1. BITBILIHome
  2. Article

Consensys releases new tool for enhanced smart contract security

190 views

TL;DR Breakdown

  • Consensys has announced the release of a new diligence fuzzing tool to enhance smart contract security.
  • Embracing sophisticated fuzzing to mitigate Defi vulnerabilities.

Description

Blockchain technology firm ConsenSys has taken a significant step in bolstering the security of decentralized finance (DeFi) platforms by publicly releasing its “Diligence Fuzzing” tool for smart contract testing. The announcement, made on August 1, highlights the tool’s capability to generate “random and invalid data points” to detect vulnerabilities in contracts before they are deployed, … Read more

Blockchain technology firm ConsenSys has taken a significant step in bolstering the security of decentralized finance (DeFi) platforms by publicly releasing its “Diligence Fuzzing” tool for smart contract testing. The announcement, made on August 1, highlights the tool’s capability to generate “random and invalid data points” to detect vulnerabilities in contracts before they are deployed, potentially preventing millions of dollars in losses due to hacks and security breaches.

Consensys plans to prevent breaches with the tool

The urgency for better testing tools stems from the staggering $2.8 billion lost to DeFi hacks in 2022. As hackers continue to exploit vulnerabilities in smart contracts, developers are turning to more sophisticated testing methods to identify weaknesses before malicious actors can do so. The “Diligence Fuzzing” tool was initially accessible only through a closed beta version, which required developers to seek approval for access. However, as of August 1, the tool has been made available to all without the need for prior approval.

Additionally, it has been integrated into the smart contract toolkit Foundry, offering developers a free version to evaluate its effectiveness before committing to a full-fledged version. To implement the “Diligence Fuzzing” tool effectively, developers can use “Scribble,” a machine language developed by ConsenSys, to annotate their contracts. These annotations enable the fuzzing tool to understand the contract’s behavior and subsequently produce “unexpected” inputs to assess whether the contract can be manipulated to execute unintended actions.

It is important to note that the “Diligence Fuzzing” tool differs from a conventional “black box fuzzer” that generates completely random data. Instead, it operates as a “grey-box fuzzer,” leveraging insights into the program’s current state to produce data types more likely to uncover potential vulnerabilities. This approach increases the tool’s efficiency, allowing developers to uncover security risks more effectively. According to ConsenSys security researcher Gonçalo Sá, there has been a notable increase in developers’ interest in fuzzing.

Embracing sophisticated fuzzing to mitigate Defi vulnerabilities

Foundry’s popularity has led developers to utilize its default black-box fuzzer, becoming more comfortable with fuzzing methodologies. However, some developers are now seeking more sophisticated fuzzing capabilities, which Diligence Fuzzer aims to provide. Sá emphasized the growing awareness among developers about the power of security tools, including fuzzing. The need for enhanced security measures has become increasingly evident as the number of smart contract hacks continues to rise.

In the first half of 2023, excluding rug pulls and phishing scams, losses from Web3 security vulnerabilities exceeded $471.43 million. While Diligence Fuzzing represents a valuable step towards minimizing smart contract vulnerabilities, ConsenSys security services lead Liz Daldalian cautioned that it is not a “silver bullet” to eradicate all smart contract hacks. Nonetheless, it serves as a crucial tool that developers can use to write more secure smart contracts, mitigating potential losses from malicious attacks.

The public release of ConsenSys’ “Diligence Fuzzing” tool marks a significant milestone in the efforts to enhance smart contract security within the DeFi ecosystem. By enabling developers to identify vulnerabilities before contract deployment, the tool can potentially save millions of dollars lost to hacks and security breaches. While it may not provide an absolute solution to all security challenges, it stands as an essential asset in the ongoing battle to safeguard the Web3 community from malicious attacks. With an increasing number of developers recognizing the importance of fuzzing and security tools, the path toward a more secure DeFi landscape becomes clearer.

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Consensys releases new tool for enhanced smart contract security

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年8月2日 12:04
Next 2023年8月2日 13:25

Related articles

  • Dogecoin connection to be unveiled in Elon Musk’s upcoming biography

    TL;DR Breakdown Elon Musk’s forthcoming biography is set to reveal that he has been secretly funding the development of Dogecoin, confirming long-standing rumors about his involvement with the cryptocurrency. The biography will also detail Musk’s ambitious plans to launch a social media platform based on blockchain technology that would incorporate Dogecoin as a payment feature, potentially revolutionizing social media interactions. Description Elon Musk, the billionaire entrepreneur and CEO of Tesla and SpaceX, has long been a figure of intrigue and speculation, especially in cryptocurrencies. A forthcoming biography, set to be published later this month, is expected to shed new light on Musk’s involvement with Dogecoin (DOGE), the popular memecoin. According to a report by the Wall … Read more Elon Musk, the billionaire entrepreneur and CEO of Tesla and SpaceX, has long been a figure of intrigue and speculation, especially in cryptocurrencies. A forthcoming biography, set to be published later this month, is expected to shed new light on Musk’s involvement with Dogecoin (DOGE), the popular memecoin. According to a report by the Wall Street Journal, the biography will reveal…

    Article 2023年9月3日

  • BlackRock is warning U.S. of impending recession – Reasons

    TL;DR Breakdown BlackRock and Amundi, two major asset managers, express concerns about an impending U.S. recession. Despite optimism, there are visible vulnerabilities in the economy, especially in the labor market. Unemployment rose to 3.8% in August, signaling potential economic decline. Description When the investment titans speak, it’s time for the rest of us to listen. BlackRock, the world’s behemoth of asset management, is sounding the alarm bell, signaling caution and concerns about the future health of the U.S. economy. It’s not just an arbitrary worry; there’s a storm brewing on the horizon, and the word ‘recession’ … Read more When the investment titans speak, it’s time for the rest of us to listen. BlackRock, the world’s behemoth of asset management, is sounding the alarm bell, signaling caution and concerns about the future health of the U.S. economy. It’s not just an arbitrary worry; there’s a storm brewing on the horizon, and the word ‘recession’ is whispering through the financial wind. Signs of a Crumbling Economy While most of us might have been lulled into a false sense of security, thinking…

    Article 2023年9月15日

  • Ripple CTO applauds Coinbase’s milestone in the legal clash with SEC

    TL;DR Breakdown Third Circuit Court of Appeals retains jurisdiction over Coinbase’s petition, a significant step in shedding light on the SEC’s secretive processes. Ripple CTO describes Coinbase’s legal battle as a rollercoaster, highlighting the ups and downs faced by the exchange. The court directs the SEC to establish a timetable for deciding Coinbase’s motion and grants four months for progress updates. Description In a recent tweet, Paul Grewal, the chief legal officer of Coinbase, provided an update on the ongoing legal dispute between the cryptocurrency exchange and the Securities and Exchange Commission (SEC). Grewal revealed that the Third Circuit Court of Appeals had decided to retain jurisdiction over Coinbase’s petition seeking basic rules in the crypto space. … Read more In a recent tweet, Paul Grewal, the chief legal officer of Coinbase, provided an update on the ongoing legal dispute between the cryptocurrency exchange and the Securities and Exchange Commission (SEC). Grewal revealed that the Third Circuit Court of Appeals had decided to retain jurisdiction over Coinbase’s petition seeking basic rules in the crypto space. Grewal hailed this move as…

    Article 2023年6月23日

  • Spanish premier bank A&G embraces digital assets with revolutionary crypto fund launch

    TL;DR Breakdown A&G Bank introduces Spain’s first cryptocurrency investment fund, signaling digital asset growth. Client demand drives A&G Bank’s move to offer safer and regulated cryptocurrency investments. A&G Bank assures investors of professional supervision and sound strategies for the new fund. Description In a groundbreaking move, A&G Bank, Spain’s premier private bank, has unveiled an unprecedented cryptocurrency investment fund, signaling a new era of growth in the digital assets sector across the European country. Following successfully registering the fund’s brochure with the National Securities Market Commission (CNMV), Europa Press reports that A&G is set to introduce this … Read more In a groundbreaking move, A&G Bank, Spain’s premier private bank, has unveiled an unprecedented cryptocurrency investment fund, signaling a new era of growth in the digital assets sector across the European country. Following successfully registering the fund’s brochure with the National Securities Market Commission (CNMV), Europa Press reports that A&G is set to introduce this innovative investment product, the first of its kind in Spain. The decision comes as the bank witnessed overwhelming enthusiasm from its clientele regarding cryptocurrency investments….

    Article 2023年7月26日

  • Changpeng Zhao applauds Schiff’s unexpected crypto conversion

    TL;DR Breakdown Peter Schiff surprised many by announcing his involvement in a project centered around NFT art on the Bitcoin blockchain. The project involves collaborating with Market Price, an artist, to create a collection of digital assets called Ordinals. The Taproot upgrade allows users to inscribe various forms of content on individual satoshis, the smallest unit of Bitcoin. In a recent lighthearted tweet, CZ, the well-known figure in the cryptocurrency industry, expressed his delight at Peter Schiff’s unexpected conversion. Schiff, who has long been a vocal critic of Bitcoin and cryptocurrencies, surprised many by announcing his involvement in a new project centered around NFT art on the Bitcoin blockchain. The project involves collaborating with Market Price, one of Schiff’s favorite artists, to create a collection of digital assets called Ordinals, akin to NFTs. This collection will feature the highly anticipated original painting titled “Golden Triumph,” as well as a series of prints and Ordinals inscribed on the Bitcoin blockchain. Although Schiff maintains that he has yet to embrace the crypto world fully, his venture into NFTs demonstrates a growing recognition…

    Article 2023年5月31日
TOP