Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document use of params for sound proof generation, with counter-examples. #375

Open
jzaki opened this issue Aug 21, 2024 · 1 comment
Open

Document use of params for sound proof generation, with counter-examples. #375

jzaki opened this issue Aug 21, 2024 · 1 comment
Assignees
@jzaki

Comments

@jzaki
Copy link
Contributor

jzaki commented Aug 21, 2024

In hackathons there are often submissions that generate proofs, but can be misused to either prove different things or not uniquely prove what their solution proposes. Allowing a bad actor to either affect other users, or just advantage themselves.
@jzaki jzaki self-assigned this Aug 21, 2024
@jzaki jzaki mentioned this issue Sep 24, 2024
Open
@critesjosh
Copy link
Collaborator

It would be good to list specific examples anti-patterns, perhaps with links to projects.

Some that come to mind:

  • passing proofs on chain that don't have replay protection
  • voting applications that don't protect against replay attacks
  • user supplied public inputs that are not checked or enforced. Eg a user can provide false inputs. Should be passed by a contract where possible

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jzaki jzaki

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jzaki @critesjosh