Zcash Developers Grapple with Orchard Protocol Flaw

Zcash's reputation as a secure and private cryptocurrency has been called into question following the discovery of a flaw in its Orchard protocol. The bug, which affects supply verification, has forced the developer team to reconsider their approach to shielded transactions.

The Orchard protocol was introduced as an upgrade over previous protocols such as Sapling and Sprout, using a new cryptographic scheme designed to eliminate the need for a trusted setup. However, the flaw in this protocol has exposed a gap in how supply accounting is handled, making it difficult to independently verify that the total supply matches what's supposed to exist.

One proposal being considered is turnstile accounting, which would create verifiable checkpoints for funds moving between shielded pools. This would allow supply figures to be confirmed without exposing individual transaction details.

Another option on the table is building a new shielded pool from scratch, which would require a significant investment of time and resources. This approach would involve designing a new protocol that incorporates better supply verification mechanisms from the outset.