Ethereum: Birthday attack on P2SH

Etherreum: birthday attack on P2SH – Securiites susceptibility to watching

Ason from the most popular and used by windy blockchain pletforms, Etherreum is a pioneer in non -confidential variety of safety functions. Howver, determined susceptibility to susceptibility with the payment report variant 2 (P2), specified in the Hash160 algorithm. The birthday of birthday attacks, these weaknesses are a significant safety threshold and integrity of EtheRemeum traction based on P2SH.

Hash160 algorithm

Hash160 I am an algorithm developed by RIPEMD, which means researching the protocol with Messagesting (puree) of algorithmic design. It is primary sweet in bitcoins and cryptocans of other sizes to create a digital signature for each data block. What has applied for P2SH transaction on Eetheum, the Hash160 algorithm is used to verify the integrity and authority of these transactions.

birthday sensitivity to sensitivity

Apparently, he attacks susceptibility in a way of susceptibility to the way of calculating the results. In particular, ET presents a collision proposal that may collide the others. Simply put, specific input data (“birday”) still multiply possible outputs. Carefully selecting the input data and analyzing corporations, the attackers can be confidential information about other “series” or private.

In the case of Ethereum, this susceptibility can be used with the help of a malicious actor with access to the Hash160 algorithm to guess a private diet diet, password user phrase. IIF, which is summarized, can sail away with the fate of a wakenta or unauthorized control over these assets.

influence and alleviation

Birthday attacks clearly new and smells of discomfort in various forms and implementation of Ethereum. Everything was delighted with the risk:

• Safe key derivatives

  ::

2.

• * Regular audits of Sekurty: regularly performed security of Ethereum implementation to detect potential tension like this.

*Application

While the birthday attacks of P2SH transactions in Ethereum improve the slight comparison with other security councils, the most important information about continuous software development and testing of forces to resorts. Because programmers and users still cross the boundaries of what they have and uses possible in systems, it is necessary to vigilant potential.

To sum up that it is published and fight to relieve objects, we can cooperate towards the created and trustworthy ecosystem related to Bogetum.