The highly anticipated Ethereum 2.0 upgrade has successfully passed an audit of its framework and codebase. However, while the review generally approved the design, some potential attack vectors remain.

The auditor—security consultant Least Authority—praised ETH 2.0 for its "well thought out" specifications, placing a particular emphasis on its comprehensive security designs.

Craig Wright speaking at Coingeek 2020. Image: Decrypt.

Craig Wright swears his lawyer is real

Self-professed Bitcoin inventor Craig Wright has filed an official objection to a US Magistrates Order on Discovery that dismisses his attorney privilege. Wright’s challenge, issued on Monday, is the latest development in Kleiman vs. Wright, a long running court action against the Australian computer scientist who has long claimed to be mysterious Bitcoin inventor, Satoshi Nakamoto. Craig Wright strolls across the stage at Coingeek 2020. Image: Shutterstock. The lawsuit against Wright was first...

NewsBusiness
2 min read
Adriana Hamacher

ETH 2.0 will be among the first Proof-of-Stake (PoS) networks to employ sharding—a partitioning technique devised to spread the load on the Ethereum blockchain. As such, while ETH 2.0 may have passed the initial acid test, the lack of a comparable sharding system proved to be a challenge for Least Authority’s audit.

"Since no other large-scale implementations of a PoS system currently exist in production, auditing the Ethereum 2.0 Specifications presented our team with certain challenges and made this review particularly interesting," reads the report.

Inherent attack vectors

While the review was optimistic in the main, the auditor did highlight some attack vectors arising from vulnerabilities in the block proposer mechanism, and the peer-to-peer networking layer.

However, the report caveats that review was based on a specification rather than a coded implementation—implying that the aforementioned attack vectors were theoretical rather than particular to ETH 2.0.

Nevertheless, Ethereum developers working alongside Least Authority conceded the need for further review.

ETH 2.0 will have a staggered 6-phase launch. After a few false starts, phase 0 is tentatively set for launch in July—giving devs a few months to iron out any remaining snags.

Daily Debrief Newsletter

Start every day with the top news stories right now, plus original features, a podcast, videos and more.