search

ethereum / ethereum-org-website

Ethereum.org is a primary online resource for the Ethereum community.
https://ethereum.org/
MIT License
4.9k stars 4.67k forks source link

SaaS Self Custody definition/criteria #11405

Open wackerow opened 8 months ago

wackerow commented 8 months ago

Issue

The current definition for the "self custody" indicator used for staking-as-a-service products is stated as:

"User maintains custody of any validator credentials, including signing and withdrawal keys"

image

A case has surfaced in #11160 and #11241 custody of signing keys is exclusive to the service (node operator), but an encrypted pre-signed exit transaction (PSET) is provided to the user to allow them to exit and receive their funds to the withdrawal credentials that are in the users name.

Discussion

I wanted to raise this for discussion if we should consider updating the definition for "Self Custody" in the context of a staking-as-a-service provider to include usage of a PSET as a means to return control to the end-user.

Is it possible for these messages to expire or become invalidated in any form, ie through a network upgrade? If so, I personally don't believe we should take this approach. If they truly provide a guarantee for the user that will stand the test of time then I think it's worth considering, since this would ensure the user can retrieve their funds at will at any time.

github-actions[bot] commented 7 months ago

This issue is stale because it has been open 45 days with no activity.