Break in Arcturus security proofs

cargodog / arcturus

A pure rust implementation of Arcturus proofs for confidential transactions.

MIT License

12 stars 2 forks source link

Break in Arcturus security proofs #43

Open UkoeHB opened 3 years ago

UkoeHB commented 3 years ago

Hi,

I identified a break in the dual-target discrete log hardness assumption used by Arcturus.

cargodog commented 3 years ago

Thanks for finding the break, and thanks for notifying me!

Given this break, I will likely abandon further development and/or maintenance of this project. I originally started this project just to draw attention to Arcturus to see if someone could strengthen or disprove the dual-target assumption. I'd hoped it would be strengthened, but I'm equally glad to see it proven broken. Great review effort, @UkoeHB .

cargodog commented 3 years ago

@sarangnoether @UkoeHB I wanted to drop by the MRL matrix room and share my appreciation for your work, but it seems my account no longer has access. Perhaps TOR connections are blocked :shrug:

Anyways, I will post here. Thanks again @sarangnoether for the great work you've done, and I look forward to hearing your final assessment of @UkoeHB's break. Cheers :beers:

selsta commented 3 years ago

but it seems my account no longer has access.

We had some spam issues. I gave you voice rights now.