Coindesk Logo

Privacy Coin Firo Re-Launches Lelantus Protocol After February Suspension

Privacy Coin Firo Re-Launches Lelantus Protocol After February Suspension

Privacy Coin Firo Re-Launches Lelantus Protocol After February Suspension

The protocol was disabled while the Firo team investigated a number of suspicious transactions .

The protocol was disabled while the Firo team investigated a number of suspicious transactions .

The protocol was disabled while the Firo team investigated a number of suspicious transactions .

AccessTimeIconApr 23, 2021, 7:23 PM
Updated Aug 19, 2021, 9:00 AM

Presented By Icon

Election 2024 coverage presented by

Stand with crypto

The Firo privacy coin’s Lelantus protocol has been reactivated following a hard fork on April 22. The hard fork took place on block 365544.

The protocol was disabled due to a number of suspicious transactions while the Firo team investigated. This was the second recent obstacle for the protocol, which also underwent a 51% attack earlier this year.

“In February, an unknown attacker utilized Firo’s Lelantus privacy protocol to forge fake proofs in an attempt to generate new coins, which led to abnormalities in the system,” said project steward Reuben Yap in an email. “The Firo team swiftly noticed this and used the emergency switch functionality to temporarily disable Lelantus until the situation could be resolved.”

According to Yap, Lelantus was audited before its deployment on the mainnet. However, while translating the math to code not everything was caught – even in the audited cryptographic library. 

Firo has since incorporated a variety of optimizations to harden the protocol. 

How the attack occurred

In this case, the attacker forged a spend, but in order to make the transaction seem legit the person “time traveled” back a bit to set up the necessary events. Specifically, the attacker started constructing the first proof. Halfway through, the person stopped and made a different proof. 

Upon completing the second proof, the attacker went back and edited the first proof, doing the necessary back-calculation to ensure the math would check out (balancing the serial numbers to fool the verifier) and both proofs would work together. 

When executed properly, this sort of double-spend attack allows the nefarious actor to “duplicate” funds.

“If the audience sees you shuffle the deck first, it’s easier to think you did something wild and magical,” said Dr. Aaron Feickert, a former Monero Research Lab researcher, describing the attack. “This attack is like being allowed to examine the deck and order it in front of the audience. The trick doesn’t seem so magical anymore.”

Earlier this month, Feickert joined the Firo team under a full-time contract through Cypher Stack, a blockchain consultancy and digital utilities provider. In this role, he has helped Firo analyze the suspicious activity attack and implement fixes alongside Firo’s Aram Jivanyan, Levon Petrosyan, Peter Shugalev and PinkPanther. He also recommended several of the optimizations Firo added, helped harden the protocol and provided design feedback for Lelantus version 2.

The Lelantus protocol was originally launched in mid-January. It introduced “on-by-default” privacy and prompts users to anonymize their funds with the goal of ensuring transactions sent by official Firo wallets stay private. Transparent transactions have to be explicitly selected. It also allows for partial redemptions of its native FIRO coin through its burn-and-redeem model. 

Disclosure

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information have been updated.

CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. CoinDesk has adopted a set of principles aimed at ensuring the integrity, editorial independence and freedom from bias of its publications. CoinDesk is part of the Bullish group, which owns and invests in digital asset businesses and digital assets. CoinDesk employees, including journalists, may receive Bullish group equity-based compensation. Bullish was incubated by technology investor Block.one.


Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.