Skip to content

fireblocks-labs/bitgo-tss-exploit-poc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
README.md
README.md
 
 
ecdsa-poc-2-diff.patch
ecdsa-poc-2-diff.patch
 
 
ecdsa-poc-diff.patch
ecdsa-poc-diff.patch
 
 
ecdsa-poc-preview.gif
ecdsa-poc-preview.gif
 
 

Repository files navigation

BitGo TSS Exploit PoCs

ECDSA

First ECDSA Exploit

This exploit is described here

Impact: full key exfiltration within 1 signature

git clone https://github.com/BitGo/BitGoJS.git BitGoJS-ecdsa
cd BitGoJS-ecdsa
git checkout 9bc367c47efd5998659123ba78f63599b071c565
git apply ../ecdsa-poc-diff.patch
yarn install
cd modules/account-lib
yarn run unit-test

Second ECDSA Exploit

After receiving our report, BitGo released a patch that fixed the issue by adding a range proof, but lacked another necessary proof for the paillier key well-formedness, which we then used to exploit the implementation again

Impact: full key exfiltration within 16 signatures

git clone --branch bitgo@18.0.1 https://github.com/BitGo/BitGoJS.git BitGoJS-ecdsa-2
cd BitGoJS-ecdsa-2
git apply ../ecdsa-poc-2-diff.patch
yarn install
cd modules/account-lib
yarn run unit-test

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

4 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published