Web3 on Matt Suichehttps://www.msuiche.com/categories/web3/Recent content in Web3 on Matt SuicheHugoen-usMon, 22 Aug 2022 12:00:00 +0200Vegas 2022 - A web3 security reviewhttps://www.msuiche.com/posts/vegas-2022-a-web3-security-review/Mon, 22 Aug 2022 12:00:00 +0200https://www.msuiche.com/posts/vegas-2022-a-web3-security-review/<p>This year marks 5 year since I gave my first blockchain/web3 related presentation at DEFCON 25 when I presented <a href="https://www.msuiche.com/posts/porosity-a-decompiler-for-blockchain-based-smart-contracts-bytecode/" target="_blank" rel="noopener">Porosity</a> which was an experimental decompiler and static analysis tool for Ethereum Virtual Machine bytecode, but also mentioned on why we should keep an eye on WebAssembly Virtual Machines back when eWASM was being drafted and an option for Ethereum as a replacement for EVM itself.</p> <p>Since then, new layer 1 blockchains have emerged such as <a href="https://docs.solana.com/developing/on-chain-programs/overview" target="_blank" rel="noopener">Solana</a> (eBPF-variant), and <a href="https://nomicon.io/RuntimeSpec/Components/" target="_blank" rel="noopener">NEAR</a> &amp; <a href="https://medium.com/polkadot-network/wasm-on-the-blockchain-the-lesser-evil-da8d7c6ef6bd" target="_blank" rel="noopener">Polkadot</a> (WebAssembly) as part of a new wave of architectures relying on the LLVM compiler and ELF file formats, instead of reinventing the wheel like the Ethereum Virtual Machine and Solidity programming language.</p>Smart Contract Languages to Followhttps://www.msuiche.com/posts/smart-contract-languages-to-follow/Wed, 27 Dec 2017 12:00:00 +0200https://www.msuiche.com/posts/smart-contract-languages-to-follow/<p>What languages I’ll keep a close look at next year (2018)</p> <p><p class="markdown-image"> <img src="https://cdn-images-1.medium.com/max/2000/1*LBiugCr0P4iN_qhHfthhQQ.png" alt="If “crypto” stands for cryptography… then, is my auto-correct right to call “cryptocurrencies” just “currencies”?" /> </p><em>If “crypto” stands for cryptography… then, is my auto-correct right to call “cryptocurrencies” just “currencies”?</em></p> <p>Cryptocurrencies and blockchain made a lot of noise this year, good and bad. Smart contracts are finding new use cases (e.g. <a href="https://www.cryptokitties.co/" target="_blank" rel="noopener">CryptoKitties</a>), and some existing use case like multi-sig wallets (e.g. Parity) have been challenged due to their high complexity which introduced, like any piece of complex software, <a href="https://www.msuiche.com" target="_blank" rel="noopener">security vulnerabilities.</a></p>