Bridge attacks will still pose a major challenge for DeFi in 2023: Security experts

Published at: Dec. 23, 2022

Security has been a critical challenge for decentralized finance (DeFi) and its evolution. Between 2020 and 2022, hackers stole over $2.5 billion through vulnerabilities on cross-chain bridges, Token Terminal data shows. Compared to other security breaches, this is a substantial amount.

Issues with bridges have a root cause: All of them have an "inherent vulnerability," Theo Gauthier, founder and CEO of Toposware, told Cointelegraph. According to Gauthier, no matter how secure a bridge is on its own, it is "entirely reliant on the security of the chains it connects," meaning that any breach or bug within one of the two bridged chains makes the overall bridge vulnerable.

Briefly, bridges are used to connect different blockchains and aim to address the lack of standards between protocols. Interoperability between blockchains is considered to be a critical goal for enhancing the end-user experience and promoting broader crypto adoption.

Solutions for interoperability and security in the crypto industry are gaining traction despite the bear market. One of the major technologies available is zero-knowledge rollups (ZKPs), which allow data to be verified and proven as accurate without revealing further information, unlike typical interoperability solutions that require networks to disclose their states.

Related: Industry execs voice confidence in DeFi adoption despite security flaws

Through ZKPs, it is also possible to create a ZK-powered Ethereum Virtual Machine (EVM), noted Polygon's chief information security officer Mudit Gupta, allowing developers to launch scalable and completely private Ethereum compatible smart contracts. Gupta also noted that:

"We believe in the old crypto adage of “don’t trust, verify.” With ZK powered solutions, this is absolutely possible. The zkEVM has shown that it can maintain privacy, decentralization, speed and scalability. With this, there is no need to sacrifice anything that has made the crypto space what it is, and in fact it improves it."

For bridges, the solution would be auditing and real-time monitoring standards, noted Gustavo Gonzalez, solutions developer at Open Zeppelin. Bridges smart contracts "should be audited, ideally by multiple third parties, before being released “into the wild.” New audits should happen anytime updates are made, and all results should be transparently shared with the community."

Machine learning technology could also be used to flag potentially suspicious patterns of activity with advanced security monitoring, detecting an attack before it actually happens, said Gonzalez.

Combining security software solutions with blockchain protocols could make the entire space more secure for users and investors. A Bitcoin (BTC) maximalist would say "Just use Bitcoin, and you won't have these issues at all." While smart contracts for Bitcoin are in the works, DeFi players will be tasked with building trust within their respective ecosystems amid ongoing security concerns.

Tags
Blockchain
Defi
Chain
Related Posts
The future of DeFi is spread across multiple blockchains
Long stuck in the shadows of Bitcoin (BTC), Ethereum (ETH) finally took hold of the market in 2020 during the decentralized finance summer. Designed to recreate traditional financial systems with fewer middlemen, DeFi is now being used across lending, borrowing, and the buying and selling of tokens. The majority of these decentralized applications (DApps) are run on Ethereum, which saw activity on the network increase during 2020. This activity also trended upwards due to yield farming, also known as liquidity mining, which enables holders to generate rewards with their crypto capital. But as activity on Ethereum increased, so too did …
Technology / July 31, 2021
Polkadot envisions Web3 disruption with multiple parachain launches
Open-source blockchain platform Polkadot announced the launch of its first parachains (or parallelized chain) aimed at improving the interoperability between multiple blockchains. According to the announcement, the Polkadot team invested five years into the development of the parachains, which were allocated to teams via auctions, namely, Acala, Moonbeam, Parallel Finance, Astar, and Clover. With individual blockchains running in parallel within the Polkadot ecosystem, the auction winners will be able to lease slots on Polkadot's Relay Chain for up to 96 weeks at a time. Developed by Polkadot Founder and Ethereum co-founder Gavin Wood, the Relay Chain helps in coordinating the …
Adoption / Dec. 19, 2021
Chainalysis announces $170M funding round, platform now valued at $8.6 billion
Chainalysis, a blockchain analytics provider, has announced its $170 million Series F funding round. The fresh funding succeeded its $100 million raise back in June 2021 and more than doubly exceeded its valuation of $4.2 billion at the same time. The raise was led by Singaporean sovereign wealth fund GIC and further participated in by investors Accel — who previously led Chainalysis' $30 million Series B round in 2019, as well as Blackstone, Dragoneer and FundersClub. Bank of New York Mellon and Emergence Capital also participated in the round as first entries. According to the announcement, the funds will be …
Blockchain / May 12, 2022
Tornado Cash saga left a void, says Chainalysis chief scientist: Finance Redefined
Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you significant developments over the last week. Chainalysis chief scientist shared his views on the Tornado Cash saga and said that the incident has left a void for illicit fund mixing services, but the real impact of the sanctions could be determined in the long run. The staking ecosystem of Ethereum post Merge could have a significant impact on the crypto economy, according to a new report. Institutional lending platform Mapple Finance launched a $300 million lending pool for Bitcoin mining …
Blockchain / Sept. 23, 2022
Serum exchange rendered 'defunct' following the collapse of Alameda and FTX
The Solana-based decentralized exchange (DEX) has notified its community that the collapse of its backers — Alameda and FTX — has rendered its program “defunct”. The team behind the project shared that “there is hope”, in spite of its ongoing challenges, because of the community option available to "fork" Serum. What's next for @ProjectSerum With the collapse of Alameda and FTX, the Serum program on mainnet became defunct. As upgrade authority is held by FTX, security is in jeopardy, leading to protocols like @JupiterExchange and @RaydiumProtocol moving away from Serum. — Serum (@ProjectSerum) November 29, 2022 According to the announcement, …
Technology / Nov. 29, 2022