The Dark DAO proxy-voting attack has come up before on here… We just posted an article that summarizes the attack and brainstorms a few responses: https://medium.com/@leor.fishman/fc3b4fe4d666
In summary, a few open questions:
- Is generating keys under SGX hardware a feasible response?
- How can this be made more accessible — perhaps through a plurality of TEE solutions or creating compatibility with TEEs in mobile devices?
- Are there potential transaction-level proofs to these attacks?