cryptodailytrading.com

How to Prevent Attackers From Hacking Blockchain Nodes: Professor of Cryptography Opinion

  • Cyril Gilson
    🤷 Opinions

    “It looks like no one really tackles this problem right now- but they should”


How to Prevent Attackers From Hacking Blockchain Nodes: Professor of Cryptography Opinion
You may also like:

Sebastian Gajek is Professor of Cryptography and Information Security and founder of Weeve, a startup in the Berlin ecosystem that brings IoT and Blockchain together. We talk with Mr. Gajek about cybersecurity and vulnerabilities in crypto industry and community.

Cyril Gilson: What can be done to prevent from happening someone hacking nodes in Blockchain, the problem similar to what happened with EOS?

Sebastian Gajek: The recent attack against EOS is about using vulnerabilities in their software that allows to hack the nodes. The consequence was that the attackers could extract secret key material and this allows them to fully control the nodes. It is the worst thing that can happen to any consensus protocol.


👉MUST READ EOS Mainnet May Fire Away Within Hours
EOS Mainnet May Fire Away Within Hours

We have developed a very special operation system called the WeeveOS. It is an open-source project available on our GitHub. The operating system leverages cutting-edge security and privacy technologies. So, for example, we use a technique in order to isolate the secret keys from the rest of the operating system. This means in the case of EOS if WeeveOS operating system had been in place when the attacker compromised the nodes, they had got control over the nodes but were unable to extract the secret keys.  

This way you have more security and more trust in the network. We are going to release our operating system officially at Ethereum Dev Conference. A pre-release of the WeeveOS is already available through our GitHub.

We believe a lot of Blockchain technologies like EOS, like Ethereum, like HyperLedger really need to secure the nodes. It looks like no one really tackles this problem right now. This is bad because consensus protocols only work when one can trust the nodes. But for this you really need some super strong security technologies, otherwise, you will not get the trust by the quorum.

👉MUST READ What Drives EOS Price Up and Will it Hit $37 by End of 2018?
What Drives EOS Price Up and Will it Hit $37 by End of 2018?

Other vulnerabilities

CG: What other vulnerabilities do you see lately?

Sebastian Gajek: It’s like the general problem with cybercrimes: nodes are just some kind of programs, programs are written by humans and humans make mistakes. It’s natural right? Otherwise, humans would be machines.

Making mistakes is part of our genes. It looks that programming, for example, smart contracts, is like a new art.

People are now trying to understand what it really takes in order to program a proper smart contract. This is one main source where I see a lot of attacks and where devs really have to do better due diligence, take more care and verify whether the smart contract makes sense.

For example, ICOs might have fragile smart contract tokens and could be subject to those attacks.

👉MUST READ CryptoKitties Co-Founder Benny Giang: Spend a Week Understanding Why Crypto Matters to You
CryptoKitties Co-Founder Benny Giang: Spend a Week Understanding Why Crypto Matters to You

False smart contracts

CG: Could you give some examples of this?

Sebastian Gajek: The number one running example is the DAO. That was the greatest example, showcasing what happens if you design the smart contract in a false way. The result was clear, a lot of coins have been shifted differently than expected.

This is a canonical example showcasing you have to put a lot of care in designing smart contracts, and the same holds now for designing the programs that implement nodes. The attack I described against EOS is based on a similar problem. One where developers develop just design some kind of code and have not been careful enough.

👉MUST READ Federico Pistono: Bitcoin’s Power Structure is Very Robust, Altcoins Are Test Bed
 Federico Pistono: Bitcoin’s Power Structure is Very Robust, Altcoins Are Test Bed

CG: Is there a way for individual investors in crypto to find out how secure is the system? Some indicators?

The point is the whole Blockchain technology is still  young in comparison to other IT industries. I see now first consulting companies building up exactly a kind of business to figure out whether a smart contract is vulnerable. Similar services have to be applied, for example in order to verify whether the nodes are also free from vulnerabilities.

Again this is ongoing work because people first of all have to learn how to properly program and then other people will build up services on top of that in order to verify whether the programming was correct.

Blockchain will change the Internet. It’s just a matter of time until these consulting companies will figure out there’s a huge cake, so they will hire specialists that do have the right skills, in order to give you a better understanding of what’s good or bad.

👉MUST READ Time up for Indian Cryptocurrency Exchanges?
Time up for Indian Cryptocurrency Exchanges?

CG: Before deciding whether to take part of ICOs or not, investors check the team, go over some lists, but I don’t think security is even in the top three points to check. What shall they do?

Sebastian Gajek: You are totally right, if I were an investor, I would really go through the points you mentioned, but I would also look who designed the contract. Because in the end, it’s all about reputation.

You really need to choose a smart contract design team that has a lot of credibility. That was one of the reasons why we have chosen to work together with ConsenSys because they have the leading experts in Ethereum development.

👉MUST READ Fitness Monetized: Past ICO Review
Fitness Monetized: Past ICO Review

Cover image via u.today
Only the most important posts per day. Infographics, analytics, reviews & summaries. Follow us on Facebook!
👓 Recommended articles

Binance Coin Price Surge Indicates Huge Support for Binance Chain Mainnet — Is This the Future?


Binance Coin Price Surge Indicates Huge Support for Binance Chain Mainnet — Is This the Future?
You may also like:

On a day where the markets are predominantly in the red, but only slightly, it is interesting to note that Binance Coin is surging. The exchange token is up fiver percent, but it is totally understandable as to why there is so much positivity around the company.

The biggests news, which comes off the back of its decentralized platform, Binance DEX, is that the Binance Chain mainnet has been launched and that they will be executing their Mainnet Swap on April 23rd.


This means that Binance Coin will be shifting away from Ethereum, leaving questions open as to what this means for Ethereum, which has been under the pump to stay relevant in today’s crypto and blockchain space. This move will result in a migration of $3 billion worth of BNB being moved away from the Ethereum blockchain and onto the new Binance chain.

A positive investment

All the good news emanating out of Binance has not only helped the coin to climb in price when the rest of the market settles down – it is helping it head towards a new all time high. Binance, like many altcoins, reached its ATH in January of 2018 in that parabolic stage.

Binance Coin hit $24 back then, and now, it is at $21 and rising with the thoughts being that when the mainnet move takes place, there could well be an even bigger surge. It is also interesting to note that just a few months ago, at the end of last year, it hit lows of $4.50.

Competing with Ethereum?

The mainnet move is obviously good news for Binance, as the markets are suggesting, but is it equally bad news for Ethereum, which was the holder of $3 billion thanks to the exchange. Many people have speculated that this new blockchain platform will pose competition to Ethereum, but ultimately it will help diversify Binance Coin’s use cases while also increasing its utility.

So perhaps rather than being a direct competition to ETH, it is only going to strengthen Binance Coin and in doing so perhaps spell out the future of cryptocurrencies as there is good reason to believe that this token, with its added utility and use cases, will be a viable token for the world going forward.

Cover image via 123rf.com
Only the most important posts per day. Infographics, analytics, reviews & summaries. Join our Telegram channel!
👓 Recommended articles