network level and the system of records about Ethereum nodes. Vulnerability risks are also observed in the block proposal system and the messaging system between nodes.

Experts said that in the blockchains running on PoS, the choice of a new block is simple and no one can predict who will get the new block. In PoS systems, it is the block proposal system that decides whose block will fall into the blockchain, and this leads to the risk of data leakage. To solve the problem, auditors suggested using the mechanism of "Single Secret Leader Election" (SSLE).

As for the peer-to-peer exchange system, there is a danger of spam. There is no centralized node in the system that would evaluate the actions of other nodes, so a “malicious" node can spam the entire network with various messages without any special punishment. The solution to this problem may be to use special protocols for exchanging messages between nodes.