Unchained - Given the Sanctions on Tornado Cash, Is Ethereum Censorship Resistant? - Ep. 390
Episode Date: August 30, 2022Show highlights: the legal meaning of the OFAC sanctions on Tornado Cash and why it is causing complications how legislation is built for the fiat world, and how in DeFi and crypto there’s no clar...ity how miners have changed their behavior prior to the Merge whether a proof of work chain or a proof of stake chain would be more censorship resistant whether laws apply to validators in a PoS chain the ways in which the government could provide more clarification the different entities involved in Proof of Stake the liabilities for each entity in PoS and what secondary liability is how the task of the bidder can be described as a mathematical optimization problem whether Lido is exposed to US regulations how long would it take for a large staker like Coinbase to stop being a validator how a user-activated soft fork works and the conditions in which a fork could happen whether social slashing is enforceable considering it is not in the protocol the likelihood of Ethereum becoming a permissioned system the role of Flashbots’ relay code and what it means for Ethereum’s censorship resistance how DeFi’s exposure to US-based institutions can affect the likelihood of the chain complying with sanctions whether DAI is just wrapped USDC how MakerDAO is trying to be more independent of USDC why US-based companies will choose a conservative path, considering the lack of guidance the importance of educating the regulators how cash and crypto are the only remaining private payment methods Thank you to our sponsors! Crypto.com: https://crypto.onelink.me/J9Lg/unconfirmedcardearnfeb2021 Ava Labs: https://avax.network a16z: https://link.chtbl.com/HObAJQDL?sid=unchained Andrew Twitter: https://twitter.com/propelforward Martin Twitter: https://twitter.com/koeppelmann Previous Coverage of the Tornado Cash Sanctions on Unchained: Is TRM Labs Blocking Addresses From DeFi Protocols? Ari Redbord Says No: https://unchainedpodcast.com/is-trm-labs-blocking-addresses-from-defi-protocols-ari-redbord-says-no-ep-387/ Tornado Cash Sanctioned. Did the Government Overstep Its Bounds?: https://unchainedpodcast.com/tornado-cash-sanctioned-did-the-government-overstep-its-bounds-ep-384/ The Chopping Block: Did OFAC Overstep by Sanctioning Tornado Cash?: https://unchainedpodcast.com/the-chopping-block-did-ofac-overstep-by-sanctioning-tornado-cash-ep-386/ Social Slashing and Censorship on ETH Axios summary of the situation: https://www.axios.com/2022/08/23/how-transactions-might-be-censored-after-ethereum-changes-next-month BitMex research on how the sanctions affect Ethereum: https://blog.bitmex.com/ofac-sanctions-ethereum-pos-some-technical-nuances/ Ethermine banning transactions: https://twitter.com/takenstheorem/status/1560690035955011585?s=20&t=59hWdhr8_O-hYA8uYnZJ8w Nic Carter’s article: https://www.coindesk.com/layer2/2022/08/25/if-ethereum-starts-slashing-it-burns/ Eric Wall’s article on social slashing: https://ercwl.medium.com/the-case-for-social-slashing-59277ff4d9c7 CoinDesk article: https://www.coindesk.com/tech/2022/08/23/as-censorship-on-ethereum-begins-could-this-open-sourced-code-help-counter-it/?outputType=amp Hetzner banning Ethereum users: https://twitter.com/koeppelmann/status/1563146729314467840?s=20&t=ubFhCQqrQyHKfflgMHEmJw Learn more about your ad choices. Visit megaphone.fm/adchoices
Transcript
Discussion (0)
Hi, everyone. Welcome to Unchained. You're no hype resource for all things Crypto. I'm your host, Laura Shin.
Author of The Cryptopians. I started covering crypto seven years ago. And as a senior editor at Forbes,
was the first mainstream media reporter to cover cryptocurrency full-time. This is the August 30th,
2022 episode of Unchained. Need to keep up with the biggest news and market updates in crypto?
Get the Unchanged Daily newsletter in your inbox every weekday morning.
Visit Untainedpodcast.com to subscribe.
Whether you're CryptoCurious or a C-suite decision maker,
you have to check out Web3 with A16Z,
the chart-topping technology podcast about the future of the next internet.
Listen to Web3 with A16Z on Apple Podcasts, Spotify,
or wherever you get your podcasts.
With the Crypto.com app, you can buy, earn, and spend crypto in one place.
Download and get $25 with the code, Laura, link in the description.
harness the full power of the Avalanche network with Core, your new Web3 command center.
Built by Aval Labs, Core is more than just a wallet.
It's a non-custodial browser extension, engineered for users to seamlessly and securely experience Web3 like never before.
Explore Avalanche DAPs, NFTs, and more today.
Today's topic is how sanctions on Tornado Cash will affect Ethereum at the Bay Slayer.
Here to discuss our Drew Hinkus,
partner at K&L Gates, an adjunct professor at MIU, and Martin Coppelman, co-founder of NOSIS.
Welcome, Drew and Martin.
Welcome.
Thank you.
On August 8th, the U.S. Treasury Department's Office of Foreign Assets Control
sanctioned tornado cash, a series of autonomous smart contracts on Ethereum.
This was an unprecedented move since, previously, the only entities ever named to the
sanctions lift had been organizations or people who had the agency to also appeal to the government
to be removed.
Obviously, a set of smart contracts cannot defend themselves.
If you haven't yet, be sure to listen to my interviews with Jerry Brito of Coin Center and Erie Redboard of TRM Labs
for more background on why these sanctions are so consequential.
The lack of guidance from OFAC around this unprecedented move has caused quite a bit of consternation
for numerous entities in the Ethereum ecosystem, and it's raised questions for Ethereum itself
at a pretty delicate time.
The blockchain is about to adopt a proof-of-stake consensus algorithm, and the new validation
validation process involves numerous different entities. They all now face the question of whether
any action they take that helps validate blocks containing such transactions is a violation of
sanctions. And the Ethereum community is also facing existential questions around how to maintain
its censorship resistance despite the presence of a number of these entities, which have
exposure to U.S. jurisdiction. We are going to impact all of this with one crypto legal mind,
which is Drew, and one developer who is very familiar with the ins and outs of the new sticking process
on Ethereum. That's Martin. Drew, why don't we start with you? Can you tell us from the legal side,
what is the significance of these sanctions and why has been causing such complications?
Sure. So OFAC maintains a list called the specially designated nationals list. And this is a list of
countries and their nationals who, for policy reasons, have been,
determined to be subject to sanctions. The sanctions prevent U.S. persons from engaging in
financial transactions with those listed persons, their accounts, and their property,
and also renders those who have received property from those persons. It renders that property
blocked. And blocked property cannot be transacted. If you're in possession of block property,
you're required to segregate it in a interest-bearing account and to make
RECRA reports to the government 10 days after you segregate and then annually thereafter.
These are laws that are designed around Fiat.
They're designed around the system of banks and they're designed around a number of tacit
assumptions.
Obviously, there are limits as to the law.
As our friends at Coin Center have noted, the law previously has been implemented against
people and a bunch of autonomous smart contracts operating at a blockchain wallet with no
human controlling them probably doesn't qualify as a legal person. And as your introductory notes
suggested, there's no one really to appeal on behalf of those smart contracts. And so we have some
foundational questions as to whether the exercise of power under the statute is proper.
It creates some really significant issues as to those who want to comply. The smart contracts
aren't a person. So the value that flows through them maybe isn't necessarily any
one person's property. If a person sends their assets through the smart contracts and they
are sent out from one of the blocked smart contract addresses, you could view it as,
okay, this is blocked property because it came from the address. Or you could view it as,
I don't know whose asset this is, but there is no person called tornado cash. So I don't think
that these assets are actually a blocked person's assets. And so maybe this isn't blocked
property. We don't necessarily know if you are in receipt of blocked property that you actually think
is blocked property, what to do. If you were engaged in the Fiat world, you would have a bank
that maintains its own ledger and it could move the dollars or pesos or whatever into a segregated
account. It would be an interest-bearing account and they've got obligations to report to the government.
In crypto, we don't have banks that handle crypto for us. We don't have interest-bearing accounts that the
government has blessed. I know we all wish that there were. And we certainly don't have any clarity
as to what we're supposed to do if we find ourselves with blocked property. What's a segregated account?
Do I have to make a new wallet that has its own separate private key and then transfer that
blocked property to that new wallet? We have seen a law that was put in place for the legacy world
being implemented in a new way against a new type of actor, if it's even an actor at all. And now we're
grappling with the fact that we're missing a lot of information that's necessary for everyone to
understand their obligations. Yeah, I think there's a number of regulators that listen to my show.
So if any of them work for OFAC, then here you go, sort of a wish list of what the community is
looking for. So, Martin, let's turn to you. Before we get into kind of intricacies around the
upcoming proof of stake system on Ethereum, can you just explain how the miners on Ethereum under
proof of work currently have been reacting to the sanctions?
We have seen that some miners have, well, apparently changed their behavior.
So usually the default behavior would be that as a minor, you collect transactions,
and then you kind of just very simply order them by how much fee they pay, and then you put
them into blocks.
That was initially the default behavior.
but now we are seeing that some miners have stopped to kind of include transactions,
yeah, into blocks that are touching addresses.
And what touching even means is also complicated, but it's this moment at touching addresses
that are on the sanction list.
Before we even get into all the details around proof of stake, I was kind of curious if you
at this point or if the community at this point has a sense of whether a proof of
of work chain or a proof of stake chain would be more censorship resistant?
Yeah, I think that is a very complex topic. I think there are arguments for both. I would be leaning
towards proof of stake chain can be more censorship resistance, but again, there are definitely
arguments for both. So one argument for proof of stake is that in general, the number of
participants can likely be higher. So kind of the concrete example is I myself can, without any
issue, run a proof of stake validator at home, while having a competitive minor at home
kind of is a much, yeah, kind of more challenging enterprise. Okay. So you're just saying
that it's more decentralized under proof of stake? Is that what you're? There are definitely elements
that can lead to more decentralization of proof of stake.
Yeah.
All right.
So now let's dive a little bit more into the details around proof of stake.
As we just mentioned at the moment, the government took this action, but there isn't really
any guidance around how to implement it.
So people are concerned about, you know, which of the steps in a proof of stake system
constitutes a violation of these sanctions.
And so, Drew, I don't know if you have, you know, how much you've learned.
looked into the different steps here or, you know, what their level of compliance should be.
But do you have any sense if there are certain actions that clearly probably would violate
sanctions when it comes to validating blocks under proof of stake?
Well, I think we need to take a half step back and think about whether the law even applies
to validators. We know that there are really two questions here. First, are validators subject to
U.S. jurisdiction, or are they otherwise engaged in conduct that would cause them to have liability
under U.S. law? The first question has a lot to do with who is where. Is it a U.S.-based company?
Are they using U.S.-based resources? It's common knowledge available online that a considerable
amount of the staking validators are using U.S.-based cloud computing platforms, and so you've got
some connectivity to the United States jurisdiction there. A lot of the larger validators are also U.S.
companies. So there's no question in that case that you're going to look at U.S. jurisdiction.
So then assuming U.S. law applies, then we look and see whether the specific law at issue applies
to the conduct. The sanctions apply to what are called financial institutions. There's a statute
that defines a financial institution. And financial institution is the U.S. entity that's engaged
in the business of, and there's a whole laundry list of stuff, but it's like accepting deposits and
making and granting and transferring and brokering loans and credit and selling foreign exchange or
securities or futures or options and so forth as a principal or an agent. It's not entirely clear
whether validators on a base layer of a blockchain are subject to the law. What we're looking at
here is a mismatch between the legacy concepts that underlie our definitions of who's regulated
and what's actually happening on a blockchain. On a blockchain, you don't have a bank.
You don't have a registered entity that because they have this dispensation from the government
is allowed to take certain acts where they can take custody of third party property and they can
charge interest and they can make loans and do all this. Instead, we have a bunch of people,
whether they're companies or otherwise, that are deciding to deploy technology resources
in order to undertake what I would argue is sort of a ministerial function. They are taking
transactions between two willing parties and they're doing the work that's necessary to make sure
that they are validated and that they become part of the canonical history of the transfers undertaken
by that blockchain system. And so there's a real question that we don't really have a clear answer to
as to whether these entities that are providing this service to this technology system are financial
institutions at all. And if they are not financial institutions, then we have to sort of pivot the
analysis from as financial institutions, what are their obligations to? If they're not financial
institutions do they otherwise have obligations?
It's possible if they're not that a conservative approach would suggest that they should
still undertake some sort of measures because in this case, the juice may not be worth
to squeeze.
Sanctions is under U.S. law, something of a strict liability standard.
The why you did it or the circumstances in which you violated aren't really that material.
If you violated, you have violated.
And then there's a process by which you can.
introduce information about mitigating circumstances, and then OFAC will decide whether, after you
violated, any sanctions necessary at all. The sanctions can range from incarceration to a fine,
to public description of what happened to nothing. And so given the ambiguity in how the law
applies at all, and given the lack of clarity as to whether these actors have obligations at all,
it's very hard to come to any conclusion without more information from the government.
And we could get that information in one of a couple ways.
The government, OFAC could provide us with what are called FAQs, which lay out additional detail
that helps those who believe that they're subject to obligations understand what they can
and can't do and how to do it.
And there's also a process by which information as to what someone can or can't do in light
of the sanction designation that can be issued generally, which would be called a general license.
A general license might be really helpful in that it might say, if you have blocked property,
here's how you designate it in a segregated wallet. And if you do these things, even if they
technically violate, we're not going to hold that to be a violation. Now, if you have a specific
issue as your specific assets, you can ask for something called a more narrow,
specific license as opposed to a general license. And you get that sort of license if you have a
specific piece of property that you believe is blocked, but you want some clarity as to what you
can or can't do. We need more from OFAC to really understand whether validators are subject
to this law at all. And we need more from OFAC to understand really practical how do I implement
this and when do I implement this sort of questions. Yeah, actually from your comments earlier on,
where you were talking about whether or not something is a financial institution.
I happen to see that Martin tweeted about a cloud provider that blocked an Ethereum user.
Martin, can you talk about that?
Because that indicates that, yeah, some of these tech companies are feeling like they have an obligation to comply.
So, Martin, can you talk a little bit about what you saw there?
Right.
So I think it just shows how large the uncertainty is about kind of how many,
layers down the stack are we going?
So it's unclear whether a validator has kind of those obligations.
Even those might not have those obligations,
but now it turns out that even kind of the layer below,
so yeah, a cloud provider in this case,
it was Hedzner.
So kind of they offer somewhat similar to AWS.
They off make it easy to kind of, yeah,
run a Ethereum node in the cloud.
they have started to be much more strict against Ethereum usage.
So right now you are on most of their services not allowed to run,
to just even run an Ethereum node,
even if you are not a validator,
a complete strict ban of just running Ethereum nodes,
which in my view is pretty insane.
Yeah.
So, and again, this is under proof of work.
So now let's turn to Proof-Stake.
And Martin, why don't you just,
walk us through what that validation process looks like,
who the different entities are,
and then we're going to kind of step by step
ask different questions about what their need is
to comply with these regulations.
So just walk us through how that process works.
Yeah, so mainly we are talking about validators.
So who are validators?
Anyone can be a validator.
I'm running a validator for Ethereum,
but really anyone can do it with,
You need 32 Ether and you need to put them into a smart contract
and then you can run a validator.
And on Ethereum, there are currently 300,000 of those validators.
And it is the task of the validators to build blocks.
More or less randomly, for each next block,
one of those validators is chosen and now there are multiple roles.
So first, someone, and that can be the validator, that can be someone else, needs to build a block.
And that really kind of means taking a bunch of transactions, putting them in order and kind of executing them, and then kind of, well, producing kind of this new block.
So the first step is the block building.
In the next step, only for each, yeah, we call it slot.
So a slot is a potential block.
For each slot, there is exactly one valid.
out of those 300,000 chosen, and this is the proposer.
So now this proposal has some time, a few seconds,
to propose a block that was built.
Again, it could be built by themselves,
it could be built by someone else,
and now this block can be proposed.
And in the next step, so that's the second step,
building, proposing,
and the third step is attestations.
So again, for each of those slots,
there is a subset of all the validators,
a subset is responsible to attest,
kind of to a proposed block.
And as someone or as a validator was the obligation to attest to a block,
you have kind of two choices.
You can wait for the block and if you see it, great.
If you see the correct block by the correct proposer,
you can attest to that.
If you don't see that block,
and that might be the case,
because the proposer might not be online.
So that usually rarely happens, but it could happen.
Then you would attest to the latest block you know.
So that's step three at a stations.
And in a way, then step four is this process again,
and then kind of producing a new block and then building on top of that block.
And I think kind of for all those four steps,
potentially we need to ask questions around how does this?
relate to sanctions and kind of is that, yeah, I mean, questions are obvious.
Why don't we just start with the proposers, the ones that are, you know, propagating these
blocks out? Since the process of building the block happens with the block builder, would
validators even know if they're processing a block that has sanction transactions in it?
Yeah. So that is the so far default behavior is that a builder and a proposer
kind of that's done by the same
validator.
That is so far
the default.
But there are
a lot of efforts
build a proposal separation
to separate
those processes
and have specialized builders
and yeah, quite likely
that's currently a little bit
also up in the air
but it seems very much
that the default software
will support
again a separation
of that. So as a proposer, you can kind of point to builder, either to a single builder or to a network of builders and you kind of get suggestions from different builders. And then you could pick the one that is kind of highest paying. So if there is no separation, well, then obviously as a proposer, you know what's in the block because you have been building the block yourself. If there is a separation, then you, you know,
then exactly you're right.
As a proposer, you don't know what's in the block.
So you kind of ask the builders,
and what you get from them is just a hash of the block
plus a promised kind of payment.
And that's all you know.
So you only know this block will pay so much.
The next step, you would sign it, this hash, just this hash.
And only after you signed it,
then the builder would release the block
and kind of then those who attest to the block,
they again then see the block and see all the transactions.
Oh, so only the attestors end up seeing the transactions.
Oh, this is so interesting.
So Drew, when you listen to, well,
so before we get to the proposal builder separation part of it,
so if a validator is both building the block but then also validating it,
what do you think their liability is here?
do they need to censor transactions, or is it, again, what you were saying before, it's not clear
if their function is more financial or technical or, yeah, I just want to hear you kind of analyze
what their liability would be. Sure. We need OFAC to give us more information to understand how
all of the obligations that apply to listed addresses and to blocked property should apply in this
context, what I take away from Martin's really clear explanation is that the process of validating
is more complex with more actors with different amounts of information. One bit of information
that I do want to pepper in just to make it even more complicated is the fact that there are
hypothetically two different types of transactions that might be of concern. One would be
transactions that include an address that is listed hypothetically. And the other one,
would include property derived from a listed address, which hypothetically could be considered to be
blocked. Obviously, hypothetically assuming that there was some sort of obligation, it would be a lot
easier for anybody looking at a block to look at an address, because if it's on this list and it's in
the block and you can see the block, then hypothetically you can potentially do something about it.
It strikes me as though it would be incredibly complex and perhaps not practical to further impose the obligation on anyone participating in validation, not just to look up addresses, but also to try to determine whether a given asset that is to be transacted in a block is blocked property.
it's from martin will probably tell me that it would be impossible to do so without some dramatic
overhaul of the the way that consensus is built or without the addition of other technology tools
so i wish that i i wish laura i could tell you that i knew exactly what ofack was thinking i wish i could
tell you that i've seen a draft f a q or something um the government unfortunately does not tell me
what they're thinking i find out with everybody else when they decide to tell us the hope is
that we will get clarity either in the form of a general license or in FAQs that can address
some of these questions. But for now, we're stuck in a place where we're speculating.
And I want to build on that. So even the first option you mentioned, kind of quote unquote,
just blocking the addresses, even that is technically far from trivial because what is relatively
easy is kind of to see, if you see a transaction, you can relatively easy see it has a from
and it has a two.
However, the two can very well be a smart contract
and you don't know what this contract will do.
And it's absolutely not trivial to figure out in advance
what this contract will do.
So it's possible that you see kind of the from is fine,
the two is fine, but then the two is a contract
and it executes some complicated logic
and it calls another contract and it calls another contract
and eventually this other contract then finally calls,
or sends money to a sanctioned address.
There are some people arguing if you would try to kind of filter those transactions out,
that you would have kind of DDoS problems,
so kind of that the validator could be spammed with lots of transactions
and they execute them all just to at the very end learn that they need to throw them away
because they touched this forbidden address.
That was, by the way, many years ago,
also the argument to not do what's called a soft fork
in those kind of the time when the DAO hack happened.
So when the DAO hack happened before,
then eventually this fork was done where kind of the heck was reverted.
There was a discussion to, yeah, in a way, sensor or block the attacker.
and exactly because that is so complicated
and you can't really know up front
whether a transaction will eventually touch it
exactly because of that reason
that plan was given up upon.
And so the other thing would be,
I really don't see,
to go then even a step further
and say kind of try to block everything
that has tokens or coins in it
that came from somewhere.
Yeah, I can't really see
how that would work.
Just to build on Martin's point, remember, these laws are created for banks.
These are banks that are required to send information about the sender and recipient,
the source of funds, and all the other stuff that travels along when a bank
transactions with another bank based on the travel rule obligations.
So finding out the source and the origination of a transfer is trivial.
All that information comes with the transaction.
What we see with these assets is the complete opposite.
not only do not get that sort of information, but as Martin suggested, you might be sending between
two robots who actually have code that would result in the ultimate destination address being
contingent on some third-party factor. Imagine it goes to a smart contract that says if the certain
occurrence comes to pass, then it goes to address A, and if a certain occurrence comes to
pass and it goes to address B. It may be that it's impossible at the time of the transaction
to know where the ultimate destination is. So again, this is dramatically different than what we
see in the traditional banking system. And it's one of these complications that, although I don't
expect that OFAC would give us FAQ that cover every hypothetical contingency, some clarity
would certainly be beneficial. Yeah, I actually wanted to mention about Martin's point.
about the Dow hack, you know, because this came up when I wrote my book, but one of the fun
facts about that was that it was a high school student who figured out that this denial of service
attack was possible, basically, by doing that. And I agree, it's basically the same situation here.
All of this is very complicated. It takes kind of a long time to explain. So what we're going to do
is we are going to talk about how all this would work once we have proposer builder separation.
But first, we will take a quick word from our sponsors.
We will be right back.
Bet mode activated.
The Scorebet app here with trusted stats and real-time sports news.
Yeah, hey, who should I take in the Boston game?
Well, statistically speaking.
Nah, no more statistically speaking.
I want hot takes.
I want knee-jerk reactions.
That's not really what I do.
Is that because you don't have any knees?
Or?
The score bet.
Trusted sports content, seamless sports betting.
Download today.
19 plus, Ontario only.
If you have questions or concerns about your gambling or the gambling of someone close to you,
please go to conixonterio.ca.
With Amex Platinum, $400 in annual credits for travel and dining
means you not only satisfy your travel bug,
but your taste buds too.
That's the powerful backing of Amex.
Conditions apply.
Curious about the world of crypto and the future of the next internet,
then check out Web 3 with A16C,
the chart-topping technology podcast from the Mines at Andresenhorowitz,
the go-to destination for discussions on tech as it changes our world.
Whether you're a crypto-curious person looking for signal versus noise in the day's headlines,
or a C-suite decision maker seeking to understand Web3 as part of your business strategy,
Web3 with A16Z is the podcast for you.
Tune in each week for leading insights from the top scientists and makers in the space
through carefully curated conversations with acclaimed podcast hosts,
Sonal Choxi, former showrunner and longtime host of the A16Z podcast, along with frequent guest
appearances and hosting by Chris Dixon. Listen to Web 3 with A16Z today on Apple Podcasts, Spotify,
or wherever you get your podcasts. Join over 10 million people using crypto.com, the easiest place
to buy, earn, and spend over 150 cryptocurrencies. Spend your crypto anywhere using the
crypto.com visa card. Get up to 8% cash back instantly, plus 100% rebates for your Netflix, Spotify,
and Amazon Prime subscriptions. Download the crypto.com app now and get $25 with the code Laura.
Link in the description. Is your Web3 experience hindered by inadequate crypto wallets and browser
extensions? Avilavs has created Core, a free non-custodial browser extension, engineered for Avalanche
users to have a more seamless and secure Web3 experience. The best in class Avalanche Bridge
now offers native support for the Bitcoin network. Put your Bitcoin to work in the robust
DeFi ecosystem by bridging BTC to Avalanche today. With Core, you can also easily swap assets,
display your NFTs in style, store your assets in a ledger-enabled wallet, and put real
dollars into your crypto wallet in just a few clicks. Core is everything you need for a simple, secure,
and convenient Web 3 experience. Download the free core browser extension from Google Chrome's
App Store today. Back to my conversation with Martin and Drew. So as we just mentioned,
things will look even different once we implement Proposer Builder separation on Ethereum.
So at that point, you know, as we discussed, the blocks will be created by a different entity
from the proposer. So at that point, can we talk a little bit?
about what the liability might be of the different actors.
We have the block builders, the proposers, and then the attestors.
And as Martin pointed out, it's the proposers who actually won't really know what the
transactions are.
Drew, do you have a sense of what the liability might be for each of those entities?
I fear that I'm going to start sounding like a broken record.
But again, the laws that are in place that we're grappling with were not designed for
protocols that facilitate transactions. They're designed to regulate actors that are legally
addressable and that have obligations under enforceable law. We're thinking more along lines
banks rather than of those that are part of the plumbing. Yeah, but is there a way to say
something as simple as since the builders and the attestors will actually see the transactions
that their liability might be higher? Again, the keystone issue is, does this law apply at
all. Are these the sort of actors where the law would potentially apply? I guess we should talk
about secondary liability, which is notwithstanding whether you have any obligation you've registered
or not, if you are eating and abetting third parties in transacting blocked property, for instance,
you may have liability. Again, we have no idea how OFAC thinks about block validators or miners
or those that operate the base layer. You can make an argument that, for instance, banks are
regulated, but the SWIFT protocol by which banks communicate with each other is not regulated.
OFact doesn't tell the SWIFT network don't send a message here. It tells participating banks
don't honor messages from this bank. We saw with Russia, for instance, Burbank, which is largest
bank, I think in Russia, used to be a member of SWIFT and there was political pressure placed on
SWIFT so that the member banks, which include non-U.S. banks would discontinue communications
over Swift with Verbeck.
So it may not be the cleanest analogy,
but there is an argument to be made
that we should think about the base layer
irrespective of whether there are entities
that are providing services on the base layer
as if it's a communications protocol
and not a set of legal actors with obligations.
We don't know how OFAC thinks about this.
So it's too speculative for me to really take that anywhere.
What I can do at least is try to make the kind of technical argument why they should not.
So the task of the builder can really be described as a pure mathematical optimization problem.
And actually, yeah, it is also possible to represent the problem very much abstracted away from the concrete addresses.
So mathematically speaking, you have just a bunch of items and you want to pack them.
together in the most efficient way so that you in the end generate the most fees.
Again, you could convert this problem to really a pure mathematical optimization problem.
So if solving that or working on this optimization problem is allowed, then probably you could
argue the builder doing the builder's job is fine because that's really all they do.
So next, the proposal, what they do is really just query a bunch of,
of those solvers or kind of those those who try to solve this problem as good as possible.
And all they do is pick the one that pays most.
Again, that's all they do.
And at this point, when they sign it, they don't have any knowledge about what transactions are in this block.
So now the third step would be those who attest to the block.
And again, here they are in a situation where they have only the choice to say kind of
this block exists and I'm attesting that it exists or, well, they could kind of decide to lie about it and say it doesn't exist.
But yeah, those are, again, the only two choices.
So as long as they kind of don't maliciously act against the protocol and pretend something doesn't exist that does exist, they also don't really have any choice here.
Why don't we now talk about the fact that some good percentage of the proposer slide,
validators are going to be these large entities that have U.S. exposure, Coinbase, Krakken.
I don't know. Actually, I try to figure out, does Lido have U.S. exposure or do we know if it's going
to follow sanctions?
Yeah. So with Lido, it is slightly more complex again because Lido is somewhat layer in
between validators.
So how Lido works is that they,
that plenty of people can kind of deposit their ESA to a contract.
And now Lido, yeah, kind of a DAO or entity, whatever you want to call it,
is splitting up that EAR to many individual validators.
I don't know the exact number, but it's at least 20, 20 then validators that this
ESER is kind of delegated or given to,
but in such a way that they don't control the ESER,
but they can perform this attestation
and propose a task.
So because you can set up a validator
and you have a specific withdrawal key,
which kind of means you are in control of the ESER,
and that's not given to them, but the key that is used
for those attestations and proposing that is given to them.
So asking deeper, I assume one of those 20 validators who was in LIDO,
I very much assume there are also U.S. entities in it, but I don't know.
In general, if we're going to have, so if we add up Coinbase Cracken,
Binance, unclear, they at least have Binance U.S. Lido also unclear,
but all of those together, that's like 60% of all validators.
I don't know what your perception is around, what the rhythm.
risks are posed now to validation if we have some of these major entities that at least some of
them do have U.S. exposure.
Yeah, so there are a few things that could happen.
So, again, I guess the happy cases, it turns out it's fine for them and nothing happens
at all.
There is then, of course, the case that they feel that they are obliged to kind of not include
those transactions, that would probably mean they can't use proposer-builder separation,
because, again, if they use it, they don't know what they are proposing.
Or they would need to specifically work with builders that kind of build according to some rules.
Then there is still the case where even if it's 60%, even if it's 70% of the validators would do
that, what that then effectively would mean that specific transactions will essentially kind of
will take longer.
Because if you do a specific transaction that is filtered out by some rules, you will probably
need to wait for until a validator comes that uses different rules and will include your
transaction.
Of course, like if we are talking about those hypotheticals, then I guess the question is
even are notes then even allowed to broadcast those transactions, but, okay, putting that, putting that aside.
So, so kind of that that could be one case that those transactions will just be kind of slower because
you need to wait for such a validator.
The thing where it really becomes could threaten Ethereum at its core would be if those, yeah,
kind of those validators that follow different rules would not even build on top of blocks
that violates those rules.
Well, do you have any indication of whether or not they're thinking about trying to not build on blocks that contain sanctioned addresses?
Yeah, so far, everyone absolutely said that they would not do it.
Yeah, the Coinbase CEO was even saying on Twitter before doing that, they would halt or kind of stop all.
all their validators.
So far, that is absolutely no one saying is that they would do that,
but it's, yeah, that would be theoretically possible
and that could really threaten Ethereum.
Yeah, I did see that Nick Carter of Castle Island Ventures
did an op-ed for CoinDesk.
And in it, he wrote,
the board won't allow Brian Armstrong, the CEO of Coinbase,
to shut down Coinbase's massively lucrative staking business
because some dot-eaths were,
mean to him online. So, I mean, who knows? Obviously, we don't have somebody from Coinbase here,
but, you know, it is a good point that Brian may have said this on Twitter, but when it comes
down to it for business reasons, who knows what they would actually do. So one thing is,
you know, because Brian did raise this issue of them shutting down their staking business,
I was curious, how long would it take a large staker like Coinbase to exit? Like I read Eric Wall
surmised maybe a month or longer. And then I didn't know, like, during that time, would they still be
proposing blocks or, like, how does that part work? I think we need to all separate here two things.
So it is possible right now to kind of stop being a validator. What is not yet possible is to
withdraw your stake. So we are still in this period where we are, we are still pre-merged.
And even with the merge, the transition to proof of stake will not be completed because again, eventually it should be possible to kind of stop being a validator and essentially eventually having your ether again on the Ethereum blockchain, having it transferable.
So this moment when you can with raw stake, that is expected to happen six to 12 months after the merge.
But what is possible right now and is immediately possible is kind of to stop your validator duties.
Yeah, and that means a few things.
That means first you will no longer be, yeah, you will no longer be chosen to, yeah, propose and attest to blocks.
And it's important to note that if you stop attesting to blocks while you are still, yeah, while you are still in active validators, you are penalized.
how much that is depends.
So if very few nodes in the network or validators in the network
disappears, those penalties are fairly small.
So kind of being one day offline is the just the equivalent roughly
of what you would earn for being one day off online.
So it wouldn't be a big penalty if out of a year you are two days off.
Offline.
And that's important because we want
and kind of also have it possible to be a validator if you don't have a professional setup
and you kind of just run your validator from home.
However, if a large percentage of the network kind of is not online, then those penalties
can be very significant.
And that's also kind of needed because if a large percentage of the network would be offline
And that is a little bit how it would look like from a network perspective,
if some validators would decide to not build on top of specific blocks.
Because for those who do build on it, they kind of just see their version of the history.
And in their version, they just see that those, that those, yeah, kind of some percentage is missing.
And they don't necessarily see that they are building their alternative version of history.
So kind of on a chain that would be like, let's say, then uncensored,
those validators that are not attesting would kind of potentially dramatically lose their stake
because on that chain they are offline and a lot of them are offline.
So they will kind of essentially their stake will disappear in a way
until that chain is then able to what we call finalize again.
So finalize means that enough of the active.
validators attest to a block.
Wait, so are you saying that in that instance then,
that would cause a fork, or are you saying it would cause a reorg?
I don't know if I fully followed.
Yeah.
I mean, both of those things are possible.
Again, we are talking about this hypothetical scenario
that some validators would start just ignoring blocks,
although they are correct proposed,
and they get correct attestations.
But if you would have the policy that in your kind of view,
you would see them as invalid because, again,
they violate some additional rules that are not part of the Ethereum Protocol,
then yeah, you would probably build a block and that would potentially cause a fork, yes.
And then kind of on the other fork, you would lose your stake.
Okay, yeah.
One thing I wanted to just mention about.
that was obviously, so as people saw it like Coinbase, you know, is a large staker at the moment.
My guess would personally be that if for whatever reason the money that they had stakes was slashed,
I feel like the company would somehow make it up to their clients, even though some number of
them are probably institutional, it would probably be a lot of money. But for the retail,
I imagine they would. Why don't we just move now to Forks? I do have some other questions.
about those entities, but since we're talking about forks right now, why don't we just talk about
this? Because there were people talking about doing what's called a user-activated hard fork
to prevent censorship on the chain. And this would be kind of a user-led movement to punish
validators who do censor the chain. But Martin, just from the way you were describing things,
does it, do you think that that would then essentially lead to two different chains? Or what's your
take on what would happen if people were to try to do that?
Again, it depends on many factors.
So if a minority of validators would start, yeah,
what I would call adding additional rules to Ethereum because that's what it is.
If you say kind of specific transactions are not valid,
then by Ethereum standards, it is a valid block.
By your standards, it's not.
So if a minority would kind of ignore valid blocks, Ethereum valid blocks,
then they would essentially create their own fork.
And that would be kind of in a way, fine for Ethereum.
The issue comes when that becomes the majority.
So again, this is very hypothetical, but if a majority of validators would agree on the same rules,
and that is not even, that's very far from trivial because like even if they, if they all agree
they want to honor those or kind of want to act according to those sanctions, it's absolutely,
I mean, there are so many edge cases where it's not at all trivial kind of to then make
a clear distinction between valid and not valid and that would be required to have a coordinated
fork. So if that would happen that, I don't know, 70, 80, 90% of validators would,
would add new rules and kind of try to go for such a fork.
Then, yes, there is a theoretical, again,
all very theoretical option of a user-activated fork
where users could decide to essentially manually remove
those validators from Ethereum, or remove their e-set balances,
remove them from the validator set,
and continue as a validator set that acts according to Ethereum rules.
Again, all very hypothetical.
And I just have a question, because it wasn't totally clear to me.
People were also talking about something called social slashing.
Is that the exact same thing that we're talking about?
Or is that?
That would be social slashing, exactly.
Okay.
Well, as I read, social slashing isn't something that's in the protocol.
So it would sort of be like people taking it upon themselves, like,
vigilante style to do this.
Like how, you know, is that even enforceable?
Well, I mean, in a way, that is what happened in the, in the, in the Dow fork.
So, I mean, to be clear, of course, the fork that reverts the Dowhek was also not in the
protocol, but yes, it is ultimately a community power or kind of a network power to, to make
forks.
Every fork is a, is something that's not in the protocol or was previously not in the protocol.
Okay. So I'm curious to hear from the both of you, just what do you think are the risks that will end up with two chains, sort of like the OFAC compliant chain and then the censorship resistant chain?
I think it is unlikely that we end up with a chain where under no circumstances, for instance, blocked property could ever be transacted for a very simple and obvious reason. If you're in possession of blocked property,
you're required to send it to a segregated account.
If I'm in a centralized bank,
the bank can just move some asset on a subledger
and say, okay, I create a new account,
it's interest-bearing because I have the legal power to do that.
I'm going to file my report with OFAC,
and I'll keep filing my annual reports,
and the bank customer just sort of goes along with their life.
And if OFAC wants to investigate, they might,
and they might inconvenience the customer,
and great, or not great, however, it shakes out for them.
In this context, if a recipient of blocked property, and let's ignore the fact that we don't really understand if tornado cash, if transactions that come from tornado cash listed, eth addresses are blocked or not, the safe conservative approach would be to say yes, but there are real questions if it is. Leaving that issue aside, let's say that there was property that came from, say, the Chinese fentanyl ring whose eth addresses were designated on the SDN list in 20,
by OFAC. Let's say that you unwittingly, unknowingly, by no fault of your own, receive some
eth from them. If you wanted to comply, you would try to figure out, well, how do I segregate that?
Any effort to segregate requires a validator to validate the transaction. I can't use a magic
wand and just move my eth without having it confirmed by the network. So unless
OFAC tells us how, we logically would need valid.
validators to validate a transaction of block property. Now, how could they do this? They could give us a
general license that says, if you want to segregate your block property, do this. And that would
hypothetically give the validators some comfort that they could validate. Again, broken record,
we need OFAC to tell us what to do. But if we are to adhere to what it appears the law requires,
it seems unlikely that we would ever be in a world
where absolutely no transactions of block property are allowable
to the simple reason that the law seems to require them.
Yeah, so to make that also very concrete,
that is one thing that happened a few days after the sanction list,
yeah, got announced that someone started sending tiny amounts
from one of those addresses to many, many, yeah, kind of prominent Ethereum addresses.
So kind of Ethereum addresses of celebrities of, yeah, I think.
Shikala O'Neill.
Exactly, exactly.
Right.
Brian Armstrong.
Yeah.
Exactly.
Exactly.
So all those, yeah, all those addresses are, well, potentially, yeah, potentially blocked
or whatever, I can have kind of theoretically.
And it would be fairly trivial to do that at a much larger scale than it was done.
I was previously, well, obviously joking, but saying kind of in theory, someone could write a bot that says that watches out for any larger deposit to an exchange because it's fairly easy to see.
And while that transaction is in the mempool, so kind of not yet confirmed, but visible,
but someone could send a send to the sender.
So now kind of at that moment when the exchange receives the money from that sender,
they kind of the exchange would need to acknowledge that just a second before that address
received one cent from from, yeah, kind of the sanctioned address.
So I guess where I'm trying to go, it is incredibly hard to kind of come to any practical
kind of solution for those sanctions or how to deal with those sanctions.
So that is, again, also why I would answer your initial question, how likely is it that we
will see a fork with very, very unlikely because it's, again, very, very unlikely to find
to find technical, practical, practical rules for Ethereum,
how Ethereum could meaningful exist.
So I think to implement those, yeah, kind of those sanctions in their strictest form,
I think you would need to turn Ethereum completely on its head and say it's by default
a permission system.
So kind of right now, it's kind of, right now, anything that is,
by default,
any kind of
any kind of
transaction is allowed.
And if you would want
to do this
strict censorship,
you would need to have
just a
white listed list of
transactions,
of transaction types
that you are allowed
to do.
So you could say,
yeah,
sending ESA between
two addresses
that are not on the list,
that's fine.
But then immediately
as it comes to contracts,
you would say,
yeah, only contracts
where we know they only call
those kind of,
so again,
I think that would be
different from what Ethereum is.
And by the way, it is possible to build such a permission system on top of Ethereum,
but I don't really see that it is possible to build that into Ethereum.
So you can have a permission system on top of a permissionless system, but not the other way around.
One quick clarification, just for the listeners, this is complicated stuff,
and we don't usually spend a lot of time thinking about sanctions because it's not something
that usually kind of invades the conversation like this. But just a little bit of a clarification.
An addressed receiving blocked property does not make the address blocked. When a bank account
receives a transfer that should be blocked, some of the cash that's received needs to be segregated.
One of the questions that we have, and this is an eth question, but more of a crypto question,
writ large, is if address that has five-eth in it receives one-tenth of an eth, what
exactly are we segregating?
Ether are fungible and balance-based.
So can we just choose any one-tenth and move it to some other address and move on with
our lives like we would with cash, or is there some obligation to try to identify the
fraction of ETH that was received if that's even possible?
If we're looking at this on a UTXO-based type of system like Bitcoin, it's actually
easier if you catch it because you can actually identify the fragment of Bitcoin that
you've received the actual UTXO and segregate that. But again, this is this is a question that we
don't have an answer to from OFAC. And this is one that you can, that we can probably get an answer to
through FAQ. But the big picture is you don't become a listed account or a listed address simply
because you've been grieved or spammed. Yeah, why on social media, you probably saw a bunch of users
being like, I didn't even engage with tornado cash.
Like, why am I being blocked from this or that defy protocol or even someone was like,
I was hacked?
That's how my money, my account got associated with tornado cash because somebody stole the
money from it, ran it through tornado cash.
But like, that was before it hit tornado cash and they were being blocked.
So.
Andrea, I'm just thinking that's important that you say that.
But the unfortunate reality is that a bunch of projects kind of,
went so far and did that.
So essentially said, and again, that is, the reason is the uncertainty.
They then call it a risk-based approach and say, kind of this address received money
from out of tornado, and then we just ban it in our service.
Really quickly, what I'll say in a podcast under a set of hypothetical questions and conditions
is different than how I'll advise a client when I have specific facts.
But we're talking about, most of our conversation has been about those who are serving third parties I want to transact on a base layer.
Different companies that provide different services at different layers may have different levels of exposure and different legal obligations.
So I would caution perhaps some sympathy or pathos for different folks in the industry that are looking at this challenge with,
a different set of obligations. Everyone is hamstrung to a degree by the fact that we're trying to
implement 19th century or 18th, sorry, 20th century rules on 21st century technology.
Yeah. One other kind of ludicrous scenario you could call it that Eric Wall, a bitcoiner,
who's also very interested in theory and pointed out, he wrote this amazing blog post,
the case for social slashing, which people should read because it walks through all different kinds of
game theory around sanctions on Ethereum. But essentially, you know, he concluded, okay, so,
you know, here if we end up with this chain that does follow sanctions, then who's to say,
like, what if, you know, people want it to follow the sanctions of this other country that,
you know, has interest different from the U.S. or whatever? And so, like, yeah, it just gets to
this place where it is kind of ridiculous. And it sort of shows how unenforceable this is.
I want to push back on that for just a second.
U.S. is big in a lot of ways. I think we still have the biggest economy in the world,
and I know for sure that we do the most sanctions in the world. And most other sanctions
lists are based in fact, if not in concept, on the United States. We are the most sanctions
heavy of any jurisdiction. So while the idea that we could splinter Ethereum based upon the whims
of certain specific subgroups into a bunch of groups of validators that lose the
ability to remain in consensus with others because they change the protocol rules so they
can't form new blocks together, could lead to a number of new versions and distinct chains.
We have seen that the majority of validators will continue to be supporting the chain that most
will use.
And in the context of Ethereum, where there are so many material commercial considerations
that are built and operated on the second layer above and on Ethereum,
we've seen commercial interests indicate,
even if there is a POW fork that remains after the merge,
the authoritative canonical supported commercially viable version of their product
will be on the POS system as it goes forward.
If there were to be nine different sanction versions,
I suspect that those actors would do the same thing.
Yeah.
Before we actually get to that, I just want to ask one last.
Oh, Martin, did you want to say anything?
Just one comment to the United States is the country with the most sanctions.
Maybe that's true, but it's certainly not the country with the most restrictions.
So, I mean, like even if it's not called sanctions, other countries have all kind of restrictions
what you are allowed or not allowed to do.
And I would argue on that level, the United States are more on the,
you're allowed to do more.
So if Ethereum would need to to kind of make sure that all the,
I don't know, kind of restrictions that are applied in China for currency control
or kind of all those things would also need to deal with them,
again, that would make the system, yeah, possible to operate.
Yeah, before we move on to some of the things that Drew was mentioning,
which refers basically to defy,
I did want to ask about one last piece about the validation process,
which is the fact that flash spots will be the default relay on Ethereum at the time of the merge.
The company has already announced that its relay will be censoring transactions that involve
these sanctioned addresses.
And so they said that they were going to be open sourcing the relay code to encourage other
ones to be built.
But obviously, it's a short timeline.
They only announced this roughly like a month before the merge is going to happen.
I'm guessing that flashbots still will be the default relay at the time of the merge.
I don't know.
Martin, maybe you'll tell me I'm wrong.
I was wondering if that's the case.
Does that mean that effectively Ethereum will be complying with sanctions for some period
and will not be censorship resistant for the first, I don't know,
month or two of launch?
Yeah.
So a few important pieces here.
So first, it's still a choice of every individual validator whether or not they use a builder
proposal separation.
So it's absolutely still your choice to build your own blocks.
and therefore, yeah, in a way, not use flashbots or MED boost.
The second thing is, yes, I think you mentioned it.
So flashbots used to be for a long time the most prominent builder,
although there have always been others.
There has been a project called Eden Network, whatever, there have been others.
But they kind of open the same.
sourced their software.
Yeah, it's called MEV Booth.
And that kind of, yeah,
facilitates this builder proposal separation.
And yes, they will probably run a builder.
Or if you want to go even more into the details,
they will run a relay.
So kind of that connects various builders to the validators,
to the proposers.
But yes, there was already an announcement
that at least, there will be at least a handful of other relays.
Some have said, of course, that's, well, we will only see, time will tell, that they will not apply sanctions or kind of filter for those transactions.
But bottom line is there will be some validators that simply don't use it, that simply build their own blocks, according to their own rules.
And yes, there will be a variety of builders with different strategies.
Okay, so now let's turn to the defy issues. And really, I think, well, you can name, there's two different factors here. First is that a number of these defy entities do have U.S. jurisdictional exposure. And then on top of that, as I'm sure you're aware, U.S.DC is managed by a consortium that, you know, the two most prominent members are Circle on Coinbase. Also, both U.S. entities. And U.S.
DC is something that's just interwoven through the fabric of defy.
I would almost say that defy is somewhat dependent on it.
It just saw it was the top asset for borrowing and lending on compound.
It backs more than half of dye, etc.
So how do you feel that these issues around both different defy protocols,
exposure to the U.S. and, you know, the dependence on U.S. D.C.,
how do you think that's going to affect how things play out?
Because a part of me feels like it almost pushes things in the direction of two chains.
Yeah, no, I mean, that is a very, very big question of, again, how practically what USC decides to deal with the situation.
So you mentioned correctly that at the moment, that might change very well, but at the moment, a very big percentage of die is backed by
by USDC.
And I think that's a little bit provocative statement,
but some have called the Di wrapped USTC.
And die, for example, doesn't have the ability to restrict individual accounts.
So with USTC, an individual account can be frozen.
With die, it can not be.
And of course, in general, those.
those sanctions or kind of restrictions,
if they are very easy to circumvent,
they are, well, they will just,
they will just, I mean, not be effective
or kind of not really do anything.
So then, of course, in always the question is
if they are being circumvented,
what will the next step be?
And of course, ultimately,
a step could be for USTC
that they would somehow need to be
would probably be pressured or kind of see an obligation to restrict the use or restrict the form of how Dye is using that.
That is a big open question.
There are multiple outcomes here, possible outcomes.
One could be that, yeah, Dye is kind of trying to get independent from EustC.
Another one can probably also be that more measures are implemented that makes it somehow okay for USTC to continuously use this role.
But yeah, certainly lots of open questions.
Yeah, I just want to point out, though, that when Rood and Christensen, the founder of Maker-Dow suggested that they sort of de-peg die from the US dollar to try to reduce that dependence on USTC, then even people like Vitolics said that they thought that was a terrible idea.
I think that was somewhat joking.
He was saying,
kind of, yeah, they should just mark a dump,
or kind of just use all the UCC to buy ESA.
And I think that was the part that,
I mean, that was definitely a joke.
And that was a part where Vitalik said,
shouldn't do that.
Oh, oh, oh, maybe I didn't read it carefully.
So I thought he was saying,
so wait, are you saying that Rune wasn't serious
about trying to de-peg?
Oh, well, okay, okay.
No, I mean,
There are multiple things.
So I think there's clearly an understanding or there's clearly an attempt in the maker community to become more independent of USTC.
The question is, is that possible and still keeping a pack to the dollar?
So there are some stable coin projects that are not dependent on USTC, but they,
have often given up on the one-to-one parity with the dollar.
They are fairly stable against the dollar.
They, I don't know, kind of go up a few percent.
But still, they go up, I don't know, three, four percent, go down three, four percent.
So if you allow for that volatility, it's much easier to design stable coins that are
not kind of backed by dollars.
And I think that was, or that is potential question for Maker.
I think currently there's no majority kind of supporting that,
but that's at least an idea or kind of that might be a consequence of saying,
if we really want to get rid of Fiat-backed collateral,
then we might, or it's die, might need to get rid of the one-to-one packing to the dollar.
Oh, okay, interesting.
And, Drew, did you want to add anything about kind of the power of USC here?
I'll keep my comments brief on this point.
If you're a U.S.-based entity, if you're regulated, or if you are clearly within the U.S. jurisdiction, and you're looking at what you've seen from OFAC, for the 18th time in the call or on this podcast, I'll say, we don't have enough information to understand what our obligations are.
However, the magnitude of the penalties here are so severe.
This is potential jail time.
It wouldn't surprise me if most significant U.S.-based companies were taking a conservative approach.
It doesn't mean that they're not going to also try to find ways to challenge the designations here.
It doesn't mean that they're not going to introduce lawsuits.
It doesn't mean they're not going to ask for licenses.
It doesn't mean that they're not going to deploy lobbyists over to Treasury to
try to get FAQ on things that they care about. When you have this sort of lack of guidance
and lack of understanding as to how to implement what you're obliged to do, a lot of times
lawyers will counsel doing nothing rather than taking some sort of aggressive action because
if you take the wrong aggressive action, it could actually exacerbate the problem rather
and then solve the problem.
I would love to see FAQ issued, you know, the day that this podcast is run.
It would be amazing.
And it would probably moot everything that I've said because it will answer all of the
questions.
However, government entities are not always moving at the speed of light.
A lot of times it might take them a while.
They're going to engage with industry.
They're going to ask questions.
They're going to listen to the best podcasts in the industry.
They're going to come up with their own ideas.
they're going to battle test them with important stakeholders.
And so the process of coming up with the guidance that we need, the FAQs or issuing the general
licenses to empower us to take certain actions that on its face may be prohibited is not going to be
fast.
So for regulated U.S. actors, they are probably going to be conservative and they're probably
not going to move terribly quickly.
And out of curiosity, is that typical for in situations like this involving sanctions for
the government to just issue, you know, some kind of ruling like this and then later explain
how it should be implemented? Or does this sort of indicate that there was sort of hasty action taken
before they had time to think through everything? So I can't speculate as to the deliberations
that went on within OFAC. It is typical or not uncommon for there to be a designation. And then after a
period of time, F-AQs that provide additional color as to how to comply or that provide additional
information that's helpful to interpret the meaning of the designation. If you go on the OFAC website,
for instance, you'll see that there are searchable FAQ. They're actually grouped by topic,
and there's, I don't know, 12 or 13 that actually address virtual currency. And some of them are
actually quite helpful. If you're a centralized entity, there are actually some guidance
in the FAQ as to how to deal with blocked property. What it does not tell you is if you are,
if you find yourself the recipient of block property in a self-custodial wallet, for instance.
There is some guidance if you're in exchange, but not if you're a self-user or a self-custody user.
So it is typical that there is some, some deliberation internal to the organization before
they put out the FAQs. Sometimes they revise FAQs to update them.
And as I said before, there are certain issues here that are going to be widespread where a general license, which would be published and public and anybody could read it, would be an effective way to address some of the issues.
Okay. Well, clearly, there's a lot of questions that this has opened and we'll sort of have to see when it is that the government finally issues some FAQs and also what those say.
in the meantime, are there any parting thoughts as we head into the merge in a few weeks?
Yeah, I want to just make a high-level comment on the whole situation.
I have been passionate in a way about, well, kind of tornado cash,
and I a little bit want to explain why and kind of maybe a little bit zooming out.
So to me, what we see happening is that, yeah, if you use the blockchain more and more,
and I am a heavy blockchain user since many years,
and that is absolutely the exception that is only kind of a very small number of people
who are kind of today using blockchain on a daily basis.
But if you do that, you leave an incredibly large trace of, yeah,
of kind of transactions, you essentially, yeah, you could imagine, let's assume every payment you do,
every bank account you have, kind of everything would be public and visibly by anyone.
That's essentially what is happening on the blockchain.
And again, it doesn't affect you if you kind of only bought some coins two years ago and they are
just laying there, then that's fine.
But if you do daily transactions, and again, we are moving there, then that is the trace that you are leaving.
Now, tornado cash was a project or is a project that kind of, well, didn't necessarily invented new technology.
The technology was around in different form.
Very similar technology is used in Zcash, and it was available for some time.
but they kind of just went ahead and took the pieces that were largely available
and made some usable product for Ethereum,
where it was practically for the first time on Ethereum doable
for at least advanced users to have some privacy.
And that can be as simple as, yeah, if I want to send someone money
and I do that all the time and I kind of also do transactions all the time
that are associated with, I don't know,
kind of my address that you can immediately find
if you look me up on Twitter.
And if I just want to make sure that I also have some addresses
that are not linkable to that,
if I don't want to kind of expose to the whole world,
all my crypto, I needed to use a tool like Tornado Cash.
Now, of course, the problem was,
and that is a real problem,
that only a very small number of,
or it's maybe also a false statement,
but a fairly small number of users are kind of in that situation
where their blockchain life or where their life is in large parts on the chain.
So in a way, the number of users are kind of who really needed in a way,
tornado cash was small, absolutely not, I mean, absolutely real users.
So in still thousands, but kind of in the grand scheme of things, small.
Now, unfortunately, also very large and real user was, of course, we don't know that for sure,
but it seems like as this North Korea state-sponsored hacker group, at least, I mean, at the end,
that's always very hard to know what's true in those cases, but let's assume it's true.
then that is a very real problem and that is very real harm that in a way was done.
And from that perspective, on some level I kind of understand those sanctions.
The issue is now that it creates now a situation where it is almost, yeah, kind of
impossible to work on, yeah, kind of good solutions to this problem.
So the problem is how can we on the one hand provide people some level of privacy and on the other hand still hopefully make it as hard as possible for hackers to to kind of obfuscate their stolen funds?
And there were actually some interesting proposals of how you could tweak Tornado or something like Tornado.
various proposals, one was to say,
you need to make a deposit,
and then there is some waiting period
where those who have already deposit
can kind of decide whether this new deposit is accepted
or you could kind of reveal when you withdraw,
you can reveal that your deposit was not coming from,
let's say, those stolen funds or something like that.
The issue now is,
you won't even find someone who is confident working on that because it's so unclear what you're allowed to do or not to do.
So it's kind of unclear.
Are you allowed to work on that technology?
I mean, obviously there was, to my knowledge, absolutely no law that prevented the tornado guys from writing this code and publishing this.
and now one of them is in jail.
So that's, of course, a horrible situation
and makes it very, very hard to come up with good solutions
to those hard problems.
Yeah.
I think so many of the points that you made
are super interesting and valuable
and should be listened to by regulators
who, you know, have any say on what's been happening.
I had two quick parting comments.
The first is it's unclear whether OFAC understood the full implications of its designation of the eth
addresses associated with tornado cash.
There's some language that suggested that it was considering tornado cash the same way it
considered other centralized entities operating mixers.
And if that's the case, then it's likely that they did not understand the broader implications
of designating smart contract addresses and all the complexities that they were.
bringing into the market. If that is the case, then we should all be looking at this saga as a really
important opportunity to engage with regulators, to educate regulators, and to partner with the government
so that there is a good dialogue between the industry and those that are making decisions that
impact the industry. Can't underscore enough how important it is for us to educate those who are
making the rules for our products and systems and services and businesses. If they don't understand
what they're doing or what these systems and products are doing, it's unreasonable for us to expect
that they always get the rules right. It needs to be a two-way street and it's something that
the industry should embrace because it's to their benefit. The second point goes to what Martin
said before, which is at this point, we are running out of ways to anonymously or privately
transact. In the United States, we have this amazing thing called the Fourth Amendment, which gives
us tremendous protections over our persons, our papers, and our homes. And we have progressively
seen those rights eroded over time because there are regulated intermediaries that have been
deputized by law enforcement as basically agents for their purposes. National security is
incredibly important, but we still are allowed to use cash. The cash at this point is one of the
few ways that we can transact without being subject to surveillance. The other is crypto. So while
Martin's point with respect to, we should be working on privacy and anonymization technology,
but we don't even know whether we can anymore, I think that we should continue to work on.
I think that projects like Aztec are important and continue to push the envelope for private
transactions. And I think that we need to continue to fight for the rights that we have in our
respective jurisdictions to continue to be able to transact anonymously. We can do it with cash.
We should not allow our desire for convenience and payments to erode all of our rights to privacy.
All right. Well, great words to end on. Now, do you guys each want to say where people can learn more
about you and your work? Yeah, I'm usually kind of my main work is around Nosis. We are also working on
Yeah, the Nosis chain, the NOSOS blockchain, the chain that also puts decentralization
and having many validators that run a validator from home first.
But about me, you find me pretty active on Twitter at Koppelman.
This is Drew.
You can follow me on Twitter at Propel Forward.
You can look me up on my law firm's website, K&L Gates.
And, of course, if you're in New York and feel like learning, feel free to enroll at NYU
or teach a couple different classes on regular classes.
of crypto assets, blockchain systems, governance, and so forth.
Perfect.
You guys, I have loved this conversation.
Thank you both so much for coming on Unchained.
Thanks for helping us.
Thanks.
Thanks so much for joining us today to learn more about how the tornado cash sanctions
affect Ethereum at the protocol layer.
Check out the show notes for this episode.
Get exclusive access to even more of my content through Bulletin,
including interviews you won't find anywhere else.
Weekly news runups and more.
Go to laurashin.
bulletin.com slash subscribe. Unchained is produced by me, Laura Shin,
live up from Anthony Yun, Matt Pilchard, Juan Ravanovich, Poma Jimdar, Shishak, and
CLK transcription. Thanks for listening.