March 26, 2020 An Ethereum 2.0 audit has uncovered possible security vulnerabilities.

An audit from Least Authority, a blockchain security company, has found that the peer-to-peer (P2P) networking layer and block proposer system in Ethereum 2.0 may pose security threats to the upcoming network. The Ethereum Foundation initiated the audit, which has been ongoing since January. Although Least Authority concluded that the Ethereum 2.0 specifications were broadly comprehensive, it stressed that there was inadequate documentation for the P2P networking layer and Ethereum node records (ENR) system. Beyond this, the audit pointed to a lack of major live implementations of Proof of Stake sharded blockchains as a concern, since it makes it far more difficult to assess Ethereum 2.0’s security assumptions and guarantees. According to Ethereum 2.0 developer, Danny Ryan, the development team will now be conducting testnets across multiple clients and initiating a bug bounty program for Phase 0 of the new blockchain.