ZCash Overwinter upgrade is released

First network upgrade should not be regarded as a fork
03 March 2018   1111

Yesterday, on March 2 developer team of ZCash announced the release of the network first upgrade - they called it ZCash Overwinter. Starting from version 1.1.0 of zcashd, it will feature the update with the version release expected April 2018. As for the upgraded the main chain, its launch is scheduled for a fixed date of June 25, 2018, according to the roadmap of the platform.

The update will introduce transaction expiry, version control, replay transaction protection for network upgrades and, in a broader scale - improvements on transaction transparency. As for the regular users of ZCash, all they need to do for the time being is to keep the client updated.

There is no need to do anything else besides keep your Zcash software up to date. This network update is not expected to result in a fork of the blockchain or the creation of a new currency.

 

Excerpt from the ZCash Overwinter blog post

The overall idea of the update is to be able to execute the first upgrade of the core protocol of ZCash - Sapling.

The purpose of Overwinter is to strengthen the protocol for future network upgrades, paving the way for the Zcash Sapling network upgrade later this year.

 

Excerpt from the ZCash Overwinter blog post

ZCash is significant for its bleeding-edge cryptographic algorithm zk-SNARKs, and according to CoinMarketCap the platform is 24th among the top 100 cryptocurrencies.

Zcash Team to Report on Crititcal Vulnerability Fix

Vulnerability was found back almost a year ago, it was kept in secret to minimize risks
06 February 2019   175

Zcash Company, behind the development of Zcash cryptocurrency, revealed the details of the vulnerability that allowed attackers to create an unlimited number of non-existent ZEC coins.

According to a company blog report, March 1, 2018, Zcash cryptographer Ariel Gabizon discovered a vulnerability in the zk-SNARKS protocol, which Zcash uses to hide balances and user data.

Cryptocurrency developers decided not to disclose the details of the problem by including a patch in the update of the Zcash Sapling protocol, which was activated in late October. And only now the project team has publicly disclosed the circumstances of the incident.

The vulnerability was specific to counterfeiting and did not affect user privacy in any way. Prior to its remediation, an attacker could have created fake Zcash without being detected. The counterfeiting vulnerability has been fully remediated in Zcash and no action is required by Zcash users.
 

Zcash Team

Also, developers note that the detection of vulnerability required an advanced level of technical and cryptographic knowledge that few possess.

After the discovery of the vulnerability, Zcash Company took "exceptional measures" to minimize the possibility of its operation, and also notified other cryptocurrency teams using the zk-SNARKS protocol, including Horizen and Komodo, about its existence.