Questions around TEEs and their security have been raised in light of the recently documented Æpic exploit and disclosure about how it could be used to attack other blockchain networks. 💭 You might be wondering how this vulnerability affects the Oasis Network. First, it is important to note that the Oasis Network does not rely on TEEs for ensuring data integrity, including token balances–so TEE vulnerabilities will never threaten data integrity on the Oasis Network. Furthermore: 1) There is no risk of loss of funds on the Oasis Network due to TEE vulnerabilities 2) the Oasis Network is secure against the aforementioned Æpic vulnerability and attacks 3) Oasis has a unique, state-of-the-art defense-in-depth design that minimizes privacy risks from TEE vulnerabilities 4) we continue to develop our cutting-edge security and privacy technologies to push the industry forward. 🔐 The Oasis Network employs a number of mitigations to prevent data leaks in the event of TEE vulnerabilities. ✅ Only SGX-enabled nodes that are elected to the committees responsible for executing Oasis confidential ParaTimes (i.e., Sapphire and Cipher) are allowed to access encryption keys. ✅ We restrict the membership of these committees to trusted operator partners as an additional measure to prevent unknown bad actors from trying to exploit vulnerabilities. ✅ Nodes on the network are also required to refresh attestations regularly, so any node that does not apply required security updates will become ineligible for registration and/or election to confidential ParaTime committees and thus will no longer be able to access encryption keys. Learn more about why we believe TEEs still offer the best tradeoff in terms of flexibility, usability, and confidentiality 👇 https://medium.com/oasis-protocol-project/how-oasis-protects-privacy-despite-tee-vulnerabilities-6b1414fcbd72