7/31/2023 0 Comments Ethereum optimism![]() ![]() Vitalik (of Ethereum) wrote an overview of rollups. The more commonly cited layer 2 solutions are systems such as Optimism or zkSync: each a prototypical example of an "optimistic rollup" and a "zero-knowledge rollup" (respectively). That said, it is common for people to quibble over what, exactly, another system can be "considered". Our nanopayments system certainly isn't the only layer 2, and-being mostly off-chain with probabilistic settlement-isn't even a prototypical one. In our case, we implement what I have sometimes called a "probabilistic rollup". Orchid is, in some sense, what one might call a "layer 2 scaling solution": a payments system that runs as an ecosystem on top of another payments system. It is thereby interesting to Orchid when people create new, cheaper blockchain technology, as Orchid's payments infrastructure is not inherently tied to any single chain, and a lot of my work involves exploring and evaluating new options. While, over enough time, our system can amortize even very large transaction fees, there are side effects: the size of the payments goes up and the number of payments goes down, leading to a higher variance of expected vs. Rivest at MIT and PepperCoin-amortizes transaction fees for very small transfers. Our nanopayments integration-designed primarily by David Salamon, Justin Sheek, and myself, while leaning on the work done previously by Ronald L. (While going into details of Orchid would be a digression, the reason Orchid cares about this is that users incrementally pay for access to the network with tiny payments, the fees for which would otherwise be too high.) In particular (as relevant to this article), I have implemented all of Orchid's smart contracts, including the one used for "nanopayments". Orchid Nanopaymentsįor Orchid, while I have no official/ratified title, I am "in charge of technology". I now am one of the remaining founders of Orchid, a project that builds a market for programmable bandwidth, along with Steven Waterhouse (a founding partner of Pantera Capital) and Brian Fox (developer of bash, readline, etc.). (This means my life for the past two years has been extremely reclusive and unhealthy, as I do not enjoy online conferences.) I give a lot of talks at conferences, where I sometimes present "Penn & Teller"-style exposés of exploit stacks. NET (Exemplar, for my Anakrino GUI), and worked on nmap's programmatic scanning features. In other past work, I developed multiple jailbreaks for Android (implementing mempodipper and Master Key), wrote the first decompiler for. While I was a member of key jailbreak teams, I focused on everything "after the hack". ![]() ![]() I am Jay Freeman, though I am mostly known online as "saurik" for my work on Cydia, an alternative to the App Store for jailbroken iOS devices. If you start thinking "this is getting dry", try skipping ahead! My Background This article slowly transitions from high-level background and discussion into deep, low-level technical detail but, at the end, I return for some high-level thoughts on the ethics of security research and incentive alignment in the cryptocurrency industry. (I'm also a "mentor", but that seems to be flexible.) If you want to meet me while I'm there, I should be available for much of the event. I will also be giving a talk at ETHDenver 2022, at 9:40am MST on February 18th, on this vulnerability. This article provides the backstory of how and why I found this bug and goes into my usual "extreme" level of detail on how the bug works (something I haven't bothered to do in article form in a while: I've mostly been just giving talks). Quickly, Optimism-whose platform currently uses a centralized "sequencer"-moved to both fix this bug on their nodes and infrastructure, as well as arrange for downstream projects that used their codebase (Boba and Metis) to get patched. On, I reported a critical security issue to Optimism-an "L2 scaling solution" for Ethereum-that would allow an attacker to replicate money on any chain using their "OVM 2.0" fork of go-ethereum (which they call l2geth). Attacking an Ethereum L2 with Unbridled Optimism The Summary ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |