Relatório público de scanRepositório
lightningnetwork/lnd
Escaneado em 5 de jun. de 2026
Risk score/ 100
Risco alto
Resumo
The Lightning Network Daemon (lnd) relies heavily on quantum-vulnerable elliptic curve cryptography (ECDSA, secp256k1, ECDH) across critical components including node authentication, channel establishment, and payment routing. One critical finding involves the use of the obsolete 3DES cipher in TLS configuration. The pervasive use of Bitcoin's secp256k1 curve throughout the codebase poses significant quantum computing risks that could compromise channel funds and node identities when large-scale quantum computers become available.
1
18
0
0
Principais findings
- Crítico3DES / TripleDES
cert/tls.go:14
- Altosecp256k1 (Bitcoin curve)
brontide/fuzz_test.go:14
- AltoECDSA
brontide/fuzz_test.go:111
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)
- Altosecp256k1 (Bitcoin curve)
brontide/fuzz_test.go:116
- Altosecp256k1 (Bitcoin curve)
brontide/noise.go:26
+ 14 findings no relatório completo
Escaneie seu próprio repositório
Grátis. Resultados em ~90 segundos. CBOM + PDF DORA/NIS2 inclusos.