designing future proof smart contract systems
play

Designing future-proof smart contract systems Jorge Izquierdo - PowerPoint PPT Presentation

Apr 07, 2024 •196 likes •538 views

Designing future-proof smart contract systems Jorge Izquierdo Devcon3 Aragon Decentralized organizations platform built on Ethereum. Usable by non-technical users. Allow extendability of the system with third party on-chain

  1. Designing future-proof smart contract systems Jorge Izquierdo Devcon3

  2. Aragon • Decentralized organizations platform built on Ethereum. • Usable by non-technical users. • Allow extendability of the system with third party on-chain modules.

  3. Future-proof smart contracts Dumb contracts are the best smart contracts • EVM is expensive, optimize for gas savings (deploy and usage) • Contracts need to be upgraded • Goal: cheap, upgradeable, yet very simple contracts •

  4. The case against upgradeability Changing the rules on a live contract • Trust required on the entity that can upgrade • Front-running with an upgrade •

  5. Why upgradeable contracts Extremely young technology • Solving unanticipated bugs that can result in irreversible loss • of funds at the contract level Need to add new features based on user feedback •

  6. Doing upgrades right Not rely on just one entity • Time delayed to allow for vetting and auditing • Governance process •

  7. Solidity libraries delegatecall under the hood to linked library • using semantics simulates calling methods on an • object Library is deployed once and securely used by many • contracts Separation of logic domains in a contract • Allows for bigger contracts • Aragon Blog: Library Driven Development

  8. Upgradeable libraries github.com/maraoz/lib Zeppelin + Aragon

  9. Upgradeable libraries Pros: • Transparent for developer • Allows to 'modify' the linked library Cons: • Main contract ABI cannot be modified • Data structures are fixed

  10. Delegate Proxy • Run another contract's Proxy 1 call logic in the context of a delegatecall contract. Implementation delegatecall Proxy 2 call

  11. Implementation (EIP 211) aragon-core: common/DelegateProxy.sol

  12. Delegate Proxy flavors • Static delegate proxy: forwarders • Upgradeable proxies

  13. Static forwarders Very cheap to deploy 'clone • contracts' Useful for contracts with a low • number of interactions Original idea: Vitalik's DELEGATECALL forwarders

  14. Solidity forwarders

  15. Gas overhead • Added gas per call • 700 delegatecall • 3 + 3 * (returndatasize / 32) returndatacopy • Deploy gas • ~66k gas deploy for barebones version • ~97k gas deploy Solidity (~87k using factory) • 1M gas for contract deploy, ~1.3k calls break even

  16. ENS Deed case study • Deed create + parametrization = 620,741 gas • Forwarder create (solidity) + setup call = 173,697 gas • 340,565 found deed contracts • Total gas saved = 152,247,539,860 gas • Average 20 gwei gas price = 3044.95 ETH

  17. Upgradeable Proxies Original idea: Nick Johnson's upgradeable.sol

  18. Storage in Delegate Proxies • Storage layout must respect Proxy contract's layout. • Inherit Proxy's storage • Data structures must be designed thinking on upgradeability

  19. Solidity Storage slots review • Storage counter starts at 0 • Reverse inheritance graph order • Solidity packs contiguous smaller types to 32 bytes • Structs are stored as inline types TODO: addresses slots

  20. Arrays • Static length arrays behave just like normal types uint256[2] == uint256, uint256 • • Dynamic length arrays: • Store length in p • Array item position at sha3(p) + arrayP • Structs stored as inline items, adding to arrayP • Arrays in arrays follow same property

  21. Mappings Values stored sha3(key, p) • Nested mappings: p is where • the mapping would have been stored if it was a normal value

  22. Mappings Values stored sha3(key, p) • Nested mappings: p is where • the mapping would have been stored if it was a normal value

  23. Warnings • Adding just one storage value anywhere will increase p and break all storage. • Failure will be silent, storage will be randomized. • Always append new storage at the end.

  24. Upgrade example Deploy Payroll • Create 2 employees • Upgrade to Payroll2 • Employee 1 joinDate = • Employee2 salary Employee2 salary = 0 •

  25. Upgrade example Deploy PayrollM • Create 2 employees • Upgrade to Payroll2M • Salaries are correct • Join date before update is 0 •

  26. AragonOS Kernel App 1 App 2 App 3 • Tiny kernel • Upgradeable business logic on edges: apps

  27. Kernel getAppCode() foo() App Proxy • Context dependent ACL App v1 (0x1234...) delegate Kernel canPerform(...) • Upgradeable apps true App v1

  28. ACL • Usability/security balance • Can't rely on just one superuser or owner • Protect users from destructive actions • Different governance mechanism for different actions • Purely address based whitelist • Apps as entities • Complex authentication on a second layer • New governance systems can be plugged in

  29. ACL • App defined roles for capabilities • Granted permissions have an different parent • Parent can revoke the permission • If grantee is parent, grantee can re-grant it

  30. Example app

  31. Upgrading the app

  32. Putting everything together

  33. wiki.aragon.one Thanks! github.com/aragon aragon.chat

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Designing Real-Time, Reliable and Efficient Cyber-Physical Systems for Future Smart City

Designing Real-Time, Reliable and Efficient Cyber-Physical Systems for Future Smart City

Designing Real-Time, Reliable and Efficient Cyber-Physical Systems for Future Smart City Cyber-Physical Systems: Integration of computational algorithms and physical processes Deployed in various areas, e.g., automobile, healthcare,

616 views • 20 slides
Designing proof systems from programming features: states and exceptions considered as dual

Designing proof systems from programming features: states and exceptions considered as dual

Designing proof systems from programming features: states and exceptions considered as dual effects Dominique Duval LJK, University of Grenoble July 5., 2011 PPS Groupe de Travail S emantique Outline Introduction 1. Duality, at

530 views • 48 slides
Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia

Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia

Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia Mavridou 1 and Aron Laszka 2 1 Vanderbilt University 2 University of Houston 2 Smart Contract Insecurity Smart contracts are riddled with bugs and

575 views • 21 slides
+ Law, Science and Technology MSCA ITN EJD n. 814177 Smart contracts and Proof of Location in

+ Law, Science and Technology MSCA ITN EJD n. 814177 Smart contracts and Proof of Location in

+ Law, Science and Technology MSCA ITN EJD n. 814177 Smart contracts and Proof of Location in Mirko Zichichi Smart Cities Outline Preliminaries Authentication Introduction to Distributed Systems Distributed systems

1.84k views • 158 slides
Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou Security Consultant Smart contract audits Nmap/Ncrack contributor Certs: OSCE, OSCP, OSWP Blockchain Basics Front Running

642 views • 30 slides
Powering the Future of Decentralized Systems and Applications Nuco networks connect multiple

Powering the Future of Decentralized Systems and Applications Nuco networks connect multiple

Powering the Future of Decentralized Systems and Applications Nuco networks connect multiple entities in an industry Nuco smart contracts facilitate automated industry processes SMART CONTRACT The infrastructure is built to scale and to

435 views • 15 slides
Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract

Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract

Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract Verification Why? More examples of bugs! How? Beyond bugs in code: networks, miners and incentives Attacks by miners: reorder, delay,

405 views • 24 slides
Designing Future Ships and Marine Systems for Future Operating Conditions with a Low Carbon

Designing Future Ships and Marine Systems for Future Operating Conditions with a Low Carbon

Designing Future Ships and Marine Systems for Future Operating Conditions with a Low Carbon Intensity John Calleya, Santiago Suarez de la Fuente, David Trodden, Rachel Pawling Image created by Rachel Pawling 1 Shipping in Changing Climates

421 views • 31 slides
COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract Demo/Walkthrough OVERVIEW What is a Blockchain? Bitcoin. Blockchain design considerations. Smart contract. ERC-20 Ethereum Smart Contract demonstration.

549 views • 26 slides
Smart energy future whatever that means? Smart systems: The view of a distribution system

Smart energy future whatever that means? Smart systems: The view of a distribution system

15th IAEE European Conference 2017, Vienna Smart energy future whatever that means? Smart systems: The view of a distribution system operator, Enedis Michel Derdevet, Member of the Directory BoardSecretary General September 5th, 2017 Enedis,

471 views • 20 slides
Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content

Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content

Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content Legal Tech What is a Smart Contract? The need for Smart Contract Dispute Resolution? How Smart Contract Dispute Resolution works Automated

868 views • 40 slides
Designing Games of Theorems Who am I? What do I like? automating proof search in expressive

Designing Games of Theorems Who am I? What do I like? automating proof search in expressive

Designing Games of Theorems Who am I? What do I like? automating proof search in expressive logic (HOL) using heuristics / ML What did I develop? PSL/PaMpeR for Isabelle/HOL Proof Strategy Language (PSL) for Isabelle/HOL meta-tool tactics

380 views • 19 slides
OFFICIAL PRESENTATION PLAN What is Voomo? Voomo is the most innovative smart contract ever, what

OFFICIAL PRESENTATION PLAN What is Voomo? Voomo is the most innovative smart contract ever, what

OFFICIAL PRESENTATION PLAN What is Voomo? Voomo is the most innovative smart contract ever, what makes it unique are the Multiple forms of income it has , you can earn from four differents systems investing just 0.1 Eth. The system is developed

520 views • 12 slides
WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean? What does Decentralization mean? Decentralized Marketing is formed on a smart contract that provides complete security and resilience. A Smart

766 views • 14 slides
Not Your Grandmas Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur

Not Your Grandmas Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur

Not Your Grandmas Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur Quentin Petar Martin Buenzli Ritzdorf Cohen Dan Gervais Hibon Tsankov Vechev http://blockchainsecurity.ethz.ch Smart Contract Security

641 views • 19 slides
Practical Proof Systems for SAT and QBF Marijn J.H. Heule Dagstuhl Seminar on SAT and

Practical Proof Systems for SAT and QBF Marijn J.H. Heule Dagstuhl Seminar on SAT and

Practical Proof Systems for SAT and QBF Marijn J.H. Heule Dagstuhl Seminar on SAT and Interactions September 20, 2016 1/47 Introduction to SAT and QBF Proof Checking Clausal Proof Systems for SAT and QBF Abstract Proof System for SAT

924 views • 67 slides
Welcome to Advanced Standing Course Planning Tim Colenback Assistant Dean for S tudent S

Welcome to Advanced Standing Course Planning Tim Colenback Assistant Dean for S tudent S

Welcome to Advanced Standing Course Planning Tim Colenback Assistant Dean for S tudent S ervices timot@ umich.edu Housekeeping S imply type your question into the question box We will answer questions publicly unless you

464 views • 24 slides
13 When Joshua was near the town of Jericho, he looked up and saw a man standing in front of him

13 When Joshua was near the town of Jericho, he looked up and saw a man standing in front of him

13 When Joshua was near the town of Jericho, he looked up and saw a man standing in front of him with sword in hand. Joshua went up to him and demanded, Are you friend or foe? 14 Neither one, he replied. I am the commander of the

810 views • 41 slides
Mining Topics in Documents Standing on the Shoulders of Big Data Zhiyuan (Brett) Chen and Bing

Mining Topics in Documents Standing on the Shoulders of Big Data Zhiyuan (Brett) Chen and Bing

Mining Topics in Documents Standing on the Shoulders of Big Data Zhiyuan (Brett) Chen and Bing Liu Topic Models Widely used in many applications Most of them are unsupervised However, topic models Require a large amount of docs Generate

689 views • 43 slides
Paraphrase generation: adversarial examples / data augmentation CS 685, Fall 2020 Advanced

Paraphrase generation: adversarial examples / data augmentation CS 685, Fall 2020 Advanced

Paraphrase generation: adversarial examples / data augmentation CS 685, Fall 2020 Advanced Natural Language Processing Mohit Iyyer College of Information and Computer Sciences University of Massachusetts Amherst stuff from last time HW1

692 views • 53 slides
Smart contracts and DApps Motiv tivation ation Bitcoin Distributed ledger of financial

Smart contracts and DApps Motiv tivation ation Bitcoin Distributed ledger of financial

Smart contracts and DApps Motiv tivation ation Bitcoin Distributed ledger of financial transactions (currency transfers) Provides secure, immutable, global ordering of financial transactions What if a "transaction" were

683 views • 53 slides
Wolfe Research 2015 Power & Gas Leaders Conference Jim Robo Chairman and CEO September 29,

Wolfe Research 2015 Power & Gas Leaders Conference Jim Robo Chairman and CEO September 29,

Wolfe Research 2015 Power & Gas Leaders Conference Jim Robo Chairman and CEO September 29, 2015 Cautionary Statements And Risk Factors That May Affect Future Results This presentation includes forward-looking statements within the meaning

741 views • 26 slides
Conceptual Thermal Study on Korean Transport Cask for Spent Fuel Considering Burnup Credit

Conceptual Thermal Study on Korean Transport Cask for Spent Fuel Considering Burnup Credit

International Technical Seminar on SNF Storage and Transportation November 5, 2010. Daejeon Korea Conceptual Thermal Study on Korean Transport Cask for Spent Fuel Considering Burnup Credit Yong-Hoon Lee Contents Background Capacity

338 views • 19 slides
State Armory Board (SAB) Quarterly Meeting: 20 October 2016 0 State Armory Board Quarterly

State Armory Board (SAB) Quarterly Meeting: 20 October 2016 0 State Armory Board Quarterly

State Armory Board (SAB) Quarterly Meeting: 20 October 2016 0 State Armory Board Quarterly Meeting Voting Members Brig. Gen. Carrelli TAG Chairperson 28 th ID COL David Wood Member 213 th RSG LTC Laura McHugh Member LTC Chris

447 views • 15 slides

More recommend