Ethereum 2.0 Security Audit by Least Authority Reveals Two Major Shortcomings

    Before Making The Switch to Proof-of-Stake (PoS), The ETH Network Still Needs To Clarify the Block Proposer and P2P Messaging System

    • The upcoming Ethereum 2.0 Audit report was recently released by Least Authority who had been tasked with this function.
    • This firm looked into Ethereum’s 2.0 codebase and framework at the foundation’s request.
    • Results from the audit highlighted that despite a good design, Ethereum 2.0 has two major shortcomings stemming from its Block proposer and P2P messaging systems.

    The audit process began back in January and both entities have been working together to realize this review. According to the report by Least Authority, ETH 2.0 is infrastructure is comprehensive and well thought out. However, the firm could not be very conclusive given the limited applications of the Proof-of-Stake (PoS) consensus;

    “It is one of the first Proof of Stake (PoS)/sharded protocol projects planned for production,” the report further reads, “The long-term stability of PoS blockchains is an area of active research that will need to be monitored over time as they are used in production.”

    It is also noteworthy that the report found Ethereum’s P2P and ENR as underrepresented. This basically means that not enough documentation on these systems has been done as per phase 0 of Ethereum 2.0. The report goes on to suggest that the significance of these two functions makes it important to elaborate on them from the beginning.

    Block Proposer Information Leak Threat

    As mentioned earlier, this function poses a threat to ETH 2.0 prospective clients’ information. Ethereum’s transition from a Proof of Work (PoW) to Proof of Stake (PoS) network ultimately pushed the foundation to integrate a block proposer within its ecosystem. The main purpose of this feature is to pick the next block to go into the chain. This process, in turn, exposes the Ethereum network to possible information leaks.

    The report proposes a Single Secret Leader Election (SSLE) approach in order to hide the selection mechanism;

    “With the information leak patched, the block proposer remains as protected as it would be in PoW chains, but without the computational overhead,”

    Ethereum’s 2.0 team agreed with this shortcoming and the proposed solution. They particularly noted that the active research in SSLE is something Ethereum 2.0 Devs are looking at in preparation for better versions of the coming phases.

    Spam Messaging on Ethereum’s 2.0 P2P

    Another major shortcoming is a spam problem with the scheduled Ethereum upgrade’s P2P messaging system. The report by Least Authority mentioned that lack of a central authority to check on the nodes’ activity could expose the network to dishonest participants. This means that one can spam the network with old messages at the cost of the most recent ones; they can do so without the fear of being heavily penalized. In addition, ETH 2.0 nodes can easily cause traffic on the network by sending out unlimited messages for slashing.

    The security research team Least Authority recommended the integration of a BAR-resilient gossip protocol that can fully prevent malicious interactions with Ethereum 2.0. As it stands, this tech is being analyzed by Protocol Labs.

    Ethereum (ETH) Live Price

    1 ETH/USD =$129.7353 change ~ -2.38%

    Coin Market Cap

    $14.32 Billion

    24 Hour Volume

    $2.07 Billion

    24 Hour VWAP


    24 Hour Change


    Get Free Email Updates!

    *Action* Enter Best Email to Get Trending Crypto News & Bitcoin Market Updates

    I will never give away, trade or sell your email address. You can unsubscribe at any time.

    Edwin Munyui
    Edwin Munyui
    Edwin is a FinTech enthusiast with a particular interest in blockchain technology and cryptocurrencies. He has worked as an author in the blockchain space since 2017 and enjoys creating content that both crypto veterans and newbies can understand. His simple writing style and financial market knowledge have made him a reputable fundamental and technical analyst with the ability to handle any topic around blockchain and crypto over the years.

    [Alert] Use the author's self-conducted information at your own risk, do you own research, never invest more than you are willing to lose.

    [Disclosure] The published news and content on BitcoinExchangeGuide should never be used or taken as financial investment advice. Understand trading cryptocurrencies is a very high-risk activity which can result in significant losses. Editorial Policy \\ Investment Disclaimer


    Please enter your comment!
    Please enter your name here


    Live Bitcoin Price & Latest BTC Charts

    Today's Latest Crypto News

    Bitcoin, Ethereum, DogeCoin, Lightning Network's Code to be Buried Under Arctic Ice

    The Bitcoin codebase snapshot will be encoded onto film and afterwards be stored for 1,000 years under ice, in Svalbard, Norway. The move is included...

    Huobi Wallet to Integrate Crypto Lender Cred Allowing Users To Earn Interest

    The crypto exchange offering wallet services Huobi has closed a partnership with the decentralized crypto lending company Cred in order to offer user's interest...

    Dharma Crypto Bank to Build a Layer-2 Scaling Solution for Digital Asset Transfers

    Dharma, a crypto entity that operates as a bank for digital currencies, recently announced its scaling solution based on the Optimistic Roll up paradigm....

    Balancer Goes Live On Ethereum; Launching Token Exchange and Portfolio Manager DApps

    Balancer, a Decentralized Finance (DeFi) Application, is set to go live on Ethereum’s mainnet after launching out of their closed beta version on...

    Libra Challenger Celo Awards $700,000 In Development Grants to 13 Startups

    Celo Foundation has announced a list of recipients of its inaugural development grant. $700,000 in funding to 13 startups to help foster the...

    BitcoinExchangeGuide is a hyper-active daily crypto news portal with care in cultivating the cryptocurrency culture with community contributors who help rewrite the bold future of blockchain finance. Subscribe on Google News, see the mission, authors, editorial links policy, investment disclaimer, privacy policy. Got News? Contact us, we are human too. Note: nothing here is financial advice, do your own research thoroughly.