Mathematical Trick Lets Hackers Shame People into Fixing Software Bugs

Matthew Sparkes, *New Scientist*, 17 2023 vai ACM TechNews

Researchers at the Galois software company have developed a zero-knowledge
proof (ZKP) method of using math to verify vulnerabilities in a particular
software program, without releasing details of how an exploit works. The
idea is to generate public pressure to force a company to release a fix
while preventing hackers from exploiting the flaw. Said Galois' Santiago
Cu=C8llar, "There are a lot of frustrated people trying to disclose
vulnerabilities, or saying …

bugs exploit exploiting fix flaw hackers knowledge math matthew people program public release researchers shame software technews verify vulnerabilities