STAKESURE: Proof of Stake Mechanisms with Strong Cryptoeconomic Safety

Soubhik Deb,Robert Raynor,Sreeram Kannan
2024-01-11
Abstract:As of July 15, 2023, Ethererum, which is a Proof-of-Stake (PoS) blockchain [1] has around 410 Billion USD in total assets on chain (popularly referred to as total-value-locked, TVL) but has only 33 Billion USD worth of ETH staked in securing the underlying consensus of the chain [2]. A preliminary analysis might suggest that as the amount staked is far less (11x less) than the value secured, the Ethereum blockchain is insecure and "over-leveraged" in a purely cryptoeconomic sense. In this work, we investigate how Ethereum, or, more generally, any PoS blockchain can be made secure despite this apparent imbalance. Towards that end, we attempt to formalize a model for analyzing the cryptoeconomic safety of PoS blockchain, which separately analyzes the cost-of-corruption, the cost incurred by an attacker, and the profit-from-corruption, the profit gained by an attacker. We derive sharper bounds on profit-from-corruption, as well as new confirmation rules that significantly decrease this upper-bound. We evaluate cost-of-corruption and profit-from-corruption only from the perspective of attacking safety. Finally, we present a new "insurance" mechanism, STAKESURE, for allocating the slashed funds in a PoS system, that has several highly desirable properties: solving common information problem in existing blockchains, creating a mechanism for provably safe bridging, and providing the first sharp solution for automatically adjusting how much economic security is sufficient in a PoS system. Finally, we show that the system satisfies a notion of strong cryptoeconomic safety, which guarantees that no honest transactor ever loses money, and creates a closed system of Karma, which not only ensures that the attacker suffers a loss of funds but also that the harmed parties are sufficiently compensated.
Cryptography and Security,Networking and Internet Architecture
What problem does this paper attempt to address?
The core problem that this paper attempts to solve is to explore how Proof - of - Stake (PoS) blockchains, such as Ethereum, can still remain secure when the staked assets are much smaller than the total value on the chain being protected. Specifically, the paper focuses on how to ensure the security of PoS blockchains by analyzing and optimizing two key economic indicators - cost - of - corruption and profit - from - corruption. ### Background of the Paper As of June 15, 2023, Ethereum, as a PoS blockchain, has a total on - chain assets (i.e., total value locked, TVL) of approximately $410 billion, but the staked ETH for ensuring consensus security is only $33 billion. A preliminary analysis might suggest that since the staked amount is far lower than the value being protected, the Ethereum blockchain is insecure and "over - leveraged" in a pure crypto - economic sense. However, the actual situation is that these PoS blockchains are still secure and active. So the question is: Why are these PoS blockchains still secure despite the staked amount being much smaller than the value being protected? ### Core Problem To understand this phenomenon, the paper defines two core economic indicators: 1. **Cost - of - corruption**: The minimum cost or loss required for any attacker to successfully launch an attack. 2. **Profit - from - corruption**: The maximum profit that an attacker can obtain after successfully attacking the system. If these two indicators satisfy the following condition, the system is considered secure: \[ \text{Cost - of - corruption} > \text{Profit - from - corruption} \] ### Solutions To solve the above problems, the paper proposes the following aspects of work: 1. **Formal Model**: Construct a mathematical model for analyzing the crypto - economic security of PoS blockchains. 2. **Calculate Cost - of - corruption**: Calculate the cost - of - corruption from the perspective of attack security and show how to increase this cost by introducing penalty mechanisms (such as slashing). 3. **Calculate Profit - from - corruption**: Calculate the upper limit of the profit - from - corruption by strictly defining which types of transactions may be exploited by attackers to extract value, and propose new confirmation rules to significantly reduce this upper limit. 4. **Introduce STAKESURE Mechanism**: Propose a new economic mechanism for distributing forfeited funds, which has several desirable characteristics, including solving the information asymmetry problem in existing blockchains, creating a verifiable secure cross - chain mechanism, and automatically adjusting the economic security level of the PoS system. ### Conclusion Finally, the paper shows that the STAKESURE mechanism can ensure strong crypto - economic security, that is, ensure that honest users will not suffer capital losses due to attacks, and create a closed "karma" system, which not only makes attackers suffer capital losses but also ensures that the victimized party is fully compensated. Through these works, the paper not only explains why current PoS blockchains can still be secure when the staked amount is much smaller than the value being protected, but also provides an important theoretical basis and practical guidance for the future design of PoS blockchains.