-
Notifications
You must be signed in to change notification settings - Fork 5
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
security: order replay #159
Comments
Considering nullifier. I think 'prove something happened/exists' in zkrollup is easy, while 'prove something did not happen / does not exist' seems a bit hard, nullifier is a general solution. But nullifier has some performance problems... anyway ... it is not a blocking issue |
https://medium.com/aztec-protocol/aztecs-zk-zk-rollup-looking-behind-the-cryptocurtain-2b8af1fca619
|
seems not easy to prevent operator from replaying users' orders.
Be careful here.
ref: https://ethresear.ch/t/account-based-anonymous-rollup/6657
The current circuirts code may not be correct. A evil operator can put order into the tree more than once.
The text was updated successfully, but these errors were encountered: