BTC PULSE
  • News
    • Altcoins
    • Blockchain
    • Bitcoin
    • Ethereum
    • NFT
    • Regulation
    • WEB 3.0
  • Price Prediction
  • Learn
  • Events
  • Advertise
No Result
View All Result
Play Now
  • News
    • Altcoins
    • Blockchain
    • Bitcoin
    • Ethereum
    • NFT
    • Regulation
    • WEB 3.0
  • Price Prediction
  • Learn
  • Events
  • Advertise
No Result
View All Result
BTC PULSE
No Result
View All Result
Play Now
Home Blockchain

This Decryption Error was an Existential Threat for the Secret Network

by Chiwuike Owunwa
Nov 30, 2022 - 12:00 am
in Blockchain
This Decryption Error was an Existential Threat for the Secret Network

On the 29th of November 2022, the Secret Network announced on Twitter, that they have successfully resolved a major vulnerability that was discovered by white hat hackers.

NOTICE: Secret Network has successfully resolved a reported network vulnerability by whitehat researchers. No user funds were ever at risk – including now – and no action is required from anyone 👍

Please read our full disclosure on the Secret Blog: https://t.co/HeCqQVshuy

— 𝕊ecret Network 🤫⚡️ (@SecretNetwork) November 29, 2022

 

Andrew Miller and his team evaluated the Secret Network to check for vulnerabilities and Aepic leaks. In the end, they were able to access the master decryption key utilized by the whole Network. This points to an SGX failure on the Network.

Due to the long update timelines and the difficulty of manually updating the project’s platform, projects like the Secret Network had to choose between security and usability. This is a difficult trade-off to make especially for a web3 blockchain project that is all about privacy and security.

The Secret Network allows users to customize their privacy settings. Allowing them to determine what they would share to whom and how. This allows users and developers to protect themselves from potential scams and hacks.

It keeps the details of the smart contracts encrypted from even the nodes in the Network hiding all the input, state, and output data. This allows users to spend, save, and trade with absolute control over their data. The aim is to properly balance transparency and privacy, in a way that would allow the crypto industry to gain widespread adoption.

The technical aspect of the Secret operation is thus. First, Secret stores a private key within the Network validator’s enclave. This key has two components, the public component that users utilize to encrypt their messages and send them across the Network. And the private component within the enclave that It uses to decrypt the messages, then updates the content and posts’ the encrypted data on the chain.

Since the Network runs on encrypting smart contract data, the ability to access its master decryption key gives that person access to deanonymize every single transaction conducted on this Secret Network chain, from its inception till now. And it would be impossible for the Network to prevent this.

The team, utilizing a xApic vulnerability, was able to set up a Pulsar-2 test transaction decrypter, which they used to obtain the master decryption keys of both the mainnet and testnet.

With such findings, they then collaborated with the Secret Network and were able to build and deploy preventive measures for future eventualities.

Yet it is unknown if such an attack has been attempted in the past and been successful. It’s also unknown if any active nodes at the time had successfully defended against such an attack, but users are advised to evaluate their exposure level from past activities.

Tags: Security
Chiwuike Owunwa

Chiwuike Owunwa

Chiwuike is a frontend programmer and writer with 3 years experience in the Web3. He's meticulous researcher, enthusiastic about Blockchain and the future of crypto, DeFi, and the Metaverse.

Related Posts

Graph depicting the decrease in crypto ownership and increase in portfolio values in Canada, 2023.

Crypto Ownership Declines in Canada Amidst Rising Portfolio Values in 2023

November 30, 2023

Canadian crypto ownership dips in 2023, yet the average portfolio value surges, reflecting a complex landscape of digital...

Illustration of Poloniex's plan to resume services with TRX withdrawals, following a significant cybersecurity breach.

Poloniex Announces Phased Resumption of Services After $100M Hack

November 29, 2023

Poloniex to restart withdrawals with TRX from November 30, post $100M hack, aiming to rebuild trust with phased...

Senator Elizabeth Warren at a congressional hearing discussing the need for stricter regulations to protect seniors from cryptocurrency scams.

Aerodrome and Velodrome DeFi Platforms Targeted in Front-End Cyberattacks

November 29, 2023

Front-end cyberattacks on DeFi platforms Aerodrome and Velodrome result in estimated $40,000 loss, as users are urged to...

Graphic representation of the connections and illicit activities unraveled in ZachXBT’s latest revelation about scammer Yahya.

KyberSwap Hacker Proposes Negotiation Treaty Amidst Rising Hostilities

November 29, 2023

KyberSwap hacker plans to propose a fund return treaty on Nov. 30, warning that continued hostilities could delay...

Press Releases

David Ferrucci next to the Elemental Cognition brand emblem.

BM Watson’s Lead Developer Secures $60M for New AI Venture, Elemental Cognition

August 18, 2023

David Ferrucci, has raised a remarkable $60M for his AI startup. The company brings forward two pioneering chatbot solutions designed...

pulse5

Amsterdam Gets with the Dutch Blockchain Days the Biggest Event of the Benelux in the Field of Blockchain, Crypto Currencies, NFTs and Other Web3 Developments

May 8, 2023

Discover the future of blockchain, crypto, NFTs, and Web3 at Dutch Blockchain Days, the largest event in Benelux.

pulse4

Korea Blockchain Week 2023 Set to Push the Boundaries after Record-Breaking 2022 Event

May 8, 2023

Korea Blockchain Week 2023 returns after a highly successful 2022 event, featuring leading experts and the latest trends in blockchain...

pulse3

Istanbul Will Be Hosting Eurasia’s Largest Blockchain Event Once again on May 8–11, 2023

May 8, 2023

Join Eurasia's largest blockchain event, the Blockchain Economy Istanbul Summit, May 8-11, 2023, and discover the future of financial technology.

View All
BTC-Pulse LogoTransparent

© 2023 BTC-PULSE. Disclaimer: The content is for informational purposes only, you should not construe any such information or other material as legal, tax, investment, financial, or other advice.

News

  • Altcoins
  • Bitcoin
  • Ethereum
  • NFT
  • Regulation
  • WEB 3.0

Info

  • Learn
  • Price Prediction
  • Events
  • Press Releases
  • Sitemap

Company

  • About Us
  • Terms of Service
  • Privacy Policy
  • Contact Us
  • Advertise

©2023 BTC-PULSE – All right Reserved.

No Result
View All Result
  • News
    • Altcoins
    • Blockchain
    • Bitcoin
    • Ethereum
    • NFT
    • Regulation
    • WEB 3.0
  • Price Prediction
  • Learn
  • Events
  • Advertise