Now that dust is settling, I think implementing Taylor’s recommendation:
Create a new shielded pool identical to Orchard (or Orchard+ZSAs in NU7) and update
wallets to automatically move funds so that the turnstile-enforced upper bound on the
amount of potentially-stolen funds decreases over time. [1]
Should be done to restore confidence that the vulnerability has not been exploited before.
It is also ‒ and perhaps more ‒ important to ensure that people can have confidence that such a bug cannot reoccur. So far, each shielded pool has implemented the latest-and-greatest, shiny new state-of-the-art proof system.
But they have all used only one proof system.
It is time to consider requiring multiple redundant proofs, using several different, independent proof systems. Such a belt-and-braces approach will ensure that a vulnerability with a single proof system does not mean that confidence is lost in the entire pool.
Separately, perhaps also a mechanism could be introduced as part of the block creation process to generate a proof that the balance of the new shielded pool is correct.
I think it will be useless. You can’t force people to migrate (just look at Sprout) so you will never be able to prove the vulnerability was not exploited by using it.
I think it will be useless. You can’t force people to migrate (just look at Sprout) so you will never be able to prove the vulnerability was not exploited by using it.
Yes, you can. It is purely down to developers’ choice that you can make new Sprout deposits.