Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Watchdog should verify published header hash match expected header hash #691

Open
mfornet opened this issue Jan 12, 2022 · 0 comments
Open

Watchdog should verify published header hash match expected header hash #691

mfornet opened this issue Jan 12, 2022 · 0 comments
Assignees
@sept-en
Labels
P1 security

Comments

@mfornet
Copy link
Contributor

mfornet commented Jan 12, 2022

If 2/3 of near validators (weighted by stake) collude, they can sign an invalid block that withdraw all the funds from the bridge, without actually broadcasting this block to NEAR network, and pushing this block to NEAR Light Client on Ethereum. If this is done, the watchdog will not be able to detect the malicious behaviour, only from the published data on Ethereum, given it will appear as legit.

Moreover this block can't be challenged.

The watchdog should be connected to a trusted NEAR node, and as part of all the checks, verify the header hash matches NEAR header hash published on the network at that height. If the hash doesn't match, and alert should be triggered, to freeze the bridge. This is becoming more relevant, as the TVL of the bridge increase, an incentives for collusion increase with it.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sept-en sept-en

Labels
P1 security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sept-en @mfornet