Content pfp
Content
@
0 reply
0 recast
0 reaction

Lyron Co Ting Keh pfp
Lyron Co Ting Keh
@lyronctk
Run the EVM in an MPC. Would be a significant contribution if someone pulled this off. Why? We're increasingly seeing a reliance on TEEs for shielding smart contract info. Uncomfortable security model. EVM in an MPC alleviates these concerns. ...
1 reply
0 recast
1 reaction

Lyron Co Ting Keh pfp
Lyron Co Ting Keh
@lyronctk
TEE is bad because user secrets are stored in some AWS instance. Sure, there are hardware guarantees, but these have repeatedly proven to be breakable. Next best solution? EVM in MPC. Splits the user secrets across multiple machines using TSS (threshold secret sharing).
1 reply
0 recast
0 reaction

Lyron Co Ting Keh pfp
Lyron Co Ting Keh
@lyronctk
Even better if you mix and match between different TEEs (AWS Nitro, GCP SEV, Intel SGX, ...)
1 reply
0 recast
0 reaction

Lyron Co Ting Keh pfp
Lyron Co Ting Keh
@lyronctk
So attack goes from: Break into one enclave. To now: Break into five diff enclaves in a night. Requires coordinated attacks on Google / Amazon / Intel data centers. And each attack needs 10+ burly guys (to get through the armed guards) and 2+ nerds (to break the enclaves).
1 reply
0 recast
0 reaction