This article was first published on Zcash
Today we are announcing the security audit results from five expert security auditors who we contracted last year. We hired these experts to conduct comprehensive security and design audits in support of the Overwinter and Sapling releases. The summary and implication of the results are available here in addition to the result details, our reasoning and response below.
Least Authority, Part 1
Least Authority have published their work.
Issue A: pow leaks in windowed_exp
… and …
Issue B: Exponent leaks via power function
These issues correctly identify cache-snooping attacks that are exploitable by an attacker who is able to run code on the same core. Zcash is not intended to be safe to side-channel attacks in these scenarios, and this is listed in the security warnings in our repository.
Issue C: Undefined behavior in crypto/common.h
Issue D: Undefined behavior in CBaseDataStream::read
Issue E: CTxMemPool::check() does nothing when turned on
Issue F: Transaction expiry reduces safety in reorgs
Since this issue was not listed as a vulnerability, no changes were made in response to this issue.
Coinspect have published their assessment of Overwinter.
The numbering of these issues is a continuation of the work that Coinspect did on Zcash in 2016.
To keep reading, please go to the original article at: