Many proponents of blockchain and crypto were hoping for 2019 to be the year for a “bug-less” cryptoverse. Unfortunately however, that isn’t turning out as everyone hoped it would, as only three months into 2019 and over 40 bugs have been detected in blockchain and crypto related platforms.
According to a report by the tech news outlet The Next Web (TNW), white hat hackers have managed to detect over 40 bugs in various blockchain and crypto platforms over the past 30 days.The report published on 14th March, revealed that according to an investigation carried out by TNW, as much as 13 blockchain, as well as crypto related companies were the target of 43 vulnerability reports between Feb. 13 and March 13.
In the blockchain sphere, Unikrn, which is an e-sports gambling platform, reportedly took the prize for the most vulnerability reports, amounting to a total of 12 bugs. OmiseGo developer followed in on a close second, having received only six bug reports, only half of Unikrn. In the third place, we have EOS with only five vulnerability reports.
Tendermint, the consensus algorithm and a peer-to-peer (P2P) networking protocol, received four bugs. Right behind Tendermint, is the decentralized prediction market protocol Augur, which received three bugs. Augur is joined by the smart contracts platform Tezos, which too received three bugs.
Even the anonymity driven cryptocurrency Monero couldn’t manage to stay bug free and reportedly saw two vulnerability reports. In addition, ICON and MyEtherWallet also witnessed two vulnerability reports.
Furthermore, the major American crypto exchange, Coinbase received one vulnerability report. Brave, the developer of blockchain browser joined Coinbase, as the Brave software received one vulnerability report as well.
The white hat hackers were handsomely awarded a total of $23,675 for their efforts, in which Tendermint contributed a total of $8,500, making it the biggest contributor. EOS gave out $5,500 in rewards, where as Unikrn awarded $1,376. According to TNW, the low amounts of bounties imply that the uncovered bugs were not as critical.
On the other hand, reportedly tens of thousands of dollars in bounties were handed out by EOS to white hat hackers who found critical vulnerabilities in its platform.
Moreover, only this week the major hardware wallets manufacturer, Ledger revealed the vulnerabilities in one of its major competitor’s devices, i.e. Tezor. Apparently the Tezor device could potentially be imitated by backdooring the device with malware and then re-sealing it in its box by faking a tamper-proof sticker, which is reportedly easy to remove.
Tezor didn’t deny the vulnerability, however it did respond claiming that none of the weaknesses revealed by Ledger are critical for hardware wallets; explaining that in order even remotely exploit the device, physical access to the device, specialized equipment, time, and technical expertise are required.
For further updates stay tuned to BlockPublisher.
World Wire is based on standards developed by SWIFT, says IBM’s Head of Blockchain Solutions
Jesse Lund, the Head of Blockchain Solutions and Digital Assets at IBM, spoke about whether there were concerns regarding the functions of World Wire, and the safety of its transactions, in an interview with CNBC. He also spoke about the impact World Wire would have on financial service systems like SWIFT.
Earlier this week, IBM announced the launch of World Wire in collaboration with Stellar. World Wire is a payment system that utilizes the benefits of blockchain technology, the Stellar Network in particular, and cryptocurrency, to settle cross-border payments in real-time. The US Dollar and Stellar Lumens [XLM] would be the currencies used to kick-start the payment network.
In the interview, Lund was asked about the implications Bitcoin would have on their network, considering the recent turn of events associated with the coin. He was also asked whether there were concerns and questions pertaining to the functions of World Wire and the safety of transactions. He said,“[…] Bitcoin kind of started the momentum of all of this blockchain. And what IBM has been doing, […], is adding security and confidence to the system. So we are building on new idea, which is the ability to store monetary value electronically and to be able to move that value around the world in real-time.”
He further spoke about what made World Wire different, in light of the presence of Western Union and MoneyGram in the same field. He stated that the current cross-border payments system had issues, adding that there were inefficiencies in the way banks communicate and that World Wire was separate from the network.
“[…] Those things are distinct and they require a lot of co-ordination and reconciliation after the fact, that adds, who would call friction, that adds, you know, time complexity, and cost. And so, by having a digital store of value that can move with the payment data, we make the whole process a lot more seamless and a lot more point to point.”
This was followed by Lund speaking about the existing financial systems such as SWIFT. He stated that SWIFT “was a messaging platform”, while what IBM provided “was messaging like SWIFT”. He said,“We’re based on standards that SWIFT has ultimately developed. Standards that have come out of SWIFT, you know, are inherently part of the platform itself. So, yeah, we’re trying to help banks optimize the way that they service their customers and its becoming more and more global, so money moving cross-broader needs to move more efficiently.”
Further, he was questioned on whether they faced any pushback from banks or whether they were viewed as a threat. Lund strongly disagreed, stating that IBM’s role in Word Wire was “as the network operator” and an infrastructure provider. He said,
“We’re trying to build the foundation on which banks can continue to enhance their businesses and to build new applications that will ultimately affect their customers. So, we’re just trying to make it easier for them to pass along improvements and better user experience for flocks like us.”
Permissioned Blockchains Will Dominate the Public Ones
Undermining the principles of openness and trustless-ness, the EU Blockchain Observatory and Forum recently has suggested that permissioned blockchains with specific use-cases will lead the adoption of blockchain in the first wave.
The EU working group is assigned with producing thematic reports relating to blockchains and this recent report is titled “Scalability, Interoperability and Sustainability of Blockchains”. The group is also expected to present another report by the second half of 2019 related to other issues of blockchain such as privacy and confidentiality.
A blockchain is essentially a distributed database maintained by decentralized nodes present in the network instead of just a single party. Within the domain of a blockchain, it can either be public, private or permissioned.
In a public blockchain, anyone can enter the network and act as a node. It is fully open in nature and the data is visible to everyone in the network.
In a private blockchain, the nodes in the network are added by a single controlling party. For example, a bank can select the nodes to run a blockchain network itself. One can think of a private blockchain network as a centralized-decentralized framework where a decentralized network is controlled by a centralized party.
In a permissioned blockchain, although anyone can join the network, the amount of data visible to a node is controlled by its role in the network. This is the kind of blockchain structure that makes the most sense for businesses and industries. For example, a node in the supply-chain department only needs to access the data related to it and does not need to get involved in what’s going with the logistics.
Permissioned blockchains have an access control layer built directly on top of a node which filters the amount of data visible to a node and this feature of permissioned chains will drive the adoption of blockchain as the role of every node in the network can be designated for a specific purpose, which is desirable by almost every network in the world.
Although private and permissioned blockchains go against the main principle of decentralization and transparency, this is something that is desirable by many businesses and companies that do not want their processes to be visible to anyone outside of a trusted network.
READ ALSO: A Blockchain Cosmos Finally Comes Alive
As stated by Ian Kane, the founder and chief operating officer of Ternio, a scalable blockchain platform capable of performing 1 million transactions per second:
“Private or permissioned blockchains have their place specifically in an enterprise environment. Companies will not want to put sensitive data on a public blockchain, because of competitive intelligence issues. I think the future of blockchain will be a combination of both public and permissioned blockchains that have interoperability.”
Within a private system of operations, it does not make sense to make use of public blockchains. Public blockchains can expose internal mechanisms and processes of a company or a corporation to the competitors in the game. But for a specific company, a specialized blockchain that holds data relevant to that entity only, internal frameworks can be more transparent and efficient. This is the reason why the usage of permissioned blockchains is expected to drive adoption in the corporate sector.
READ ALSO: Apple Teams Up With Blockchain Technology To Make Their Products More Ethical
Permissioned blockchains are dedicated to specific purposes. If a blockchain is dedicated to the logistics of a hospital, there is no need for the entire world to see what is happening in the hospital. Only the relevant parties need to see the local proceedings. This makes public blockchains of little use in such scenarios as not everyone wants their activity to be visible to the entire world.
Despite the potential to drive the wave of blockchain adoption, permissioned blockchains still face a lot of issues, one of them being interoperability. Public blockchains make everything visible but with private blockchains, transfer of information from one native ecosystem to another is an issue.
Permissioned blockchains make their own little ecosystems and when there is a need to transfer from one blockchain to another, there is no protocol defined yet to do that. What framework is going to be used for cross-chain communication and how much information is going to be shared in order to maintain the validity, are some of the questions that need to be answered. This area needs to be explored and these questions need to be tackled before the adoption can be made widespread.
READ ALSO: JPM Coin is the Evidence of Trust in Blockchain Technology
Even though the EU report threatens the principles of openness put forward by public blockchains, such as that of bitcoin and ethereum, it might just show the way to making blockchain adoption more widespread.
Facebook Prepares For Blockchain Adoption, Posts Job For Legal Blockchain Counsel
Facebook is making strides in the blockchain industry with new hires as they prepare to launch their US dollar-backed stablecoin, which will purportedly launch in the first half of 2019.
According to Facebook’s career center where the company posts job openings and upcoming positions, a job description detailing the need for a senior lawyer with experience in both blockchain and payments was recently posted.
Facebook Prepares for Rollout of New Cryptocurrency
As previously reported by IIB, Facebook is said to be developing a stablecoin cryptocurrency that will enable users to transfer money across the social media giant’s popular messaging app, WhatsApp. It’s rumored that Facebook will eventually integrate their cryptocurrency across all of their social media platforms.
This not something to be taken lightly as the rollout of “Facebook Coin” will attract a lot of attention from the mainstream, as well as lawmakers and regulators around the world. Therefore, Facebook is now seeking a Lead Commercial Counsel to guide the rollout of this new blockchain technology.
Per the job posting, Facebook detailed the responsibility of this new position, stating that the person hired will be required to present Facebook’s blockchain initiatives and products in a legal and strategic way to clients and businesses on an international basis.
The posting reads:
“You will be responsible for drafting and negotiating a wide variety of contracts related to our blockchain initiatives, including partnerships needed to launch new products and expand such products internationally. You will also advise clients on the various legal risks, business strategies and other issues related to commercial transactions and general operations.”
All in all, this job posting simply goes to show that Facebook is gearing up to launch its “Facebook Coin,” as well as other possible blockchain-related products and initiatives.
Furthermore, IIB previously reported that Facebook was growing their blockchain team with a slew of new hires including software engineers specializing in blockchain technology, among other positions back in December 2018.