rbharath
commented
5 years ago Taken care of in https://computablelabs.github.io/compspec/docs/attacks/
Closed rbharath closed 5 years ago
rbharath
commented
5 years ago Taken care of in https://computablelabs.github.io/compspec/docs/attacks/
It's possible to front run creation of candidates in a market. That is, suppose I propose a candidate (for a listing, challenge, or datatrust) with listing hash
0xabc. Malicious actor Alice could watch for the unconfirmed transaction proposing this candidate and propose her own candidate with listing hash0xabc. If her candidate is accepted before mine (perhaps due to higher gas offered), then Alice will own0xabc. If I've submitted the data for0xabcto the datatrust in the meanwhile, Alice might be able to fraudulently access this data by proving that she's the owner for0xabc.This attack requires some sophistication to execute, so the current plan is to document this attack (perhaps in http://github.com/computablelabs/compspec), but not create an explicit guard rail.