Fun

Dark DAOs: Vitalik Buterin explores ways to mitigate bribery threats

News Feed - 2024-08-17 06:08:37

Ana Paula Pereira2 hours agoDark DAOs: Vitalik Buterin explores ways to mitigate bribery threatsProof of Complete Knowledge (PoCK) aims to prevent bribery attacks by ensuring real control over voting keys.482 Total viewsListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTCOINTELEGRAPH IN YOUR SOCIAL FEEDFollow ourSubscribe onA group of researchers from Cornell University is investigating potential threats that could turn into “dark” voting systems in decentralized autonomous organizations (DAOs). 


This group is formed by Ethereum co-founder Vitalik Buterin and PhD students Mahimna Kelkar, Kushal Babel, Philip Daian and James Austgen. Their work revolves around how to mitigate an imminent threat to decentralization as DAOs go mainstream: unified attacks against protocols through smart contracts bribery.


During the Science of Blockchain Conference held at Columbia University in early August, Cointelegraph spoke with Mahimna Kelkar about the group’s research on proofs of complete knowledge (CK) — a new cryptographic notion they introduced in 2023.


Proof of knowledge is a cryptography concept that allows one party (the prover) to convince another party (the verifier) that they possess some secret information, like a secret key, without actually revealing that information.


The concept has been widely used in the crypto industry to improve privacy on transactions, but a “subtle gap” still allows scenarios where this secret information could be held by some external mechanism, like trusted hardware, rather than directly by the prover. According to Kelkar:“When the secret key is held inside a trusted hardware, in what we call encumbrance of the secret key, you can still complete this proof of knowledge without actually having knowledge of the underlying secret key.”Bribery attacks


This limitation in the way standard proofs of knowledge are defined could turn voting protocols vulnerable to bribery attacks, Kelkar explained. 


The lack of a central authority is a key concept behind DAOs’ governance. Members of a DAO are usually tokenholders with voting power on rules and decisions. In a bribery attack, however, a malicious actor could offer tokenholders financial incentives through smart contracts, bribing participants to vote for a particular proposal or outcome.


“[..] A voting platform may be vulnerable to bribery attacks [...], where users can sort of sell their votes to bribers in a dark marketplace,” explained Kelkar. “What our work tries to do is establish an individual, real person kind of ownership of data.”Source: The Initiative for CryptoCurrencies and Contracts (IC3)Proof of Complete Knowledge


An attacker could use a trusted execution environment (TEE) to ensure that tokenholders who accepted a bribe can’t vote freely. In this environment, the attacker controls when and how the keys can be used. 


The researchers identified two ways of enforcing proof of complete knowledge. One includes using TEE to prove that a voter owns a key and can use it. The tokenholder can also remove the key of this environment to use it freely whenever they want.


In this way, tokenholders still keep complete control over their key. Even if an attacker wants to lock the key away to control the voter, the key is already managed by the voting system’s own TEE.


A second approach involves restricting keys using application-specific integrated circuits (ASICS), which are usually machines used in Bitcoin mining. By sending a key to the ASIC — which lacks a TEE environment — the key remains accessible to the user, ensuring they have complete control over it, while still demonstrating that the key was used by the ASIC and preventing its use in a TEE.


The research is still in the prototype stage, according to Kelkar. “We show that this is a realistic threat to DAOs, and we show this by demonstrating a practically deployable dark DAO, which can facilitate vote buying in existing DAOs. It’s not something that you can deploy tomorrow, but it’s like practically instantiable as a research prototype today," Kelkar added.


Magazine: DeFi and Ethereum are the ‘new narrative’: Michaël van de Poppe, X Hall of Flame# Blockchain# Smart Contracts# Decentralization# Vitalik Buterin# DAOAdd reaction

News Feed
The HDF Educational Welfare Report: CoinEx Charity Empowers Children’s Education Through Charitable Giving
The HDF Educational Welfare Report: CoinEx Charity Empowers Children’s Education Through Charitable Giving press release PRESS RELEASE.Since last year, CoinEx Charity has been fun
2023-03-02 21:00 PM
Bitcoin Resets With 14% Deleveraging—Here’s What Past Events Led To
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
2025-03-18 07:30 AM
Tom Blackstone1 hour agoFedNow “early adopter” list contains no blockchains, but some may integrate laterTwo blockchain networks had previously announced integration with the Fed’s instant payment service, but they
2023-07-01 07:30 AM
Bradesco, One of Brazil’s Largest Banks, Launches Tokenized Credit Notes in Blockchain Pilot
Bradesco, One of Brazil"s Largest Banks, Launches Tokenized Credit Notes in Blockchain Pilot Bradesco, one of the largest banks in Brazil and the third biggest in all of Latam, has
2023-01-16 21:30 PM
Telegram Backer Sought Circle Listing Before SEC Halted Token Launch
A least one crypto exchange, Circle, was asked to list Telegram’s tokens before the Securities and Exchange Commission (SEC) halted the launch of the TON blockchain, court filings show.
2019-10-22 17:00 PM
William Suberg8 hours agoBitcoin traders earmark key BTC price levels as $34K struggles to holdBTC price is seeking retests of lower levels after Bitcoin bulls fail to push beyond recent 17-month highs.2255 Total views26
2023-10-27 00:25 AM
Report: Bored Ape Yacht Club Discord Attacker May Have Been Involved in Previous NFT Phishing Scams
Report: Bored Ape Yacht Club Discord Attacker May Have Been Involved in Previous NFT Phishing Scams On June 4, 2022, the Bored Ape Yacht Club (BAYC) Discord server was compromised
2022-06-08 01:30 AM
Philippines Financial Institution Unionbank Now Provides Crypto Custody and Trading Services
Philippines Financial Institution Unionbank Now Provides Crypto Custody and Trading Services The Union Bank of the Philippines, Inc., more commonly known as Unionbank, announced th
2022-11-03 05:30 AM
Texas Blockchain Council and Riot secure win against US energy officials
Ciaran Lyons7 hours agoTexas Blockchain Council and Riot secure win against US energy officialsAccording to the court filing, the temporary restraining order granted aims to “preserve the status quo," and will exp
2024-02-25 10:05 AM
Peter Schiff Advises Selling Bitcoin Today — Says It’s ‘the Smart Move’
Peter Schiff Advises Selling Bitcoin Today — Says It"s "the Smart Move" Gold bug and economist Peter Schiff has recommended selling bitcoin today, emphasizing that it is “
2022-12-26 12:30 PM
Australian Monochrome spot Bitcoin ETF expected to launch within 2 months, says CEO
Prashant Jha13 hours agoAustralian Monochrome spot Bitcoin ETF expected to launch within 2 months, says CEOAlthough Australia already has a couple of ETPs exposed to Bitcoin, Monochrome’s spot BTC ETF will be the first
2024-04-05 19:46 PM
Satoshi Nakamoto Kidnapped, Tortured by NSA to Destroy Crypto in New Movie ‘Decrypted’
Satoshi Nakamoto Kidnapped, Tortured by NSA to Destroy Crypto in New Movie "Decrypted"Decrypted, a new crypto movie about Satoshi Nakamoto, the mysterious creator of Bitcoin, is in
2020-06-22 05:30 AM