Security Improvements

Improve the security of the Ethereum protocol

Overview

This theme covers our work on improving the security of Ethereum's consensus protocol along three complementary lines: formal analysis of in-flight EIPs, protocol-level changes that strengthen the guarantees the chain provides, and formal verification of consensus specifications.

Why it matters

The consensus protocol secures tens of billions of dollars of value; its guarantees should be stated precisely, checked mechanically, and strengthened where the current design falls short. Reviewing EIPs before they ship catches gaps early. Verifying specifications guards against drift between intended behavior and deployed code. And where new protocol properties can be added — accountable safety being one example — that work belongs here too.

Publications

Jan 2025Exploring Automatic Model-Checking of the Ethereum SpecificationPaper Dec 2023Banyan: Fast Rotating Leader BFTPaper

Open Problems

Accountable Liveness for Simplex-style protocols

How can Simplex-style protocols attribute liveness failures and resume finalizing?

Discuss →

Benchmarking and testing

How can we rigorously benchmark and test consensus protocol implementations, including the interactions between their components, at scale?

Discuss →

Reconfiguration

How can we safely reconfigure consensus protocol parameters (validator sets, thresholds, timing) without disrupting safety or liveness?

Discuss →

Enshrined proposer-builder separation (ePBS) security analysis

Can a precise formal description of the ePBS (EIP-7732) protocol be extracted from the spec, and does it satisfy its intended security properties?

Discuss →