This repository has been archived by the owner on Oct 22, 2024. It is now read-only.
forked from paritytech/polkadot-sdk
-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
GitBook: [#45] Meeting notes for Bridge workshop
- Loading branch information
1 parent
40215ee
commit ed80e50
Showing
2 changed files
with
64 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -29,3 +29,7 @@ | |
| ## Performance | ||
|
|
||
| * [Benchmarks](performance/benchmarks.md) | ||
|
|
||
| ## Other | ||
|
|
||
| * [Bridge Workshop](other/bridge-workshop.md) | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,60 @@ | ||
| --- | ||
| description: Meeting notes for our bridges workshop at Lisbon Parachains Summit | ||
| --- | ||
|
|
||
| # Bridge Workshop | ||
|
|
||
| ### Cross-chain Governance | ||
|
|
||
| The discussion in the workshop seems to validate our [plan for cross-chain governance](../architecture/governance.md). Specifically, for _fallback_ governance on Ethereum, a voting collective will be empowered to upgrade only the BEEFY light client contract. | ||
|
|
||
| #### Next Steps | ||
|
|
||
| Initiate a discussion on Polkadot forum to | ||
|
|
||
| * Socialize this idea further in the community | ||
| * Determine the membership of the collective | ||
| * Discuss regulatory exposure | ||
|
|
||
| Owner: Vincent | ||
|
|
||
| ### Message Batching | ||
|
|
||
| For the polkadot→ethereum path, move [message batching](https://docs.snowbridge.network/architecture/channels#\_faw9foweutag) to application layer. This simplifies our channel protocol, message dispatch logic, and fee calculations. | ||
|
|
||
| For example, batched XCM instructions could be handled by the XCM executor contract on Ethereum. | ||
|
|
||
| Owner: Vincent | ||
|
|
||
| ### Ethereum PoS Light Client | ||
|
|
||
| Most discussions on this topic were related to BLS. | ||
|
|
||
| In our light client, aggregating public keys and verifying a single BLS signature takes roughly 1/4 of the block weight, which isn’t sustainable in the long-term, especially on BridgeHub. | ||
|
|
||
| Mitigations: | ||
|
|
||
| 1. Asynchronous backing may improve this by increasing blockspace. | ||
| 2. A huge performance booster will be host functions for BLS-12-381 signature verification. | ||
| 3. Should also investigate using a ZK-SNARKS circuit for signature verification in Substrate. | ||
|
|
||
| #### Next Steps | ||
|
|
||
| 1. Parity to figure out the situation with host functions. Looks like there needs to be some kind of RFC process for the community to propose new host functions | ||
| 2. In the longer-term, Snowfork should look at ZK-SNARKS for further improving efficiency of signature verification on Substrate. | ||
| 3. Snowfork (Clara) to design and implement safeguards against [long-range attacks](https://near.org/blog/long-range-attacks-and-a-new-fork-choice-rule/). | ||
|
|
||
| ### Defense in Depth | ||
|
|
||
| Snowfork’s proposed circuit breaker on collateral withdrawals won’t actually increase security much, since you can’t really have a circuit breaker on cross-chain governance. And if cross-chain governance is exploited, then everything controlled by governance is exploitable too. | ||
|
|
||
| Simple limits on TVL may still work with XCMv3 model, will need to check (Owner: Vincent) | ||
|
|
||
| Our defense in depth strategy therefore needs to focus on implementation quality: | ||
|
|
||
| 1. Unit and Integration Testing. Especially tests of an adversarial nature. | ||
| 2. Fuzz Testing | ||
| 3. Bug Bounties on Rococo and Kusama | ||
| 4. Multiple redundant security audits | ||
|
|
||
| Owner: Snowfork |