2024-2-8 16:0:0 Author: research.nccgroup.com(查看原文) 阅读量:16 收藏
In November 2023, Aleo engaged NCC Group’s Cryptography Services team to perform a review of the consensus mechanism implemented by snarkOS: “a decentralized operating system for zero-knowledge applications [that] forms the backbone of Aleo network, which verifies transactions and stores the encrypted state applications in a publicly verifiable manner.” The consensus mechanism is based on a partially synchronous version of the Bullshark Byzantine Fault Tolerance (BFT) protocol, which uses a directed acyclic graph (DAG) to order updates. The review was performed remotely by four consultants over a total of 25 person-days of effort. A retest was performed in January 2024.
This review complements NCC Group’s prior public report reviewing Aleo’s snarkVM.
Here are some related articles you may find interesting
Analyzing AI Application Threat Models
Abstract The following analysis explores the paradigm and security implications of machine learning integration into application architectures, with emphasis on Large Language Models (LLMs). Machine learning models occupy the positions of assets, controls, and threat actors within the threat model of these platforms, and this paper aims to analyze new…
Ivanti Zero Day – Threat Actors observed leveraging CVE-2021-42278 and CVE-2021-42287 for quick privilege escalation to Domain Admin
Authors: David Brown and Mungomba Mulenga TL;dr NCC Group has observed what we believe to be the attempted exploitation of CVE-2021-42278 and CVE-2021-42287 as a means of privilege escalation, following the successful compromise of an Ivanti Secure Connect VPN using the following zero-day vulnerabilities reported by Volexity1 on 10/01/2024: By…
Memory Scanning for the Masses
Author: Axel Boesenach and Erik Schamper In this blog post we will go into a user-friendly memory scanning Python library that was created out of the necessity of having more control during memory scanning. We will give an overview of how this library works, share the thought process and the…
View articles by category
如有侵权请联系:admin#unsafe.sh