Systems that rely on trusted authorities can be compromised with low cost (case in point: SSL/TLS). Panvala solves this problem by decentralizing trust through a token-curated registry.https://twitter.com/PanvalaMark/status/1016337610787180545 …
-
-
Replying to @muellerberndt
This pushes a HUGE amount of risk onto security reviewers and away from the contract owners. Won't people just attack or sue the parties voting in support of contracts when bugs are found later?pic.twitter.com/80u0HHFa9D
3 replies 0 retweets 0 likes -
Replying to @dguido
The Panvala mark means that a majority of participants agree that certain standards have been followed. It's the task of the community to ensure that the standards are sufficient to prevent bugs (e.g. cross checking audit-reports).
1 reply 0 retweets 0 likes -
Replying to @muellerberndt @dguido
But as we all know, there's never a 100% guarantee. The TCR reflects the opinion of the security community as a whole (hopefully including
@TrailofBits). Consumer reports is a good analogy.2 replies 0 retweets 1 like -
The legal aspects are certainly important. But that's true for companies that do security audits anyway.
1 reply 0 retweets 1 like
None of our reports say, "This contract is safe to use." The vast majority of our reports never reach the internet, and for good reason. They intended audience are engineering teams, not the public. The contract owners should stand behind their code, not me.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.