From bb56cde4197b5a0117b89e45b1623376dd6ed559 Mon Sep 17 00:00:00 2001 From: autistic-symposium-helper <138340846+autistic-symposium-helper@users.noreply.github.com> Date: Fri, 6 Dec 2024 18:25:18 -0800 Subject: [PATCH] add quick n dirty notes on security/DoS challenges for full account abstraction --- .../ethereum/eips_and_updates/pectra.md | 44 +++++++++++++------ 1 file changed, 31 insertions(+), 13 deletions(-) diff --git a/blockchains/ethereum/eips_and_updates/pectra.md b/blockchains/ethereum/eips_and_updates/pectra.md index adc2235..9f8d62c 100644 --- a/blockchains/ethereum/eips_and_updates/pectra.md +++ b/blockchains/ethereum/eips_and_updates/pectra.md @@ -2,7 +2,7 @@
-#### βœ…πŸ”πŸ‹πŸ»β€β™€οΈ **[eip-2537: precompile for bls12-381 curve operations, by a. vlasov et al.](https://eips.ethereum.org/EIPS/eip-2537)** +### βœ…πŸ”πŸ‹πŸ»β€β™€οΈ **[eip-2537: precompile for bls12-381 curve operations, by a. vlasov et al.](https://eips.ethereum.org/EIPS/eip-2537)**
@@ -19,7 +19,7 @@ --- -#### βœ…πŸ”πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-6110: supply validator deposits on chain, by m. kalinin et al.](https://eips.ethereum.org/EIPS/eip-6110)** +### βœ…πŸ”πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-6110: supply validator deposits on chain, by m. kalinin et al.](https://eips.ethereum.org/EIPS/eip-6110)**
@@ -35,7 +35,7 @@ --- -#### βœ…πŸ”πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-7002: execution layer triggerable exits, by djrtwo et al.](https://eips.ethereum.org/EIPS/eip-7002)** +### βœ…πŸ”πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-7002: execution layer triggerable exits, by djrtwo et al.](https://eips.ethereum.org/EIPS/eip-7002)**
@@ -59,7 +59,7 @@ --- -#### βœ…πŸ”πŸ€ **[eip-7251: increase the `MAX_EFFECTIVE_BALANCE`, by m. neuder et al.](https://eips.ethereum.org/EIPS/eip-7251)** +### βœ…πŸ”πŸ€ **[eip-7251: increase the `MAX_EFFECTIVE_BALANCE`, by m. neuder et al.](https://eips.ethereum.org/EIPS/eip-7251)**
@@ -78,7 +78,7 @@ --- -#### βœ…πŸ”πŸ€ **[eip-7549: move committee index outside attestation, by dapplion](https://eips.ethereum.org/EIPS/eip-7549)** +### βœ…πŸ”πŸ€ **[eip-7549: move committee index outside attestation, by dapplion](https://eips.ethereum.org/EIPS/eip-7549)**
@@ -94,7 +94,7 @@ --- -#### βœ…πŸ”πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-7702: set eoa account code, by vub et al.](https://eips.ethereum.org/EIPS/eip-7702)** +### βœ…πŸ”πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-7702: set eoa account code, by vub et al.](https://eips.ethereum.org/EIPS/eip-7702)**
@@ -127,9 +127,27 @@
+#### main security challenges: full account abstraction introduces ddos vectors + +- the main challenges are efficient block building and DoS-resilient p2p mempool (unused gas as a vector can become a side channel attack) +- example: + 1. suppose an attack implement an attacker and this account depends on a flag stored in a singleton smart contract + 2. every account using this implementation looks at the same flag to determine the transaction validity (and also flips the flag) + 3. the attacker then sends thousands of such transactions, and every time such transaction gets included, it immediately invalidates all the other ones, so they can't be included in the chain and need to be dropped without paying gas (since they are not valid) + 4. this can escalate to a point where the nodes cannot do any useful work +- the mitigation can done by separating validation from execution so that the mempool protocol only propagates compliant transactions +- block builders must be able to validate each transaction independently (parallelizing their validation) + - if validation accessible data overlaps, transactions can invalidate each other causing another DoS attack vector is the mempool is filled with mutually exclusive txs + +

+ +

+ +
+ --- -#### βœ…πŸ‹πŸ»β€β™€οΈ **[eip-7685: general purpose execution layer requests, by lightclient](https://eips.ethereum.org/EIPS/eip-7685)** +### βœ…πŸ‹πŸ»β€β™€οΈ **[eip-7685: general purpose execution layer requests, by lightclient](https://eips.ethereum.org/EIPS/eip-7685)**
@@ -146,7 +164,7 @@ --- -#### βœ…πŸ‹πŸ»β€β™€οΈ **[eip-2935: save historical block hashes from state, by vub et al.](https://eips.ethereum.org/EIPS/eip-2935)** +### βœ…πŸ‹πŸ»β€β™€οΈ **[eip-2935: save historical block hashes from state, by vub et al.](https://eips.ethereum.org/EIPS/eip-2935)**
@@ -162,7 +180,7 @@ --- -#### βœ… **[eip-7692: evm object format meta, by a. beregszaszi et al.](https://eips.ethereum.org/EIPS/eip-7692)** +### βœ… **[eip-7692: evm object format meta, by a. beregszaszi et al.](https://eips.ethereum.org/EIPS/eip-7692)**
@@ -210,7 +228,7 @@ --- -#### βœ…πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-7742: uncouple blob count between cl and el, by a. stokes](https://eips.ethereum.org/EIPS/eip-7742)** +### βœ…πŸ€πŸ‹πŸ»β€β™€οΈ **[eip-7742: uncouple blob count between cl and el, by a. stokes](https://eips.ethereum.org/EIPS/eip-7742)**
@@ -221,7 +239,7 @@ --- -#### βœ…πŸ€ **[eip-7594: peerdas - peer data availability sampling, by djrtwo et al.](https://eips.ethereum.org/EIPS/eip-7594)** +### βœ…πŸ€ **[eip-7594: peerdas - peer data availability sampling, by djrtwo et al.](https://eips.ethereum.org/EIPS/eip-7594)**
@@ -233,7 +251,7 @@ --- -#### 🟑 **[eip-7623: increase calldata cost, by t. wahrstÀtter et al.](https://eips.ethereum.org/EIPS/eip-7623)** +### 🟑 **[eip-7623: increase calldata cost, by t. wahrstÀtter et al.](https://eips.ethereum.org/EIPS/eip-7623)**
@@ -244,7 +262,7 @@ --- -#### 🟑 **[eip-7762: increase `MIN_BASE_FEE_PER_BLOB_GAS`, by m. resnick](https://eips.ethereum.org/EIPS/eip-7762)** +### 🟑 **[eip-7762: increase `MIN_BASE_FEE_PER_BLOB_GAS`, by m. resnick](https://eips.ethereum.org/EIPS/eip-7762)**