Cointime

Cointime

Download App
iOS & Android

Building a private, on-chain, implementation for RetroPGF

From optimism By samajammin

Hello Optimism Collective!

Excited to share plans on a project our team has been working on over the past few weeks.

Our goal is simple - we’d like to add private, bribery-resistant, on-chain voting to Optimism’s RetroPGF rounds.

Who are we?

We’re the core team working on MACI, an on-chain voting platform which protects privacy and minimizes the risk of collusion and bribery. We’re an engineering team within PSE 1, which is supported by the Ethereum Foundation

You can learn more about MACI in our documentation.

What are we doing?

We’re building a proof-of-concept RPGF implementation that supports private on-chain voting for badgeholders of the Citizens House.

  • Thanks to folks at Gitcoin & their work on EasyRetroPGF, we have a purpose-built web app that we’re forking for our frontend
  • For the “backend”, we’re essentially swapping out the SQL database for the MACI smart contracts
  • For badgeholder verification, we’ve built an EAS gatekeeper contract which ensures only OP badgeholders are eligible to register to vote
  • In line with PSE’s mission 1 and inspired by the efforts of EasyRetroPGF, we also open-source all our code in case it’s beneficial for others

Here’s the source code:

GitHub

GitHub - privacy-scaling-explorations/maci-rpgf: RPGF with MACI 3

RPGF with MACI. Contribute to privacy-scaling-explorations/maci-rpgf development by creating an account on GitHub.

Here’s where were tracking our progress:

GitHub

MACI team sprint board • privacy-scaling-explorations 3

MACI team sprint board

Why are we doing this?

In many ways, Optimism’s RPGF rounds are already a massive success. It seems the process worked in round 3 but - like many of you - we see several areas that can be improved.

For one, the RPGF process currently depends heavily on the OP foundation to act honestly and competently. In round 3, the community had to trust that:

  • Only badgeholders would be able to submit ballots
  • No badgeholder ballots would be censored or manipulated or double-counted
  • The final tally of ballots would be calculated correctly

If we think about what security properties are critical to a voting, Vitalik outlined this in his blog post (Blockchain voting is overrated among uninformed people but underrated among informed people) as well as anyone could:

Any voting system requires a few crucial security properties in order to be trusted by users:

  • Correct execution: the results (tally of votes) must be correct, and the results must be guaranteed by a transparent process (so that everyone is convinced that the results are correct)
  • Censorship resistance: anyone eligible to vote should be able to vote, and it should not be possible to interfere with anyone’s attempt to vote or to prevent anyone’s vote from being counted
  • Privacy: no one should be able to tell which candidate anyone voted for, or if they even voted at all
  • Coercion resistance: you should not be able to prove to someone else how you voted, even if you want to

Unfortunately RPGF currently fails in all 4 dimensions. As RPGF continues to grow, we think the need to enforce process integrity will be of upmost importance.

Talking with the folks from the OP foundation about, they’ve mentioned some key requirements for future versions of their RPGF stack:

  • Provably correct execution - They’d want to demonstrate the legitimacy to community in terms of how ballots are submitted and calculated
  • Privacy protection - They want to ensure not just voter privacy, but also vote privacyWhy? While voter privacy alone would offer some valuable protection, if the votes are public, there’s the chance that data sleuths would be able to deduce the identity of some badgeholders. e.g. say a badgeholder publicly declares a few projects where they have conflicts of interest. If they are the only badgeholder who does NOT vote for those specific projects, anyone would be able view their public ballot and tie it to that specific badgeholder, thus circumventing this supposed privacy protection
  • Why? While voter privacy alone would offer some valuable protection, if the votes are public, there’s the chance that data sleuths would be able to deduce the identity of some badgeholders. e.g. say a badgeholder publicly declares a few projects where they have conflicts of interest. If they are the only badgeholder who does NOT vote for those specific projects, anyone would be able view their public ballot and tie it to that specific badgeholder, thus circumventing this supposed privacy protection
  • Collusion resistance - given the money at stake with RPGF, bribery resistance is a key component for any RPGF implementation

What solutions exist?

We reviewed the options in this private voting report: State of Private Voting

It’s great to see an array of private on-chain voting solutions emerging! As you can see from the report, each has a unique set of features and trade-offs with their implementation.

Image 2024-02-28 at 15.00.571470×734 205 KB

Why did we decide on this implementation?

A number of projects solve some of the above requirements, but again - given the money at stake with RPGF, we feel that collusion resistance (”Briber Protection”, in that report), is an essential component for any RPGF implementation. Currently MACI is the only project with all 3 of these features:

Image 2024-02-26 at 19.13.391326×640 179 KB

An RPGF MACI integration has the potential to provide several important security guarantees to the RPGF voting process:

  1. Correct execution: With MACI, user registration, voting data and poll logic is stored on-chain. While tallying computation is handled off-chain, ZK-proofs guarantee the correct execution of this logic. In this way, we know the result (tally of votes) will be correct, and the results are guaranteed by a transparent process (anyone can verify that the result is correct) .
  2. Censorship resistance: With voter verification (via an EAS attestation gatekeeper) and vote submission happening on-chain, there’s no way for anyone (including the OP foundation) to censor any badgeholder votes.
  3. Privacy: With MACI’s receipt-free voting scheme, we’re able to ensure that results are transparent, but it is impossible for outsiders to verify how any specific user voted (since on-chain votes are encrypted). Vote tallying takes place off-chain but ZKPs are submitted and verified on-chain, which guarantees votes are counted correctly without revealing the individual votes.
  4. Coercion resistance: With MACI’s private, receipt-free votes, this makes cheating (like bribery) much harder. User’s cannot prove which option they voted for, and therefore bribers cannot reliably trust that a user voted for their preferred option. This prevents any bribers from simply reading the transaction data to see which option a user voted for.

Input/Feedback?

We’d love to hear feedback on this plan! The implementation is in-progress but we’re happy to make potential adjustments based on community input.

If there are any badgeholders interested in being user-testers for us, please let us know and we’ll get in touch to schedule an user interview once we have a working demo up and running on a testnet! Feel free to comment here, hop into the PSE Discord (#🗳️-maci channel), hit us up on Twitter/X 1, or reach out to me directly (sam at ethereum dot org).

Optimism
Comments

All Comments

Recommended for you

  • LayerZero CEO: Up to 100,000 addresses have been recognized as witches

    LayerZero CEO Bryan Pellegrino stated on social media that up to 100,000 addresses have been identified as witches. Previously reported on May 4th, LayerZero officials stated that all witch users were given a chance to self-report within the next 14 days and those who did would receive an expected distribution of 15%.

  • Niobium, a fully homomorphic encryption chip provider, completes $5.5 million seed round of financing, led by Fusion Fund

    Niobium, a custom encryption chip provider specializing in zero-trust computing, has announced the completion of a $5.5 million seed round of financing, led by Fusion Fund, with participation from Morgan Creek Capital, Rev1 Ventures, Ohio Innovation Fund, and Hale Capital. It is reported that Niobium is building a fully homomorphic encryption (FHE) accelerator chip and will commercialize it. The new funds will be used to explore the commercial applications of FHE in industries such as healthcare, finance, and blockchain, and also plan to showcase the solution and launch pilot projects in the fourth quarter of this year.

  • RunPod Completes $20 Million Seed Round of Financing, Led by Intel Capital and Others

    According to distributed GPU cloud computing AI training model project RunPod announced the completion of a $20 million seed round of financing, jointly led by Intel Capital and Dell Technologies Capital, with participation from Julien Chaummond, Nat Friedman, Adam Lewis and others. RunPod uses global distributed GPU cloud computing services to train, deploy, and scale AI models, thereby reducing the workload of developers. According to its official website, RunPad accepts cryptocurrency payments, but reminds users to strongly recommend setting up a crypto.com account as part of the risk management process and conducting any necessary KYC checks in advance.

  • Kaiko data: Bitcoin miners’ income has dropped sharply, and they may sell BTC to maintain operations

    The latest data from cryptocurrency research and analysis company Kaiko shows that miners are facing huge selling pressure as Bitcoin mining revenue and transaction fees decline. Bitcoin miners' income mainly comes from two aspects: mining rewards and transaction fees. However, affected by the halving of Bitcoin rewards in April (block rewards dropped from 6.25 BTC to 3.125 BTC), miners have to sell Bitcoin to pay for costs. Kaiko researchers pointed out in the report that the halving event usually prompts miners to sell BTC because the mining process requires a lot of expenses.

  • Brazil's trading volume reaches $6 billion in 4 months

    According to Kaiko Research, the correlation between Bitcoin (BTC) and stocks is increasing. After reaching a multi-year low of 0.01 in March, the 90-day correlation rose to 0.17 last week. Based on the company's research report on May 13th, the 90-day correlation between Bitcoin and stocks rose to 0.17 in the week of May 5th, higher than the multi-year low of 0.01 in March. The correlation between BTC and risk assets is lower than the high of 0.6 during the bull market.

  • Ethereum Foundation Announces Open Application for the Fifth Ethereum Protocol Fellowship Program

    On May 14th, the Ethereum Foundation announced that the fifth round of the Ethereum Protocol Fellowship (EPF) program is officially open for applications, with a deadline of May 26th.

  • CFTC settles registration violations with Falcon Labs

    The US Commodity Futures Trading Commission (CFTC) has reached a settlement with the major cryptocurrency broker Falcon Labs, Ltd. to resolve Falcon Labs' failure to register. This is the CFTC's first action against an unregistered futures commission merchant, and Falcon Labs was accused of improperly facilitating customer trading on digital asset exchanges. Falcon Labs neither admitted nor denied the CFTC's findings and was fined over $1.7 million. Previously, the CFTC had charged Binance and its former CEO, and Falcon Labs subsequently changed its method of collecting customer information and updated its know-your-customer policy. The CFTC said it hopes to encourage other illegal digital asset intermediaries to report their activities through cooperation and reform with Falcon Labs.

  • Chainalysis: Around $24 Million in Crypto to be Stolen by Impostors and Tax Authorities in 2023

    According to Chainalysis, by 2023, approximately $24 million worth of cryptocurrency will be stolen through impersonation and tax authority scams. The company estimates that as of April 2024, the total amount stolen will be close to $17 million.

  • Tether CEO: Ripple CEO's comments spread fear about USDT

    According to reports, Tether CEO Paolo Ardoino responded to comments made by Ripple CEO Brad Garlinghouse in a recent interview about the stablecoin Tether (USDT) on social media. Garlinghouse stated in the interview that the US government is pursuing Tether, which is clear to me. Ardoino said that an uninformed CEO leading a company under SEC investigation launched a competitive stablecoin (cui prodest), spreading fear about USDT. Ardoino emphasized Tether's critical role in providing financial services to unbanked communities in emerging and developing regions, which are often overlooked by traditional financial institutions. He further asserted that Tether adheres to strict transparency and regulatory compliance standards, as evidenced by its compliance with the OFAC/SDN list, its partnership with Chainalysis, and its extensive collaboration with international law enforcement agencies to detect and prevent illegal activities, thereby enhancing the security of its ecosystem.

  • Multisig Exploit hacker-related addresses become active and launder money

    Multisig Exploit's hacker attack was the first hacker attack in ETH's history, with over 150,000 ETH stolen, worth about $30 million at the time (back in July 2017). Today it is worth nearly $450 million, and more than 80,000 ETH is still involved in the addresses starting with 0xb37647. The address has sent about 70,000 ETH to seven different addresses, each with 10,000 ETH. In recent months, these different addresses have been slowly laundering the money. One of the addresses starting with 0x5167052 has recently become active again.

Daily Must-Read

Popular Activities

Delysium $AGI & AI Private Yacht Party

Delysium $AGI & AI Private Yacht Party

March 27 - March 27
Seoul

Popular Tags

Cointime
News
Contents
RSS
Company