Full Report
The old Ethereum was proof of work. Now, the system is proof of stake, where stake is an amount of money they are putting as collateral if they act maliciously. Anybody can stake 32 ETH to become a staker to select blocks, earn rewards and so on. The staking makes sybil (multi-voter) attacks impossible as well. This article is about the nitty-gritty details of how this works - Gasper. Once a user stakes the 32 ETH to become a validator, they are put into a waiting queue. This is done in order to prevent network congestion on voting and preventing an attacker with sufficient funds from instantaneously making a big impact. Once a user is in the network and voting, Gasper has slots of 12 seconds and epochs that last 32 slots (6.4 minutes). For every slot, one validator is selected at random to be the block proposer. The proposer constructs the block from the pending transactions in the mempool. The purpose of the epoche is that a validator does not vote on every block. Instead, a committee is made where a validator votes on one block per epoche. What are validators even validating? They validate checkpoint blocks (start of epoche) within previous epoches and the current ones. The list of validators on the voting committee. The data of the block. In particular, the slot, index, root hash of the block and some other data. Signature. On top of the coordination above, there is other fancy networking occurring to reduce network overhead further. This is about dividing the network into regional subnets which will then communicate with the main network. This is possible by crazy math that combines signatures then broadcasts this to the rest of the network. When does a block become final? In Bitcoin, this is once 6 blocks have passed. With Ethereum, it is once another block has been verified (justified). A block becomes justified once 2/3 of staked Ether votes in favor of a block. What happens when a fork occurs? The network will always choose the fork with the most backed votes. Theoretically, independent users could fork the chain and bring it back later, only to confuse the users though. To confirm that the system works as intended, there needs to be incentives and rewards/punishments. A user has two balances: effective and actual balance. The actual balance is the amount deposited for staking, plus rewards and minus value from penalties. The effective balance is derived from the actual balance in some way with a cap of 32 ETH and is what is used for picking validators. The rewards are given based upon the actions performed. Attesting a block, proposing a new block and participating in a sync committee. The article has numbers for who gets what. However it's proportional to the amount of funds that a user has in the protocol. For penalties, it depends on what went wrong. For missing an attestation, they lose the amount they would have been rewarded. There are several other benign issues as well. If a validator engages in malicious behavior, then they are slashed; forcing them to leave the network or a large monetary penalty. One of the validators must be a whistleblower in order to do this and receives a reward for doing so. The penalties depend on how active the network is. For instance, if a single user does perform an action, then the penalty is small. If NONE of the users perform the assigned actions, then the penalty gets larger. The idea is that the inactive users on a stopped blockchain (from inactivity) will be removed fast so that others can validate properly. Overall, an awesome post on the great merge to Proof of Stake. Many great details showcasing the innerworkings of the blockchain eco-system.
Analysis Summary
# Morning News Roll-up — October 24, 2024
## Overview
Today's report covers the transition of the Ethereum network to Proof-of-Stake (PoS) via "The Merge," the technical specifications of the Gasper consensus mechanism, and the mechanics of Ethereum Layer 2 scaling solutions (Rollups).
## Top Stories
### Ethereum's Transition to Proof-of-Stake (The Merge)
- Summary: Ethereum successfully replaced its Proof-of-Work (PoW) consensus with Proof-of-Stake (PoS) using the "Gasper" algorithm. This transition utilized 32 ETH stakes as a Sybil resistance mechanism, replacing energy-intensive mining with a validator-based voting system. The architecture involves a separation of the networking and consensus layers from the application layer to ensure no downtime for end-users.
- Source: hxxps://www[.]preethikasireddy[.]com/post/how-does-the-new-ethereum-work
### Analysis of the Gasper Consensus Mechanism
- Summary: Gasper facilitates network agreement through a structured timeline of 12-second slots and 6.4-minute epochs. Validators are organized into committees to vote on checkpoint blocks, ensuring finality when 2/3 of staked ETH justifies a block. The system employs networking optimizations, such as regional subnets and signature aggregation, to manage communication overhead.
- Source: hxxps://www[.]preethikasireddy[.]com/post/how-does-the-new-ethereum-work
### Scaling Ethereum via Rollups
- Summary: An exploration into how Rollups function as a primary scaling strategy for Ethereum, allowing for high-throughput transaction processing while inheriting the security of the main Ethereum L1 blockchain.
- Source: hxxps://www[.]preethikasireddy[.]com/post/a-normies-guide-to-rollups
---
# Gasper Consensus and Validator Security
Analysis of the Ethereum Proof-of-Stake security model, focusing on Sybil resistance, incentive structures, and defensive mechanisms against malicious network actors.
## Key Points
- **Sybil Resistance:** Transitioned from hardware-based (PoW) to capital-based (PoS), requiring 32 ETH as collateral to prevent multi-voter attacks.
- **Wait Queue System:** New validators enter a waiting queue to prevent rapid network congestion or instantaneous large-scale influence by well-funded attackers.
- **Epoch-Based Validation:** Validators operate in committees, voting on one block per 6.4-minute epoch to reduce processing load while maintaining security.
- **Finality Threshold:** A block is considered "justified" and subsequently "final" once 2/3 of the total staked Ether votes in favor of it.
- **Economic Game Theory:** Uses "Effective Balance" (capped at 32 ETH) for selection and rewards, while "Actual Balance" reflects real-time penalties and gains.
## Threat Actors
- **Malicious Validators:** Entities with significant ETH holdings attempting to subvert the consensus or double-spend via forks.
- **Inactive/Offline Nodes:** While not inherently malicious, large groups of inactive nodes threaten the "liveness" of the blockchain and are subject to aggressive ejection.
## TTPs
- **Sybil Attacks:** Creating numerous accounts to gain majority voting power (mitigated by the 32 ETH stake requirement).
- **Forking/Chain Confusion:** Attempting to branch the blockchain to confuse users or facilitate double-spending (mitigated by the "most backed votes" fork-choice rule).
- **Proposer Manipulation:** Attempting to influence block construction during the 12-second proposer slot.
## Affected Systems
- **Ethereum Mainnet (Post-Merge):** All transactions and smart contracts running on the updated consensus layer.
- **Validator Nodes:** Specifically those responsible for proposing blocks and participating in sync committees.
- **Networking Layers:** Regional subnets used for broadcasting aggregated signatures.
## Mitigations
- **Slashing:** Malicious behavior results in the forfeiture of staked ETH and forced ejection from the network.
- **Whistleblower Rewards:** Incentivizes validators to report malicious behavior by others in exchange for a portion of the slashed funds.
- **Inactivity Leak:** Increases penalties for inactive users during periods where the blockchain cannot reach finality, ensuring the eventual removal of non-responsive nodes.
- **Signature Aggregation:** Uses mathematical combinations of signatures to reduce the overhead and potential for DoS on the main network.
## Conclusion
The Ethereum Gasper mechanism represents a robust shift toward economic-based security. By aligning financial incentives with network uptime and integrity—and implementing severe penalties for malicious coordination (slashing)—the system creates a high-cost barrier for attackers. Recommendations include maintaining high node uptime to avoid inactivity penalties and monitoring for slashable offenses to benefit from whistleblower rewards.