why zkVMs don't fix the oracle problem

0 replies 465 views
Posts: 11 · Reputation: 147
#1Nov 30, 2019, 06:26 AM
There’s this common belief in the zero-knowledge scene that these versatile zk virtual machines can address the oracle issue. Systems like Risc Zero, SP1, and Nexus do indeed prove that arbitrary computations were executed correctly, which is a solid assurance. But that’s not really what matters when it comes to the potential for oracle fraud. The oracle problem isn’t just about whether the calculations were done right. It’s really about whether someone messed with the inputs before those calculations took place. A zkVM guarantees that the execution was correct. But it doesn’t guarantee the integrity of the inputs. So, if a DeFi platform uses Risc Zero to validate a price calculation sourced from Chainlink, the zk proof confirms that the calculation was correctly applied to the data it had. But it can’t verify whether that data was tampered with before it got there. The oracle is still a risk factor, and that attack vector remains. Just look at the $403 million lost to oracle exploits in 2022; those losses would have happened just the same on a zkVM-based system. There’s another concern too. General-purpose zkVM circuits are pretty large. Risc Zero’s circuit is designed around a complete RISC-V instruction set and consists of hundreds of thousands of constraints. This circuit is what you need to trust. If there’s a bug in that circuit, you could end up with invalid proofs getting through. The broader the system, the greater the attack surface, which means the verifier has to trust more layers: the circuit implementation, the recursion layer, the aggregation layer, and the compiler. The Markovian Protocol offers a different angle. It limits computation to just one operation: a Markov state transition that’s completely based on the previous block hash. It doesn’t rely on any external data feeds.
6 Reply Quote Share
?Reply
Sign in to reply to this topic

Related topics