Skip to main content

'First' Ethereum Decompiler Launches With JP Morgan Quorum Integration

The ethereum virtual machine (EVM) now has what appears to be its first ever decompiler designed to revert smart contracts into source code.
Announced onstage today by the founder of cybersecurity startup Comae Technologies at the DefCon hacker conference in Las Vegas, the open-source EVM decompiler was designed to make it easier to identify bugs in ethereum smart contracts.
Coming at a time when a string of ethereum hacks have exposed the difficulty of writing secure smart contract code, the decompiler, called Porosity, promises to let developers revert difficult to understand EVM bytecode back to its original state.
Porosity developer and Comae founder, Matt Suiche, told CoinDesk:
"The initial problem I was trying to solve by writing a decompiler is to be able to have the actual source code, without having access to the actual source code by reverse engineering."
Also announced today, Porosity is now integrated with JP Morgan's open-source Quorum blockchain created for enterprise-grade solutions, and it will now be available on the bank's Github page.
Tested with the help of some of JP Morgan's own engineers, Porosity and Quorum are expected to be packaged together to help run real-time smart contract security checks. The bundle, integrated directly into the Go-language ethereum implementation geth "out of the box," incorporates security and patching processes for private networks with formal governance models.
JP Morgan blockchain lead Amber Baldet described to CoinDesk what she believes is the significance of the technology, stating:
"Porosity is the first decompiler that generates human-readable Solidity syntax smart contracts from Ethereum Virtual Machine bytecode"

A time of need

While Suiche said he's new to blockchain, the serial entrepreneur who sold his previous startup to VMware was rather well prepared to build the decompiler.
As a reverse engineer, Suiche is familiar with starting with a product, and figuring out how to strip it down to its most basic parts.
Porosity
So in February, when he began researching ethereum smart contracts in depth, he almost accidentally built the decompiler as part of his own personal research.
As Porosity's launch comes in a month when ethereum smart contracts written for CoinDashParity and Veritaseum have all been hacked, Suiche thinks his chosen profession as a reverse engineer is about to see increased demand.
"The security community in ethereum is going to grow," he said "And we're going to see more and more reverse engineers."

The business of decompiling

Still, there's more to the business motivations driving decompiler use than just ensuring your funds remain secure.
Because vulnerabilities are frequently discovered long after a smart contract is implemented, an EVM decompiler can also bring peace of mind to investors, according to Alex Rass, CEO of customer software provider and cybersecurity consultant firm ITBS LLC.
According to Rass, decompilers are common among most "major" programming languages, in part because they help provide investors assurance that what they invested in is what is being used.
Rass said:
"With a decompiler someone with half a brain can go, pull the contract binary code for that contract and see that contract, and provide investors with what they purchased."
Link: https://www.coindesk.com/first-ethereum-decompiler-launches-jp-morgan-quorum-integration/

Comments

Post a Comment

Popular posts from this blog

How Blockchain Could Help Tech Giant Cisco Reboot

Cisco is changing. The technology firm best known as the supplier of enterprise computer hardware has seen a slow, steady decline in revenue from some of its core products. As a result of an increasing number technological services being virtualized, and the storage of information moving to the cloud, the $158bn firm has been  restructuring  and exploring new ways to capitalize on connected devices. But amidst this change in identity, it's in identity itself where some of the California-based company's most interesting new experiments are taking place. With a series of early stage blockchain  projects , Cisco is now pushing even deeper into what could end up being much more than a way for employees to prove who they are across subsidiaries. In conversation with CoinDesk, Robert Greenfield IV, Cisco software engineer and executive team lead of the firm's Connected Black Professionals resource group, explained how several blockchain projects have evolv...
Post a Comment
Read more

Bitcoin in Africa: Insights from the Continent’s Biggest Bitcoin Exchange

Isn’t it absurd that nearly 326 million people representing 80% of the adult population in Africa do not have access to bank accounts? This wretched situation denies countless of people financial freedom in the so-called dark continent. Bureaucratic tenors and economic exclusion inter alia have paved the way for the current phenomenon. Last year a study of 10 African nations with unusual inflationary ratio had South Sudan registering an unimaginable inflation rate of 295 percent. Egypt had the slightest with 12.30 percent. African governments continue to plunder the riches of the African people through Inflation. This makes it considerably insurmountable for individuals to conserve their resources. Moreover, public sector borrowing has crowded out the efficient private sector that can put credit to good use. The IMF estimates that averagely credit to the private sector is estimated at 30 percent of GDP in Sub-Sahara Africa. CCN spoke to Werner van Rooyen, Head of Business Develo...
Post a Comment
Read more

WANT TO BUY BITCOIN IN SOUTH AFRICA , KENYA, UGANDA, NIGERIA, GHANA OR OTHER COUNTRIES IN AFRICA? SIMPLE.

With the growing awareness around Africa of bitcoin as a crypto-currency, a means of remittance and a creator of  wealth, more and more people in more and more countries are looking to buy it, and asking how and where they can buy it. Purchasing bitcoin is simple. Simply go online and do a search for “Buying and selling bitcoin in South Africa ““Buying and selling bitcoin in Kenya “Buying and selling bitcoin in Uganda ““Buying and selling bitcoin in Nigeria “ or  “Buying and selling bitcoin in Ghana“ – you get the idea.   To help you though:   In South Africa, three of the most common (and trusted) platforms are: www.localbitcoins.com www.luno.com www.bitx.co In Kenya, the most common (and trusted) platforms) are: www.localbitcoins.com www.bitpesa.co whilst other platforms include: www.altcoins.io www.99bitcoins.com In Uganda, the most common (and trusted) platforms) are: www.localbitcoins.com www.bitpesa.co whilst other platforms incl...
Post a Comment
Read more