• bitcoinBitcoin (BTC) $ 109,421.00
  • ethereumEthereum (ETH) $ 3,841.58
  • tetherTether (USDT) $ 0.999732
  • xrpXRP (XRP) $ 2.50
  • bnbBNB (BNB) $ 1,089.04
  • solanaSolana (SOL) $ 186.80
  • usd-coinUSDC (USDC) $ 0.999801
  • staked-etherLido Staked Ether (STETH) $ 3,841.21
  • dogecoinDogecoin (DOGE) $ 0.186163
  • tronTRON (TRX) $ 0.296091
  • cardanoCardano (ADA) $ 0.607835
  • wrapped-stethWrapped stETH (WSTETH) $ 4,680.16
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.04
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 109,273.00
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 4,153.68
  • chainlinkChainlink (LINK) $ 17.16
  • hyperliquidHyperliquid (HYPE) $ 43.43
  • bitcoin-cashBitcoin Cash (BCH) $ 534.91
  • wrapped-eethWrapped eETH (WEETH) $ 4,149.86
  • stellarStellar (XLM) $ 0.304061
  • ethena-usdeEthena USDe (USDE) $ 0.998777
  • usdsUSDS (USDS) $ 0.999704
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.999874
  • leo-tokenLEO Token (LEO) $ 9.53
  • suiSui (SUI) $ 2.35
  • hedera-hashgraphHedera (HBAR) $ 0.201677
  • wethWETH (WETH) $ 3,843.26
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 109,387.00
  • avalanche-2Avalanche (AVAX) $ 18.14
  • litecoinLitecoin (LTC) $ 95.15
  • whitebitWhiteBIT Coin (WBT) $ 47.06
  • zcashZcash (ZEC) $ 405.38
  • moneroMonero (XMR) $ 335.40
  • shiba-inuShiba Inu (SHIB) $ 0.000010
  • the-open-networkToncoin (TON) $ 2.29
  • usdt0USDT0 (USDT0) $ 0.999480
  • crypto-com-chainCronos (CRO) $ 0.145295
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.20
  • mantleMantle (MNT) $ 1.46
  • daiDai (DAI) $ 0.999523
  • bittensorBittensor (TAO) $ 483.34
  • polkadotPolkadot (DOT) $ 2.87
  • memecoreMemeCore (M) $ 2.50
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.136698
  • aaveAave (AAVE) $ 228.36
  • uniswapUniswap (UNI) $ 5.74
  • susdssUSDS (SUSDS) $ 1.07
  • bitget-tokenBitget Token (BGB) $ 4.51
  • okbOKB (OKB) $ 142.20
  • usd1-wlfiUSD1 (USD1) $ 0.999519
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • paypal-usdPayPal USD (PYUSD) $ 0.999957
  • ethenaEthena (ENA) $ 0.390360
  • pepePepe (PEPE) $ 0.000007
  • nearNEAR Protocol (NEAR) $ 2.09
  • jito-staked-solJito Staked SOL (JITOSOL) $ 231.52
  • ethereum-classicEthereum Classic (ETC) $ 15.85
  • aptosAptos (APT) $ 3.25
  • binance-peg-wethBinance-Peg WETH (WETH) $ 3,845.34
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 5.42
  • ondo-financeOndo (ONDO) $ 0.684945
  • falcon-financeFalcon USD (USDF) $ 0.996617
  • tether-goldTether Gold (XAUT) $ 4,004.32
  • pi-networkPi Network (PI) $ 0.246868
  • aster-2Aster (ASTER) $ 0.991835
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.183704
  • usdtbUSDtb (USDTB) $ 0.999521
  • worldcoin-wldWorldcoin (WLD) $ 0.795965
  • kucoin-sharesKuCoin (KCS) $ 13.37
  • htx-daoHTX DAO (HTX) $ 0.000002
  • rocket-pool-ethRocket Pool ETH (RETH) $ 4,414.70
  • binance-staked-solBinance Staked SOL (BNSOL) $ 201.67
  • pump-funPump.fun (PUMP) $ 0.004604
  • arbitrumArbitrum (ARB) $ 0.294491
  • official-trumpOfficial Trump (TRUMP) $ 8.00
  • internet-computerInternet Computer (ICP) $ 2.94
  • algorandAlgorand (ALGO) $ 0.177045
  • gatechain-tokenGate (GT) $ 13.16
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 43.76
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 4,062.61
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 4,060.25
  • hash-2Provenance Blockchain (HASH) $ 0.028395
  • story-2Story (IP) $ 4.37
  • kaspaKaspa (KAS) $ 0.052639
  • cosmosCosmos Hub (ATOM) $ 2.96
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.10
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 4,126.11
  • vechainVeChain (VET) $ 0.015570
  • wbnbWrapped BNB (WBNB) $ 1,089.00
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.13
  • pax-goldPAX Gold (PAXG) $ 3,997.99
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 109,341.00
  • bfusdBFUSD (BFUSD) $ 0.999441
  • skySky (SKY) $ 0.056048
  • jupiter-exchange-solanaJupiter (JUP) $ 0.404138
  • flare-networksFlare (FLR) $ 0.016170
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 4,083.01
  • sei-networkSei (SEI) $ 0.189935
  • quant-networkQuant (QNT) $ 79.79
  • render-tokenRender (RENDER) $ 2.22
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999963
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.018079
  • nexoNEXO (NEXO) $ 1.10
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 109,338.00
  • bonkBonk (BONK) $ 0.000014
  • filecoinFilecoin (FIL) $ 1.51
  • xdce-crowd-saleXDC Network (XDC) $ 0.060088
  • morphoMorpho (MORPHO) $ 1.96
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.999148
  • global-dollarGlobal Dollar (USDG) $ 0.999763
  • immutable-xImmutable (IMX) $ 0.491923
  • ripple-usdRipple USD (RLUSD) $ 0.999875
  • aerodrome-financeAerodrome Finance (AERO) $ 1.06
  • mantle-staked-etherMantle Staked Ether (METH) $ 4,140.37
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 214.18
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 1.37
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 109,380.00
  • clbtcclBTC (CLBTC) $ 109,653.00
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.42
  • hashnote-usycCircle USYC (USYC) $ 1.10
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 10.88
  • spx6900SPX6900 (SPX) $ 0.841617
  • ousgOUSG (OUSG) $ 113.13
  • lido-daoLido DAO (LDO) $ 0.868326
  • msolMarinade Staked SOL (MSOL) $ 249.37
  • cgeth-hashkey-cloudcgETH Hashkey Cloud (CGETH.HASH) $ 3,869.70
  • fasttokenFasttoken (FTN) $ 1.74
  • optimismOptimism (OP) $ 0.398476
  • celestiaCelestia (TIA) $ 0.898204
  • blockstackStacks (STX) $ 0.412822
  • injective-protocolInjective (INJ) $ 7.57
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.10
  • usdx-money-usdxStables Labs USDX (USDX) $ 0.998052
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 3,841.46
  • curve-dao-tokenCurve DAO (CRV) $ 0.478839
  • flokiFLOKI (FLOKI) $ 0.000070
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 4,053.66
  • dashDash (DASH) $ 53.37
  • tbtctBTC (TBTC) $ 109,164.00
  • the-graphThe Graph (GRT) $ 0.061227
  • doublezeroDoubleZero (2Z) $ 0.180528
  • tezosTezos (XTZ) $ 0.579590
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.236142
  • pyth-networkPyth Network (PYTH) $ 0.105996
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 3,842.59
  • kaiaKaia (KAIA) $ 0.103369
  • beldexBeldex (BDX) $ 0.080811
  • stader-ethxStader ETHx (ETHX) $ 4,124.01
  • gtethGTETH (GTETH) $ 3,836.32
  • usdaiUSDai (USDAI) $ 1.01
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999801
  • plasmaPlasma (XPL) $ 0.301069
  • iotaIOTA (IOTA) $ 0.137100
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999773
  • ether-fiEther.fi (ETHFI) $ 0.964603
  • usual-usdUsual USD (USD0) $ 0.998285
  • newton-projectAB (AB) $ 0.006277
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 4,227.51
  • humanityHumanity (H) $ 0.291649
  • conflux-tokenConflux (CFX) $ 0.101132
  • sonic-3Sonic (S) $ 0.135894
  • trust-wallet-tokenTrust Wallet (TWT) $ 1.25
  • pendlePendle (PENDLE) $ 3.06
  • swethSwell Ethereum (SWETH) $ 4,241.65
  • dogwifcoindogwifhat (WIF) $ 0.513459
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 109,510.00
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 1.00
  • the-sandboxThe Sandbox (SAND) $ 0.201486
  • true-usdTrueUSD (TUSD) $ 0.997995
  • ethereum-name-serviceEthereum Name Service (ENS) $ 14.73
  • wrapped-hypeWrapped HYPE (WHYPE) $ 43.60
  • theta-tokenTheta Network (THETA) $ 0.486266
  • syrupMaple Finance (SYRUP) $ 0.432267
  • jasmycoinJasmyCoin (JASMY) $ 0.009976
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.11
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.186472
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 3,839.06
  • bittorrentBitTorrent (BTT) $ 0.00000047
  • galaGALA (GALA) $ 0.010048
  • heliumHelium (HNT) $ 2.47
  • starknetStarknet (STRK) $ 0.102611
  • usddUSDD (USDD) $ 0.999638
  • arbitrum-bridged-wrapped-eethArbitrum Bridged Wrapped eETH (Arbitrum) (WEETH) $ 4,146.54
  • bitcoin-svBitcoin SV (BSV) $ 22.11
  • raydiumRaydium (RAY) $ 1.63
  • decentralandDecentraland (MANA) $ 0.226347
  • ghoGHO (GHO) $ 0.999304
  • vaultaVaulta (A) $ 0.266341
  • benqi-liquid-staked-avaxBENQI Liquid Staked AVAX (SAVAX) $ 22.33
  • sun-tokenSun Token (SUN) $ 0.022071
  • flowFlow (FLOW) $ 0.259998
  • polygon-pos-bridged-weth-polygon-posPolygon PoS Bridged WETH (Polygon POS) (WETH) $ 3,843.94
  • mantle-restaked-ethMantle Restaked ETH (CMETH) $ 4,143.25
  • astherus-staked-bnbAster Staked BNB (ASBNB) $ 1,151.29
  • swissborgSwissBorg (BORG) $ 0.411518
  • kinetiq-earn-vaultKinetiq Earn Vault (VKHYPE) $ 43.94
  • cognifyCognify (SN115) $ 1,762.47
  • usdbUSDB (USDB) $ 0.985071
  • apenftAINFT (NFT) $ 0.00000040
  • eigenlayerEigenCloud (prev. EigenLayer) (EIGEN) $ 0.917754
Bitcoin

Succinct’s SP1 bug sparks transparency debate in ZK security

By admin
0 53

Succinct’s SP1 bug sparks transparency debate in ZK security

This is a segment from the 0xResearch newsletter. To read full editions, subscribe.

Succinct’s SP1 ZKVM has come under scrutiny after LambdaClass disclosed a critical security vulnerability in its proof generation. The exploit in version 3 of SP1, discovered in collaboration with 3Mi Labs and Aligned, stemmed from the interaction of two separate security flaws.

Succinct previously disclosed the potential exploit to its customers via Github and Telegram.

Here’s what happened in simple terms:

  1. Missing Verification Step — The system relied on a list to track key proof components but didn’t properly verify that the list was accurate. Consequently, a malicious prover could potentially manipulate it to produce invalid proofs. New checks were added to fix the oversight.
  2. Incomplete Proof Flag — A key part of SP1’s proof-checking system included a flag meant to confirm that a proof was fully executed. However, this flag wasn’t always properly enforced, leading to a potential loophole. Succinct tightened up the checks.
  3. Polynomial Evaluation Issue — An issue found in Plonky3 (a dependency of SP1), meant that it didn’t fully verify all calculations before confirming a proof was valid. Post-patch, all proof components are properly verified.

While the vulnerability was quickly addressed prior to the disclosure, the process has raised concerns about transparency in security practices for zero-knowledge virtual machines (ZKVMs). SP1’s technology is currently underpinning high profile upgrades in rollup infrastructure under development.

  • Mantle Network has integrated SP1 to transition into a zero-knowledge (ZK) validity rollup, aiming to enhance transaction finality times and support institutional-grade asset settlements.
  • The AggLayer employs SP1 to generate pessimistic proofs, ensuring the security of its cross-chain interoperability solutions.
  • Taiko has adopted SP1 as a ZK prover to secure its layer-2 execution, which uses a multi-prover system
  • Soon, a relatively new project, is building an SVM rollup framework that settles to Ethereum with ZK fault proofs powered by SP1, similar to Eclipse, although the latter uses RISC Zero instead.

Transparency and implications

LambdaClass cautioned that the full implications of the flaw required further assessment. Notably, the exploit depended on the interplay between the two issues, meaning that fixing one might not be sufficient to prevent exploitation.

LambdaClass developer known as Fede, highlighted on social media that his team felt compelled to make the disclosure public after perceiving a lack of urgency in Succinct’s communication about the issue.

Succinct’s leadership acted responsibly in fixing the issue, according to Avail’s Anurag Arjun, but he agreed better public disclosure practices are needed.

“ZKVM systems are very new and are constantly being updated, so you’d expect vulnerabilities,” Arjun told Blockworks. “In an open-source setting, anyone can run the prover, and if vulnerabilities aren’t disclosed properly, that’s definitely a risk.”

The Avail team, which uses SP1 for proof generation in its consensus mechanism, was informed about the issue privately ahead of public disclosure, Arjun confirmed.

Avail’s implementation was not exposed to risk, Arjun said, because they rely on Succinct’s proprietary prover, which remains permissioned. Avail’s rollup clients have also not yet begun using its SP1-powered bridge contract, so there was no practical impact.

Meanwhile, defenders of Succinct point out that responsible disclosure typically involves private reporting before public statements to avoid unnecessary panic and potential exploitation.

Succinct’s updated version 4 of SP1 — dubbed Turbo — resolves the identified vulnerability, and downstream projects have begun integrating these fixes.

The case illustrates how even well-audited code can and does contain bugs. As Succinct put it, “while auditors provide valuable insights, they are not infallible, and we remain committed to continuously improving and working hard to ensure our systems are safe and secure for everyone.”

The more explicit, if belated transparency from Succinct drew praise. What remains is the question of how to best balance security, transparency, and user protection. And finding the line between due criticism and toxic infighting.

Source

admin 14618 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.