• Robert Chen Robert Chen

Posts

Solana multisig security

What can teams do if their multisig signers are compromised? We explore Solana's transaction signing model and present a procedure for safe signing in the presence of malicious signers on Solana.
Robert Chen

Rounding bugs: an analysis

Rounding-related hacks are having a moment in the spotlight. We explore these exploits, correct some popular misunderstandings, and provide mitigations.
Robert Chen

Solana: jumping around in the VM

An exploration of low-level Solana VM behavior. How to escalate from a powerful memory corruption primitive to full program control.
Nicola Vella, Robert Chen

Vyper hack timeline

A timeline and postmortem for the Vyper compiler bug. Thoughts on trust assumptions, vulnerability disclosures, and whitehat recoveries.
Robert Chen

Solidity compilers: memory safety

An exploration into the Solidity compilation pipeline, optimization assumptions, and how it all relates back to memory-safe assembly.
Robert Chen

The Move Prover: a guide

A practical guide to the Move Prover — tutorial, case study, and specifications.
Robert Chen

Move: an auditor's introduction

What actually makes Move secure? A discussion of Move's typing system and formal verification.
Robert Chen