$ETH Rumor Refutation Post

There has been much discussion on Twitter about a studio bypassing the IDO front-end restrictions to directly call the contract.

I just verified it and found that there is a signature verification logic in the contract. Asymmetric encryption is used here, where the private key is needed to sign and generate _sign on the mobile end for IDO, then call the contract. Inside the contract, a public key is calculated from the request parameters and compared with the key in the contract; if they match, it can be successful.

There is a key point here: the studio cannot obtain the private key corresponding to the public key. The signing action must be implemented by calling the bn interface, so everyone can trust Binance's technical strength.