BestReviewsLearn

Cornell Researchers Uncover Potential Threats to Decentralized Autonomous Organizations: “Dark” Voting Systems

Cornell researchers, including Vitalik Buterin, are investigating potential threats to decentralized autonomous organizations (DAOs) posed by bribery attacks on voting protocols, introducing new cryptographic methods to mitigate these risks.
News
Dot
August 17, 2024
Dean Fankhauser

Dean has an economics and startup background which led him to create Bitcompare. He primarly writes opinion pieces for Bitcompare. He's also been a guest on BBC World, and interviewed by The Guardian and many other publications.

in
TABLE OF CONTENTS

A team of researchers from Cornell University, including Ethereum co-founder Vitalik Buterin and PhD students Mahimna Kelkar, Kushal Babel, Philip Daian, and James Austgen, is delving into the potential risks that decentralized autonomous organizations (DAOs) may face as they become more mainstream. Their focus is on the looming threat of unified attacks on protocols through smart contract bribery, which could lead to the emergence of “dark” voting systems.

During the Science of Blockchain Conference at Columbia University in early August, Mahimna Kelkar spoke about the group's groundbreaking research on proofs of complete knowledge (CK), a novel cryptographic concept they introduced in 2023.

Kelkar explained the foundational idea behind proof of knowledge, a widely used cryptographic method in the crypto industry that allows one party (the prover) to convince another party (the verifier) that they possess secret information, such as a secret key, without actually revealing the information. However, the team identified a significant vulnerability in this concept. Kelkar noted:

“When the secret key is held inside trusted hardware, in what we call encumbrance of the secret key, you can still complete this proof of knowledge without actually having knowledge of the underlying secret key.”

This subtle gap in standard proofs of knowledge definitions could leave voting protocols susceptible to bribery attacks, a significant concern in DAOs where governance is decentralized. Kelkar elaborated,

“A voting platform may be vulnerable to bribery attacks, where users can sort of sell their votes to bribers in a dark marketplace. What our work tries to do is establish an individual, real person kind of ownership of data.”
Source: The Initiative for Contracts and CryptoCurrencies (IC3)

The researchers proposed two methods to enforce proof of complete knowledge, thereby mitigating the risk of these attacks. One approach involves using a trusted execution environment (TEE) to prove that a voter possesses a key and can use it. Even if an attacker attempts to lock the key away, the key remains under the control of the voting system’s own TEE, ensuring that the tokenholder maintains complete control.

The second method involves using application-specific integrated circuits (ASICs), typically employed in Bitcoin mining. By sending a key to an ASIC, which lacks a TEE environment, the key remains accessible to the user, ensuring they retain control while still proving that the key was used by the ASIC.

While this research is still in the prototype stage, the team has demonstrated that these threats are realistic. Kelkar concluded with

"We show that this is a realistic threat to DAOs, and we show this by demonstrating a practically deployable dark DAO, which can facilitate vote buying in existing DAOs. It’s not something that you can deploy tomorrow, but it’s like practically instantiable as a research prototype today.”
Ethereum
The trusted provider of rates and financial information
AI JobsPromptPalBecome a partnerContact usLegalPrivacySitemapCareersAbout
Get crypto smart in 5 minutes
Join readers from Coinbase, a16z, Binance, Uniswap, Sequoia and more for the latest staking rewards, tips, insights and news.
No spam, unsubscribe anytime. Read our Privacy Policy.
YOUR SUBSCRIPTION WAS SUCCESSFUL
Oops! Something went wrong while submitting the form.
© 2024 Bitcompare
A Blu.Ventures companyAdvertisePolicyTerms of UseSitemap

Bitcompare.net is a trading name of Tokentalk Ltd. Registered in England No. 11332964. Registered Office: Unit 3 Mitcham Industrial Estate, 85 Streatham Road, Mitcham, United Kingdom, CR4 2AP.

Advertiser disclosure: Bitcompare is a comparison engine that relies on advertising for funding. The business opportunities that can be found on this site are offered by companies with which Bitcompare has made deals. This relationship may affect the way and where products appear on the site, such as in what order they are listed in categories. Information about products may also be placed based on other factors, such as the ranking algorithms on our website. Bitcompare does not look at or list all companies or products on the market.

Editorial disclosure: The editorial content on Bitcompare is not provided by any of the companies mentioned, and has not been reviewed, approved, or otherwise endorsed by any of these entities. The opinions expressed here are the author’s alone. Additionally, the opinions expressed by the commenters do not necessarily reflect those of Bitcompare or its staff. When you leave a comment on this site, it will not show up until a Bitcompare administrator approves it.

Warning: The price of digital assets can be volatile. The value of your investment can go down or up, and you may not get back the amount invested. You are the only one who is responsible for the money you invest, and Bitcompare is not responsible for any losses you might have. Any APR shown is a rough estimate of how much cryptocurrency you will earn in rewards over the time period you choose. It does not display the actual or predicted returns or yields in any fiat currency. The APR is adjusted daily, and the estimated rewards may differ from the actual rewards generated. The information on this page is not meant to be a sign from Bitcompare that the information is correct or reliable. Before making any investment, you should carefully consider your investment experience, financial situation, investment objectives, and risk tolerance, and consult with an independent financial advisor. Links to third-party sites are not under the control of Bitcompare, and we are not responsible for the reliability or accuracy of such sites or their contents. For more information, see the Terms of Service for Bitcompare and our Risk Warning.

BestReviewsLearn
News
August 17, 2024

Cornell Researchers Uncover Potential Threats to Decentralized Autonomous Organizations: “Dark” Voting Systems

HomeNews
Blog Post
Contents

A team of researchers from Cornell University, including Ethereum co-founder Vitalik Buterin and PhD students Mahimna Kelkar, Kushal Babel, Philip Daian, and James Austgen, is delving into the potential risks that decentralized autonomous organizations (DAOs) may face as they become more mainstream. Their focus is on the looming threat of unified attacks on protocols through smart contract bribery, which could lead to the emergence of “dark” voting systems.

During the Science of Blockchain Conference at Columbia University in early August, Mahimna Kelkar spoke about the group's groundbreaking research on proofs of complete knowledge (CK), a novel cryptographic concept they introduced in 2023.

Kelkar explained the foundational idea behind proof of knowledge, a widely used cryptographic method in the crypto industry that allows one party (the prover) to convince another party (the verifier) that they possess secret information, such as a secret key, without actually revealing the information. However, the team identified a significant vulnerability in this concept. Kelkar noted:

“When the secret key is held inside trusted hardware, in what we call encumbrance of the secret key, you can still complete this proof of knowledge without actually having knowledge of the underlying secret key.”

This subtle gap in standard proofs of knowledge definitions could leave voting protocols susceptible to bribery attacks, a significant concern in DAOs where governance is decentralized. Kelkar elaborated,

“A voting platform may be vulnerable to bribery attacks, where users can sort of sell their votes to bribers in a dark marketplace. What our work tries to do is establish an individual, real person kind of ownership of data.”
Source: The Initiative for Contracts and CryptoCurrencies (IC3)

The researchers proposed two methods to enforce proof of complete knowledge, thereby mitigating the risk of these attacks. One approach involves using a trusted execution environment (TEE) to prove that a voter possesses a key and can use it. Even if an attacker attempts to lock the key away, the key remains under the control of the voting system’s own TEE, ensuring that the tokenholder maintains complete control.

The second method involves using application-specific integrated circuits (ASICs), typically employed in Bitcoin mining. By sending a key to an ASIC, which lacks a TEE environment, the key remains accessible to the user, ensuring they retain control while still proving that the key was used by the ASIC.

While this research is still in the prototype stage, the team has demonstrated that these threats are realistic. Kelkar concluded with

"We show that this is a realistic threat to DAOs, and we show this by demonstrating a practically deployable dark DAO, which can facilitate vote buying in existing DAOs. It’s not something that you can deploy tomorrow, but it’s like practically instantiable as a research prototype today.”
Ethereum
Dean Fankhauser

Dean has an economics and startup background which led him to create Bitcompare. He primarly writes opinion pieces for Bitcompare. He's also been a guest on BBC World, and interviewed by The Guardian and many other publications.

in

A team of researchers from Cornell University, including Ethereum co-founder Vitalik Buterin and PhD students Mahimna Kelkar, Kushal Babel, Philip Daian, and James Austgen, is delving into the potential risks that decentralized autonomous organizations (DAOs) may face as they become more mainstream. Their focus is on the looming threat of unified attacks on protocols through smart contract bribery, which could lead to the emergence of “dark” voting systems.

During the Science of Blockchain Conference at Columbia University in early August, Mahimna Kelkar spoke about the group's groundbreaking research on proofs of complete knowledge (CK), a novel cryptographic concept they introduced in 2023.

Kelkar explained the foundational idea behind proof of knowledge, a widely used cryptographic method in the crypto industry that allows one party (the prover) to convince another party (the verifier) that they possess secret information, such as a secret key, without actually revealing the information. However, the team identified a significant vulnerability in this concept. Kelkar noted:

“When the secret key is held inside trusted hardware, in what we call encumbrance of the secret key, you can still complete this proof of knowledge without actually having knowledge of the underlying secret key.”

This subtle gap in standard proofs of knowledge definitions could leave voting protocols susceptible to bribery attacks, a significant concern in DAOs where governance is decentralized. Kelkar elaborated,

“A voting platform may be vulnerable to bribery attacks, where users can sort of sell their votes to bribers in a dark marketplace. What our work tries to do is establish an individual, real person kind of ownership of data.”
Source: The Initiative for Contracts and CryptoCurrencies (IC3)

The researchers proposed two methods to enforce proof of complete knowledge, thereby mitigating the risk of these attacks. One approach involves using a trusted execution environment (TEE) to prove that a voter possesses a key and can use it. Even if an attacker attempts to lock the key away, the key remains under the control of the voting system’s own TEE, ensuring that the tokenholder maintains complete control.

The second method involves using application-specific integrated circuits (ASICs), typically employed in Bitcoin mining. By sending a key to an ASIC, which lacks a TEE environment, the key remains accessible to the user, ensuring they retain control while still proving that the key was used by the ASIC.

While this research is still in the prototype stage, the team has demonstrated that these threats are realistic. Kelkar concluded with

"We show that this is a realistic threat to DAOs, and we show this by demonstrating a practically deployable dark DAO, which can facilitate vote buying in existing DAOs. It’s not something that you can deploy tomorrow, but it’s like practically instantiable as a research prototype today.”
Written by
Dean Fankhauser
Ethereum

Key Questions Surrounding Ethereum's Current Market Dynamics

News
August 7, 2024
Recent data indicates that Ethereum (ETH) whales have been actively accumulating the cryptocurrency amid the current price dip.

Ethereum Alternatives: Top 10 Options in 2024

Alternatives
March 13, 2024
For those dissatisfied with Ethereum’s limitations, a world of Ethereum alternatives beckons.

Binance Pauses Ethereum Deposits and Withdrawals for Maintenance

News
May 29, 2024
Binance, the world's largest cryptocurrency exchange, has announced that it will temporarily suspend deposits and withdrawals on the Ethereum (ETH) network for approximately two hours on May 29, 2024.

5 Apps Every Serious Crypto Trader Needs on Their Phone

Crypto Trading
October 3, 2024
Cool apps that every crypto trader should have to ensure a more efficient and secure trading journey.

Bitcoin Price Stagnates Amid Mixed Market Signals

News
September 2, 2024
Bitcoin's price remains stagnant due to mixed market signals, including potential sell pressure from large BTC releases and uncertain demand ahead of the U.S. Federal Reserve meeting.

Shiba Inu Whale Trades $3.5 Million in SHIB for AI Token FET Amid Market Shifts

News
September 1, 2024
A Shiba Inu whale swapped $3.5 million worth of SHIB for the AI token FET, reflecting a strategic shift towards AI-focused assets amid declining memecoin value.

XRP Whale Activity Hits Four-Year Low: What Does It Mean for Traders?

News
September 1, 2024
XRP struggles at $0.585, but whale activity and stable network metrics suggest a long-term bullish outlook despite short-term volatility.

Bitcoin’s Decline Could Mean Gains for Solana: $187 Target in Sight

News
August 31, 2024
A potential decline in Bitcoin's dominance could trigger an altcoin rally, with Solana (SOL) potentially aiming for a $187 target.

Vitalik Buterin Refutes Claims of Selling Ether for Profit

News
August 31, 2024
Ethereum co-founder Vitalik Buterin denies selling Ether for personal profit, stating that his sales were to support various crypto projects and philanthropic efforts.

Third Negative Funding Rate Reading for BNB Since 2023 Raises Concerns

News
August 31, 2024
Binance's funding rates have turned negative for the third time since 2023, signaling potential bearish market sentiment and a decline in demand for Binance Coin (BNB) long positions amid increased selling pressure and external controversies.

Bitcoin's Next Move: Will It Break $67K or Remain Below $60K?

News
August 31, 2024
Bitcoin is trading near a critical support level around $59K, with mixed technical signals suggesting potential further declines or a rally toward $67K, amid a generally bullish on-chain outlook.

Ethereum Whale Sells 6,900 ETH – Is It Time to Worry?

News
August 31, 2024
An Ethereum whale has sold 6,900 ETH, valued at $17.87 million, amid a balanced market environment and continued decline in exchange reserves, raising questions about potential bearish trends.

Ethereum Signals Potential Price Reversal: Bullish Divergence Forms for the First Time in Two Years

News
August 30, 2024
Ethereum is showing signs of a potential price reversal with its first bullish divergence in over two years, supported by technical indicators and macroeconomic factors.

Bitcoin Slips Below $59,000 as Institutional Demand Declines; BlackRock's IBIT Records Second Outflow

News
August 30, 2024
Bitcoin fell below $59,000 amid waning demand and significant outflows from major ETFs, including BlackRock's IBIT, signaling cautious market sentiment and potential volatility ahead.

Aptos Network Partners with Nillion to Enhance Privacy for Decentralized Applications

News
August 29, 2024
Aptos is integrating privacy platform Nillion to enhance privacy-preserving applications on its blockchain, enabling secure handling of sensitive data for decentralized apps.
The trusted provider of rates and financial information
AI JobsPromptPalBecome a partnerContact usLegalPrivacySitemapCareersAbout
Get crypto smart in 5 minutes
Join readers from Coinbase, a16z, Binance, Uniswap, Sequoia and more for the latest staking rewards, tips, insights and news.
No spam, unsubscribe anytime. Read our Privacy Policy.
YOUR SUBSCRIPTION WAS SUCCESSFUL
Oops! Something went wrong while submitting the form.
© 2024 Bitcompare
A Blu.Ventures companyAdvertisePolicyTerms of UseSitemap

Bitcompare.net is a trading name of Tokentalk Ltd. Registered in England No. 11332964. Registered Office: Unit 3 Mitcham Industrial Estate, 85 Streatham Road, Mitcham, United Kingdom, CR4 2AP.

Advertiser disclosure: Bitcompare is a comparison engine that relies on advertising for funding. The business opportunities that can be found on this site are offered by companies with which Bitcompare has made deals. This relationship may affect the way and where products appear on the site, such as in what order they are listed in categories. Information about products may also be placed based on other factors, such as the ranking algorithms on our website. Bitcompare does not look at or list all companies or products on the market.

Editorial disclosure: The editorial content on Bitcompare is not provided by any of the companies mentioned, and has not been reviewed, approved, or otherwise endorsed by any of these entities. The opinions expressed here are the author’s alone. Additionally, the opinions expressed by the commenters do not necessarily reflect those of Bitcompare or its staff. When you leave a comment on this site, it will not show up until a Bitcompare administrator approves it.

Warning: The price of digital assets can be volatile. The value of your investment can go down or up, and you may not get back the amount invested. You are the only one who is responsible for the money you invest, and Bitcompare is not responsible for any losses you might have. Any APR shown is a rough estimate of how much cryptocurrency you will earn in rewards over the time period you choose. It does not display the actual or predicted returns or yields in any fiat currency. The APR is adjusted daily, and the estimated rewards may differ from the actual rewards generated. The information on this page is not meant to be a sign from Bitcompare that the information is correct or reliable. Before making any investment, you should carefully consider your investment experience, financial situation, investment objectives, and risk tolerance, and consult with an independent financial advisor. Links to third-party sites are not under the control of Bitcompare, and we are not responsible for the reliability or accuracy of such sites or their contents. For more information, see the Terms of Service for Bitcompare and our Risk Warning.