以太坊抗审查之路：BRAID 与 FOCIL 谁更胜一筹？

深潮 TechFlow · 2024-08-28T11:53:04.000Z

撰文：0XNATALIE 在以太坊区块生成和验证过程中，构建者负责排序交易，并通过拍卖机制将区块提交给提议者。提议者则从中选择一个区块进行签名并提议到区块链上。由于提议者作为单一实体，具有最终选择权，这就带来了提议者与构建者之间可能勾结以审查交易的风险。区块链的核心价值之一在于其抗审查性，即任何人都可以在不受中心权威干涉的情况下进行交易。当提议者能够控制哪些交易被包含在区块中时，这一特性就会受到威胁。损害公平性和透明性。并且可以利用这种权力来操纵区块中的交易顺序，从而获取额外的经济利益，引发 MEV 问题。现有的抗审查解决方案为应对这一挑战，社区提出了多种抗审查解决方案，比如强制包含列表（FOCIL）。在 FOCIL 机制中，每个 slot（时间槽）都会随机选出一组验证者，组成包含列表委员会。这些委员会成员根据各自对交易池（mempool）的主观视图生成本地包含列表，并将其广播。提议者则负责收集并聚合这些本地列表，形成一个聚合列表并包含在区块中。这种机制确保了区块的公正性，因为验证者会依据之前广播的本地列表来验证聚合列表的正确性，只有符合共识规则的区块才会被接受并添加到区块链上。除了 FOCIL 之外，社区还讨论了多个并发提议者（MCP）的方案。这一概念最早由 Max Resnick 在 Multiplicity 机制中提出，旨在通过引入多个并行区块提议者分散权力，降低单一节点对交易审查的能力。在 Multiplicity 机制中，每个验证者都会从自己的交易池中选择一部分交易，构成一个「特殊交易包」。这些验证者将自己选定的交易包签名并发送给当前轮的提议者。提议者收到后，需要将其中至少 2/3 的交易包包含在自己提议的区块中。只有这样，这个区块才会被认为是有效的。这种机制确保了提议者无法单独决定区块内容，从而减少了审查的可能性。为了进一步激励提议者公平地包含交易，此机制实施「条件性小费」规则，即只有那些包含了该交易的提议者才能分得交易小费。交易的小费不是自动地全部给到包含该交易的首个提议者，而是根据一定的条件分配给实际包含了这笔交易的所有提议者。这增加了审查成本，如果想要审查则需要贿赂所有包含了交易的提议者。 BRAID：改进后的 MCP 实现方案在 Multiplicity 的基础上，Max Resnick 进一步提出了 BRAID，这是一个更加复杂且完善的 MCP 实现。在 Paradigm 举行的主题为「DeFi in MEV Era」的研讨会上，Max 介绍了 BRAID。BRAID 通过允许多个提议者在不同的并行链上提出区块，并利用同步共识机制保持链间一致性，从而实现 MCP。每个链都有自己的提议者，所有提议者在同一 slot 内同时发布他们的区块。以太坊执行层将所有子链在该 slot 内生成的区块交易集合起来，形成一个执行区块，并按照预定的规则对这些交易进行去重、排序并执行，从而降低任何单一实体操纵交易记录的能力。 BRAID 的设计并不引入额外的角色，因此避免了激励 / 惩罚机制带来的复杂性，但其实施相对复杂，需要协调多个子链的同步和数据处理。 BRAID 机制的问题 Blockchain Capital 团队 Jonahb 指出 BRAID 机制中存在的一个问题：「条件性小费」模型对流动性有要求，从而影响用户体验影响。这个模型是一种动态定价策略，要求用户预备一定数量的流动性，以确保交易的抗审查性。用户在提交交易时需要设置两个小费值（T 和 t）。最终实际支付的小费取决于包含交易的提议者数量。较高的小费 T：代表用户为确保交易不被审查而愿意支付的最高费用。目的是激励提议者在没有其他提议者愿意包含交易时，选择包含。最终如果只有一个提议者愿意包含，则他获得 T。较低的小费 t：这是用户设置的一个较低的金额，只要交易被多个提议者同时包含，用户就只需要支付 t。t 会在多个提议者之间分摊。如果用户不关心抗审查性，他们可以设置 T=t 并将其交易仅发送给一位提议者。然而，这种额外的流动性要求增加了参与区块链交易的复杂性和成本，用户需要在交易的当下多预留出一笔资金，只为了保证交易的抗审查性。这些预留的资金在没有被实际使用之前，都是冻结的。对此，Jonahb 提出了两个解决方案： Proof of Post-State Liquidity（后状态流动性证明）：用户在提交交易时，提供一个证明，表明在交易执行后将拥有足够的流动性来支付 T（例如，交易后用户会有 $1M 的流动性）。这样，即使交易前没有足够资金支付 T，用户也能通过证明在交易后能够支付。这种方法的挑战在于提议者必须在交易执行前了解交易的最终状态，但大多数金融交易涉及共享状态（如多个交易共享同一账户余额），因此在交易排序确定前，提议者无法准确判断交易后的状态。这需要为每种交易类型提供定制的证明，实操性较低。 Censorship Insurance（审查保险）：引入第三方审查保险提供商（CI 提供商）为用户的 T 提供担保。用户为此支付一个保险费 rT，其中 r 基于交易被审查的可能性计算。此方案不仅降低了用户立即准备大量流动性的需求，还可以通过 CI 提醒用户 T 过低且存在审查高风险。但建立一个用户和 CI 提供商之间的市场需要时间。社区对 FOCIL 与 BRAID 的看法以太坊客户端 Prysm 开发者 terence 认为 BRAID 的一个显著优点是它不需要额外的参与者。在大多数包括 FOCIL 在内的 Inclusion List (IL) 设计中，都需要一个额外的参与者，这增加了以太坊时隙中的时间约束，例如提交 IL 的时间、更新出价的时间以及验证者检查 IL 的时间。不过 FOCIL 方案相比 BRAID 实施起来更为简单和灵活。 Paradigm 研究员 Dan Robinson 赞赏 BRAID 在交易优先级排序上的设计，而不是由领导者（单一提议者）自行决定，有效缓解 MEV。此外，BRAID 中的条件小费机制激励非审查行为，这些在 FOCIL 中并没有体现。开发者 Dev 相比 MCP 更喜欢 FOCIL，他认为 FOCIL 在提供强大的抗抵抗力和简化实现方面更具优势。并提供了一些改进方案使得 FOCIL 更容易实现。以太坊研究员 barnabe.eth 认为 FOCIL 是一种相当通用且具有可扩展性的机制，他承认 BRAID 有可能在某些方面改善 FOCIL 所提供的保证，但对完全放弃基于领导者的模型持谨慎态度，认为目前这还不是共识，需要更多工作来证明其可行性。

Written by: 0XNATALIE
In the Ethereum block generation and verification process, the builder is responsible for sorting transactions and submitting blocks to the proposer through an auction mechanism. The proposer selects a block to sign and propose to the blockchain. Since the proposer, as a single entity, has the final choice, this brings the risk of collusion between the proposer and the builder to censor transactions.
One of the core values ​​of blockchain is its censorship resistance, which means that anyone can conduct transactions without interference from a central authority. This feature is threatened when the proposer can control which transactions are included in the block, compromising fairness and transparency. And this power can be used to manipulate the order of transactions in the block to obtain additional economic benefits, causing the MEV problem.
Existing anti-censorship solutions
To address this challenge, the community has proposed a variety of censorship-resistant solutions, such as the Forced Inclusion List (FOCIL). In the FOCIL mechanism, a group of validators are randomly selected for each slot to form an inclusion list committee. These committee members generate local inclusion lists based on their subjective views of the transaction pool (mempool) and broadcast them. The proposer is responsible for collecting and aggregating these local lists to form an aggregate list and include it in the block. This mechanism ensures the fairness of the block, because the validators will verify the correctness of the aggregate list based on the previously broadcast local list, and only blocks that meet the consensus rules will be accepted and added to the blockchain.
In addition to FOCIL, the community has also discussed the idea of ​​multiple concurrent proposers (MCP). This concept was first proposed by Max Resnick in the Multiplicity mechanism, which aims to decentralize power by introducing multiple parallel block proposers and reduce the ability of a single node to censor transactions. In the Multiplicity mechanism, each validator selects a portion of transactions from its own transaction pool to form a "special transaction package". These validators sign their selected transaction packages and send them to the proposer of the current round. After receiving them, the proposer needs to include at least 2/3 of the transaction packages in the block it proposes. Only in this way will the block be considered valid. This mechanism ensures that the proposer cannot decide the content of the block alone, thereby reducing the possibility of censorship. In order to further incentivize proposers to include transactions fairly, this mechanism implements the "conditional tip" rule, that is, only those proposers who include the transaction can share the transaction tip. The transaction tip is not automatically given to the first proposer who includes the transaction, but is distributed to all proposers who actually include the transaction according to certain conditions. This increases the cost of censorship, as censorship requires bribing all proposers of the transaction.
BRAID: An Improved MCP Implementation
Based on Multiplicity, Max Resnick further proposed BRAID, a more complex and complete MCP implementation. At a seminar held by Paradigm entitled "DeFi in MEV Era", Max introduced BRAID. BRAID implements MCP by allowing multiple proposers to propose blocks on different parallel chains and using a synchronous consensus mechanism to maintain inter-chain consistency. Each chain has its own proposer, and all proposers publish their blocks simultaneously in the same slot. The Ethereum execution layer aggregates the block transactions generated by all subchains in the slot to form an execution block, and deduplicates, sorts, and executes these transactions according to predetermined rules, thereby reducing the ability of any single entity to manipulate transaction records.
The design of BRAID does not introduce additional roles, thus avoiding the complexity brought by the incentive/penalty mechanism, but its implementation is relatively complex and requires coordinating the synchronization and data processing of multiple sub-chains.
Problems with the BRAID mechanism
Jonahb from the Blockchain Capital team pointed out a problem in the BRAID mechanism: the "conditional tip" model has liquidity requirements, which affects the user experience. This model is a dynamic pricing strategy that requires users to prepare a certain amount of liquidity to ensure the censorship resistance of transactions. Users need to set two tip values ​​(T and t) when submitting a transaction. The actual tip paid in the end depends on the number of proposers who include the transaction.
Higher tip T: represents the maximum fee that the user is willing to pay to ensure that the transaction is not censored. The purpose is to incentivize the proposer to include the transaction when no other proposer is willing to include it. In the end, if only one proposer is willing to include it, he will get T.
Lower tip t: This is a lower amount set by the user, and as long as the transaction is included by multiple proposers, the user only needs to pay t. t is shared among multiple proposers. If the user does not care about censorship resistance, they can set T=t and send their transaction to only one proposer.
However, this additional liquidity requirement increases the complexity and cost of participating in blockchain transactions, and users need to set aside additional funds at the time of the transaction, just to ensure the censorship resistance of the transaction. These reserved funds are frozen until they are actually used.
In this regard, Jonahb proposed two solutions:
Proof of Post-State Liquidity: When submitting a transaction, the user provides a proof that there will be enough liquidity to pay T after the transaction is executed (for example, the user will have $1M liquidity after the transaction). In this way, even if there is not enough funds to pay T before the transaction, the user can prove that they can pay after the transaction. The challenge of this method is that the proposer must know the final state of the transaction before the transaction is executed, but most financial transactions involve shared state (such as multiple transactions sharing the same account balance), so the proposer cannot accurately judge the state after the transaction before the transaction order is determined. This requires customized proofs for each transaction type, which is less practical.
Censorship Insurance: Introduce a third-party censorship insurance provider (CI provider) to guarantee the user's T. The user pays an insurance premium rT for this, where r is calculated based on the probability of the transaction being censored. This scheme not only reduces the need for users to prepare a large amount of liquidity immediately, but also can remind users through CI that T is too low and there is a high risk of censorship. But it takes time to establish a market between users and CI providers.
Community views on FOCIL and BRAID
Ethereum client Prysm developer terence believes that a significant advantage of BRAID is that it does not require additional participants. In most Inclusion List (IL) designs, including FOCIL, an additional participant is required, which adds timing constraints in Ethereum time slots, such as when IL is submitted, when bids are updated, and validator checks IL time. However, the FOCIL solution is simpler and more flexible to implement than BRAID.
Paradigm researcher Dan Robinson appreciated BRAID's design in transaction prioritization, which is not determined by the leader (single proposer) at his own discretion, effectively alleviating MEV. In addition, the conditional tipping mechanism in BRAID incentivizes non-censorship behavior, which is not reflected in FOCIL.
Developer Dev prefers FOCIL to MCP. He believes that FOCIL has advantages in providing strong resistance and simplified implementation. He also provides some improvement plans to make FOCIL easier to implement.
Ethereum researcher barnabe.eth believes that FOCIL is a fairly general and scalable mechanism. He acknowledges that BRAID has the potential to improve the guarantees provided by FOCIL in some ways, but is cautious about completely abandoning the leader-based model, believing that this is not a consensus yet and more work is needed to prove its feasibility.

Explore More From Creator

Latest News

Explore More From Creator

Latest News

Trending Articles