book

Mastering Blockchain Programming with Solidity

by Jitendra Chittoda

August 2019

Intermediate to advanced

486 pages

13h 52m

English

Packt Publishing

Read now

Unlock full access

Content preview from Mastering Blockchain Programming with Solidity

Signature replay attacks

There are some cases when a user signs some data off-chain and the data is given to some other authorized user who will submit the signed data on the contract. This process allows users to perform transactions even when off-chain and later, the confirmation or trade is updated on-chain. For example, in projects such as 0xProject, where trades are matched off-chain by signing the order data and later on, actual trade is updated on-chain.

Let's look at an example:

import "openzeppelin-solidity/contracts/cryptography/ECDSA.sol";contract ReplayAttack {    using ECDSA for bytes32;    //Bad Practice    function submitRequest(        address _signer,        address _target,        uint _param1,        uint _param2,        bytes memory _signature    )        public onlyAuthorized ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Mastering Ethereum

Andreas M. Antonopoulos, Gavin Wood

Kubernetes for the Absolute Beginners - Hands-On

KodeKloud

Mastering Blockchain, Fourth Edition - Fourth Edition

Imran Bashir

Complete Cryptocurrency and Blockchain Course | Learn Solidity

Ravinder Deol, Codestars By Rob Percival, Thomas Wiesner

Publisher Resources

ISBN: 9781839218262Supplemental Content