1. BITBILIHome
  2. Article

Consensys releases new tool for enhanced smart contract security

93 views

TL;DR Breakdown

  • Consensys has announced the release of a new diligence fuzzing tool to enhance smart contract security.
  • Embracing sophisticated fuzzing to mitigate Defi vulnerabilities.

Description

Blockchain technology firm ConsenSys has taken a significant step in bolstering the security of decentralized finance (DeFi) platforms by publicly releasing its “Diligence Fuzzing” tool for smart contract testing. The announcement, made on August 1, highlights the tool’s capability to generate “random and invalid data points” to detect vulnerabilities in contracts before they are deployed, … Read more

Blockchain technology firm ConsenSys has taken a significant step in bolstering the security of decentralized finance (DeFi) platforms by publicly releasing its “Diligence Fuzzing” tool for smart contract testing. The announcement, made on August 1, highlights the tool’s capability to generate “random and invalid data points” to detect vulnerabilities in contracts before they are deployed, potentially preventing millions of dollars in losses due to hacks and security breaches.

Consensys plans to prevent breaches with the tool

The urgency for better testing tools stems from the staggering $2.8 billion lost to DeFi hacks in 2022. As hackers continue to exploit vulnerabilities in smart contracts, developers are turning to more sophisticated testing methods to identify weaknesses before malicious actors can do so. The “Diligence Fuzzing” tool was initially accessible only through a closed beta version, which required developers to seek approval for access. However, as of August 1, the tool has been made available to all without the need for prior approval.

Additionally, it has been integrated into the smart contract toolkit Foundry, offering developers a free version to evaluate its effectiveness before committing to a full-fledged version. To implement the “Diligence Fuzzing” tool effectively, developers can use “Scribble,” a machine language developed by ConsenSys, to annotate their contracts. These annotations enable the fuzzing tool to understand the contract’s behavior and subsequently produce “unexpected” inputs to assess whether the contract can be manipulated to execute unintended actions.

It is important to note that the “Diligence Fuzzing” tool differs from a conventional “black box fuzzer” that generates completely random data. Instead, it operates as a “grey-box fuzzer,” leveraging insights into the program’s current state to produce data types more likely to uncover potential vulnerabilities. This approach increases the tool’s efficiency, allowing developers to uncover security risks more effectively. According to ConsenSys security researcher Gonçalo Sá, there has been a notable increase in developers’ interest in fuzzing.

Embracing sophisticated fuzzing to mitigate Defi vulnerabilities

Foundry’s popularity has led developers to utilize its default black-box fuzzer, becoming more comfortable with fuzzing methodologies. However, some developers are now seeking more sophisticated fuzzing capabilities, which Diligence Fuzzer aims to provide. Sá emphasized the growing awareness among developers about the power of security tools, including fuzzing. The need for enhanced security measures has become increasingly evident as the number of smart contract hacks continues to rise.

In the first half of 2023, excluding rug pulls and phishing scams, losses from Web3 security vulnerabilities exceeded $471.43 million. While Diligence Fuzzing represents a valuable step towards minimizing smart contract vulnerabilities, ConsenSys security services lead Liz Daldalian cautioned that it is not a “silver bullet” to eradicate all smart contract hacks. Nonetheless, it serves as a crucial tool that developers can use to write more secure smart contracts, mitigating potential losses from malicious attacks.

The public release of ConsenSys’ “Diligence Fuzzing” tool marks a significant milestone in the efforts to enhance smart contract security within the DeFi ecosystem. By enabling developers to identify vulnerabilities before contract deployment, the tool can potentially save millions of dollars lost to hacks and security breaches. While it may not provide an absolute solution to all security challenges, it stands as an essential asset in the ongoing battle to safeguard the Web3 community from malicious attacks. With an increasing number of developers recognizing the importance of fuzzing and security tools, the path toward a more secure DeFi landscape becomes clearer.

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Consensys releases new tool for enhanced smart contract security

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年8月2日 12:04
Next 2023年8月2日 13:25

Related articles

  • Bitcoin ordinal inscriptions hit a new record high

    TL;DR Breakdown Bitcoin ordinal inscriptions have hit a new high as NFTs and memecoins gain momentum. The blockchain is a catalyst for the adoption of memecoins and NFTs. Bitcoin-based non-fungible tokens (NFTs) and meme tokens are experiencing a surge in popularity, with Ordinals inscriptions surpassing 9 million on the BTC blockchain. This staggering figure reflects a tripling of digital artifacts since May 1 when the count stood at just over 3 million, according to data from Dune, a public blockchain curator. Bitcoin ordinal inscriptions hit 9 million Ordinals, a protocol launched in January, enables users to “inscribe” various digital assets, including artwork, profile pictures, applications, and playable games, onto the BTC blockchain. Despite some critics questioning its use on the network due to rising congestion and transaction fees, supporters like Michael Saylor, founder of MicroStrategy, view Ordinals as a catalyst for BTC adoption. Saylor expressed his belief in the protocol’s significance during an interview on the PBD Podcast, stating that applications such as Ordinals drive up transaction fees and contribute to BTC’s broader adoption. MicroStrategy, known for holding a substantial…

    Article 2023年5月28日

  • Is the $33 trillion U.S. debt all that bad? Let’s see

    Description The colossal U.S. debt, now hovering at a staggering $33 trillion, has become a defining conversation piece for many fiscal conversations. It’s a number that’s hard to grasp, often cloaked in anxiety, controversy, and divisive opinions. Every fiscal year since the turn of the millennium has witnessed the U.S. spending more than its revenue, forcing … Read more The colossal U.S. debt, now hovering at a staggering $33 trillion, has become a defining conversation piece for many fiscal conversations. It’s a number that’s hard to grasp, often cloaked in anxiety, controversy, and divisive opinions. Every fiscal year since the turn of the millennium has witnessed the U.S. spending more than its revenue, forcing the nation into the corner of borrowing. But is all this borrowing a financial apocalypse in the making, or could there be a silver lining somewhere? Debt: A Necessary Evil or a Useful Tool? Kris Mitchener, a distinguished economist at Santa Clara University’s Leavey School of Business, paints the public debt with a more nuanced brush. Mitchener suggests that borrowing, historically, has been the go-to move…

    Article 2023年9月11日

  • Polkadot price analysis: DOT corrects after peaking at $5.54 amid a market drop

    TL;DR Breakdown Polkadot price analysis shows a bearish trend today. Resistance for DOT/USD is present at $5.65. Support for DOT/USD is present at $5.34. The Polkadot price analysis is bearish today as the coin is correcting after marking a weekly high yesterday at $5.54. Yesterday, when the entire crypto market was bullish, DOT/USD also covered a range upward, and the price continued progressing till the end of the day. Selling pressure was observed At the start of today’s trading session, the coin declined from $5.45 to $5.47, and the coin has been moving sideways for the last few hours. DOT/USD 1-day price chart: DOT faces rejection at $5.54 The 1-day price chart for Polkadot price analysis shows the price has declined today. DOT traded in a narrow range of $5.54 to $5.44 today and is trading hands at $5.47 at the time of writing. DOT/USD reports an increase in price value of 2.29 percent over the last 24 hours as it rallied high during the late hours yesterday, and DOT reports an increase of 4.08 percent in value over the…

    Article 2023年6月1日

  • UK government’s shocking rejection of crypto regulation sparks controversy

    TL;DR Breakdown The UK government has rejected a proposal from lawmakers to regulate cryptocurrencies in a manner similar to gambling, arguing that its existing plans are better suited to address the risks associated with events like the collapse of FTX. The UK government highlighted that adopting gambling regulation for cryptocurrencies would significantly deviate from its intended approach, which aligns with the recommendations put forth by global standard-setting bodies. The government cautioned that such divergence in regulation could lead to the crypto industry moving offshore, which is contrary to its goal of fostering the UK as a crypto hub. Description The UK government has rejected a proposal from lawmakers to regulate cryptocurrencies in a manner similar to gambling, arguing that its existing plans are better suited to address the risks associated with events like the collapse of FTX, a prominent crypto exchange. The rejection was outlined in a document published on Thursday, which responded to … Read more The UK government has rejected a proposal from lawmakers to regulate cryptocurrencies in a manner similar to gambling, arguing that its existing plans…

    Article 2023年7月21日

  • Putin talks Iran’s BRICS entry in call with Iranian leaders

    TL;DR Breakdown Russian President Vladimir Putin discussed Iran’s potential inclusion in the BRICS alliance during a call with Iranian leader Ebrahim Raisi. The BRICS group, comprising Brazil, Russia, India, China, and South Africa, is considering expanding its membership. The call also highlighted the commitment to enhance bilateral ties between Russia and Iran in areas like trade, energy, and logistics. Description In a move that has captured global attention, Russian President Vladimir Putin broached the topic of Iran’s potential entry into the influential BRICS consortium during a call with Iran’s leader. This discussion comes as BRICS, an alliance of burgeoning economies, contemplates its expansion, marking a significant moment in the geopolitical theater. A Pivotal Exchange: Putin … Read more In a move that has captured global attention, Russian President Vladimir Putin broached the topic of Iran’s potential entry into the influential BRICS consortium during a call with Iran’s leader. This discussion comes as BRICS, an alliance of burgeoning economies, contemplates its expansion, marking a significant moment in the geopolitical theater. A Pivotal Exchange: Putin and Raisi Dive into Iran’s Ambitions The…

    Article 2023年8月18日
TOP