Today, it is possible for individuals to use the bridge to bypass AML restrictions. If such events happen, then the bridge may have liability issues. We have been asked by the NEAR foundation to take steps to avoid such situations.
One proposal is to integrate with the Aethos Network. The idea is that information about each transaction that is initiated to go across the bridge is sent to Aethos. Aethos inspects the transaction and based on their social graph, decides if it is safe to allow the transaction or not. Then the bridge can deny or accept the transaction. Conceptually, this is a fairly straightforward integration but there are some concerns that we need to think through.
The priority from NF is that this is a medium level request. It will be good to have it be done in the coming months but we can prioritise other urgent things above it.
Integrating with the Aethos network means spending some ethereum gas calling into their network. This will mean that we will have less gas left to do any other future engineering works that we may need to do. We should make sure that we are willing to sacrifice the gas. We should also be prepared to turn off integration with their network in the future in case we cannot spend this gas anymore.
Sending data about transactions to the Aethos network creates some decentralisation concerns. Aethos can use the information to build a profile of users; use it to predict movement of assets and engage in MEV; etc. In general, we should try to discourage such use of the data. We should consider chatting with Aethos to see if instead of sending them information about the transactions, they can send a ruleset to the bridge (which can be updated periodically). And then the bridge can apply the ruleset against the transaction itself. Another approach is to prevent such activities by adding some restrictions in the contracts.
Links to external documentations and discussions
NA
Estimated effort
The actual engineering effort is estimated to be about 1 month once some of the above clarifying questions have been addressed.
Goals
Today, it is possible for individuals to use the bridge to bypass AML restrictions. If such events happen, then the bridge may have liability issues. We have been asked by the NEAR foundation to take steps to avoid such situations.
One proposal is to integrate with the Aethos Network. The idea is that information about each transaction that is initiated to go across the bridge is sent to Aethos. Aethos inspects the transaction and based on their social graph, decides if it is safe to allow the transaction or not. Then the bridge can deny or accept the transaction. Conceptually, this is a fairly straightforward integration but there are some concerns that we need to think through.
The priority from NF is that this is a medium level request. It will be good to have it be done in the coming months but we can prioritise other urgent things above it.
Links to external documentations and discussions
NA
Estimated effort
The actual engineering effort is estimated to be about 1 month once some of the above clarifying questions have been addressed.
Assumptions
NA
Pre-requisites
NA
Out of scope
NA