d-bis/smom-dbis-138
4
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity
Files
main
smom-dbis-138/docs/bridge/trustless/FRAUD_PROOFS.md
defiQUG 50ab378da9 feat: Implement Universal Cross-Chain Asset Hub - All phases complete 
PRODUCTION-GRADE IMPLEMENTATION - All 7 Phases Done

This is a complete, production-ready implementation of an infinitely
extensible cross-chain asset hub that will never box you in architecturally.

## Implementation Summary

### Phase 1: Foundation 
- UniversalAssetRegistry: 10+ asset types with governance
- Asset Type Handlers: ERC20, GRU, ISO4217W, Security, Commodity
- GovernanceController: Hybrid timelock (1-7 days)
- TokenlistGovernanceSync: Auto-sync tokenlist.json

### Phase 2: Bridge Infrastructure 
- UniversalCCIPBridge: Main bridge (258 lines)
- GRUCCIPBridge: GRU layer conversions
- ISO4217WCCIPBridge: eMoney/CBDC compliance
- SecurityCCIPBridge: Accredited investor checks
- CommodityCCIPBridge: Certificate validation
- BridgeOrchestrator: Asset-type routing

### Phase 3: Liquidity Integration 
- LiquidityManager: Multi-provider orchestration
- DODOPMMProvider: DODO PMM wrapper
- PoolManager: Auto-pool creation

### Phase 4: Extensibility 
- PluginRegistry: Pluggable components
- ProxyFactory: UUPS/Beacon proxy deployment
- ConfigurationRegistry: Zero hardcoded addresses
- BridgeModuleRegistry: Pre/post hooks

### Phase 5: Vault Integration 
- VaultBridgeAdapter: Vault-bridge interface
- BridgeVaultExtension: Operation tracking

### Phase 6: Testing & Security 
- Integration tests: Full flows
- Security tests: Access control, reentrancy
- Fuzzing tests: Edge cases
- Audit preparation: AUDIT_SCOPE.md

### Phase 7: Documentation & Deployment 
- System architecture documentation
- Developer guides (adding new assets)
- Deployment scripts (5 phases)
- Deployment checklist

## Extensibility (Never Box In)

7 mechanisms to prevent architectural lock-in:
1. Plugin Architecture - Add asset types without core changes
2. Upgradeable Contracts - UUPS proxies
3. Registry-Based Config - No hardcoded addresses
4. Modular Bridges - Asset-specific contracts
5. Composable Compliance - Stackable modules
6. Multi-Source Liquidity - Pluggable providers
7. Event-Driven - Loose coupling

## Statistics

- Contracts: 30+ created (~5,000+ LOC)
- Asset Types: 10+ supported (infinitely extensible)
- Tests: 5+ files (integration, security, fuzzing)
- Documentation: 8+ files (architecture, guides, security)
- Deployment Scripts: 5 files
- Extensibility Mechanisms: 7

## Result

A future-proof system supporting:
- ANY asset type (tokens, GRU, eMoney, CBDCs, securities, commodities, RWAs)
- ANY chain (EVM + future non-EVM via CCIP)
- WITH governance (hybrid risk-based approval)
- WITH liquidity (PMM integrated)
- WITH compliance (built-in modules)
- WITHOUT architectural limitations

Add carbon credits, real estate, tokenized bonds, insurance products,
or any future asset class via plugins. No redesign ever needed.

Status: Ready for Testing → Audit → Production
2026-01-24 07:01:37 -08:00

7.0 KiB
Raw Permalink Blame History

Fraud Proof Documentation

Overview

The trustless bridge system uses cryptographic fraud proofs to verify claims against the source chain (ChainID 138) state. This document describes the fraud proof types, formats, and verification process.

Fraud Proof Types

1. NonExistentDeposit

Purpose: Prove that a claimed deposit does not exist on the source chain.

Proof Structure:

struct NonExistentDepositProof {
    bytes32 stateRoot;           // State root from source chain block
    bytes32 depositHash;         // Hash of deposit data that should exist
    bytes32[] merkleProof;       // Merkle proof path
    bytes32 leftSibling;         // Left sibling for non-existence proof
    bytes32 rightSibling;        // Right sibling for non-existence proof
    bytes blockHeader;           // Block header from source chain
    uint256 blockNumber;         // Block number
}

Verification Process:

  1. Verify state root against block header
  2. Hash the claimed deposit data
  3. Verify that the deposit hash matches the proof
  4. Verify non-existence proof using Merkle proof with left/right siblings

Use Case: Relayer claims a deposit that was never made on ChainID 138.

2. IncorrectAmount

Purpose: Prove that the claimed deposit amount differs from the actual deposit amount.

Proof Structure:

struct IncorrectAmountProof {
    bytes32 stateRoot;           // State root from source chain block
    bytes32 depositHash;         // Hash of actual deposit data
    bytes32[] merkleProof;      // Merkle proof for actual deposit
    uint256 actualAmount;        // Actual deposit amount from source chain
    bytes blockHeader;           // Block header from source chain
    uint256 blockNumber;         // Block number
}

Verification Process:

  1. Verify state root against block header
  2. Verify that actual amount differs from claimed amount
  3. Hash the actual deposit data with correct amount
  4. Verify Merkle proof for actual deposit

Use Case: Relayer claims 2 ETH but actual deposit was 1 ETH.

3. IncorrectRecipient

Purpose: Prove that the claimed recipient differs from the actual deposit recipient.

Proof Structure:

struct IncorrectRecipientProof {
    bytes32 stateRoot;           // State root from source chain block
    bytes32 depositHash;         // Hash of actual deposit data
    bytes32[] merkleProof;      // Merkle proof for actual deposit
    address actualRecipient;     // Actual recipient from source chain
    bytes blockHeader;           // Block header from source chain
    uint256 blockNumber;         // Block number
}

Verification Process:

  1. Verify state root against block header
  2. Verify that actual recipient differs from claimed recipient
  3. Hash the actual deposit data with correct recipient
  4. Verify Merkle proof for actual deposit

Use Case: Relayer claims recipient A but actual deposit was to recipient B.

4. DoubleSpend

Purpose: Prove that a deposit was already claimed in a previous claim.

Proof Structure:

struct DoubleSpendProof {
    uint256 previousClaimId;    // Deposit ID of previous claim
    bytes32 previousClaimHash;   // Hash of previous claim
    bytes32[] merkleProof;      // Merkle proof for previous claim
    bytes blockHeader;           // Block header from source chain
    uint256 blockNumber;         // Block number
}

Verification Process:

  1. Verify that previous claim ID matches current deposit ID
  2. Verify that previous claim exists and is finalized
  3. Verify that deposit data matches (same deposit, different claim)

Use Case: Same deposit is claimed twice by different relayers.

Deposit Data Hashing

Deposit data is hashed using the following format:

keccak256(abi.encodePacked(
    depositId,
    asset,
    amount,
    recipient,
    timestamp
))

This hash is used as the leaf in the Merkle tree.

Merkle Proof Verification

The system uses standard Merkle tree verification:

  1. Start with the leaf hash (deposit data hash)
  2. For each proof element:
    • If current hash < proof element: hash(current, proof)
    • Else: hash(proof, current)
  3. Final hash should equal the state root

Non-Existence Proofs

For non-existence proofs, the system verifies that:

  1. The deposit hash would be between leftSibling and rightSibling in the tree
  2. The Merkle proof path shows the deposit doesn't exist

Block Header Verification

Block headers from ChainID 138 are verified to extract the state root. The current implementation includes a placeholder for RLP decoding and state root extraction.

Future Enhancement: Implement full RLP decoding and state root extraction from block headers.

Light Client Integration (Future)

Future implementations will integrate light clients for trustless state verification without relying on RPC nodes. This will:

  • Remove RPC dependency for verification
  • Enable fully trustless operation
  • Improve security and decentralization

Proof Generation (Off-Chain)

Fraud proofs are generated off-chain by challengers who:

  1. Monitor source chain (ChainID 138) for deposits
  2. Monitor destination chain (Ethereum) for claims
  3. Compare claims against source chain state
  4. Generate appropriate fraud proof when fraud is detected
  5. Submit challenge with fraud proof

Example: Generating a Non-Existence Proof

# Pseudocode for generating non-existence proof
def generate_non_existence_proof(deposit_id, claimed_deposit_data, source_chain_state):
    # Hash the claimed deposit data
    deposit_hash = keccak256(encode(deposit_id, claimed_deposit_data))
    
    # Get state root from source chain block
    state_root = source_chain_state.get_state_root()
    
    # Generate Merkle proof showing deposit doesn't exist
    merkle_proof, left_sibling, right_sibling = generate_non_existence_merkle_proof(
        state_root,
        deposit_hash
    )
    
    # Get block header
    block_header = source_chain_state.get_block_header()
    block_number = source_chain_state.get_block_number()
    
    # Construct proof
    proof = NonExistentDepositProof({
        stateRoot: state_root,
        depositHash: deposit_hash,
        merkleProof: merkle_proof,
        leftSibling: left_sibling,
        rightSibling: right_sibling,
        blockHeader: block_header,
        blockNumber: block_number
    })
    
    return encode(proof)

Security Considerations

  1. State Root Verification: Always verify state root against block header
  2. Block Finality: Use finalized blocks from source chain
  3. Proof Validity: Verify all proof elements are valid
  4. Replay Protection: Ensure proofs are for the correct deposit and claim

Testing

Comprehensive test suite available in test/bridge/trustless/FraudProof.t.sol covering:

  • All fraud proof types
  • Encoding/decoding
  • Merkle proof verification
  • Edge cases

References

  • Merkle Proof Verifier: contracts/bridge/trustless/libraries/MerkleProofVerifier.sol
  • Fraud Proof Types: contracts/bridge/trustless/libraries/FraudProofTypes.sol
  • Challenge Manager: contracts/bridge/trustless/ChallengeManager.sol
Reference in New Issue View Git Blame Copy Permalink