Concept
Slashing is a commonly used technique in permissionless Proof-of-Stake networks to handle Sybil vulnerabilities and ensure operator incentives align with the network's goals (for more details, see the Consensus page). However, the combination of a weighted voting mechanism and firm slashing provisions doesn't necessarily ensure that participant intentions align with the network's long-term interests. The issue arises from the the fundamental limitations of permissionless systems that rely on participant rationality, which isn't always secure. More specifically, security models based on rationality may prove insufficient in open, ‘permissionless’ systems as they fail to consider the possibility of rational actors exploiting the system for external benefits, leaving the system vulnerable to a wider array of attacks beyond the scope of the rationality framework. As we transition towards a multi-chain "Internet of Blockchains" paradigm, this concern intensifies. Furthermore, slashing mechanisms can exacerbate the risk for smaller, home-based node operators who may fear severe financial repercussions for honest errors or system failures, while simultaneously amplifying risk for delegators. This double-edged effect fosters a centralizing trend, pushing node operators towards more centralized, and arguably more secure, cloud services like AWS, while also encouraging delegators to opt for these seemingly safer nodes for the protection of their assets. Such shifts unintentionally undermine the decentralization principles at the core of blockchain networks, leading to an unproductive dynamic within the ecosystem.
Governance-driven Slashing
KIRA takes a unique stance on slashing. In KIRA's governance-permissioned validator set, the discretionary power of ‘identified’ governance members to remove malicious nodes enables the detection and mitigation of irrational, malicious behavior that might elude purely economic models. This allows for a more targeted approach to slashing, where only instances of double-signing are subject to potential penalties. These penalties are triggered automatically only when a certain number of validators are caught double-signing within a short time frame, serving as a deterrent against coordinated attacks. In all other cases, slashing is subject to governance approval. This approach minimizes the risk of severe consequences for minor or unintentional errors, reducing the fear of harsh penalties and encouraging a more diverse set of individuals to run validator nodes, including those operating from home environments. Furthermore, it alleviates the pressure on Delegators to prioritize security over decentralization when choosing nodes to stake with, as the network itself is designed to be resilient to a wider range of failures. The combination of automatic slashing under specific conditions, governance-supported slashing for individual cases, and the absence of downtime slashing makes it extremely unlikely for Consensus nodes and Delegators to face unwarranted penalties. This approach aligns more closely with Byzantine principles, as it takes into account the inevitability of human error and system failures, thus promoting a strong, diverse validator community and a more decentralized network overall.
Uptime Ranking System
KIRA encourages consensus nodes uptime by implementing a ranking system that fosters a dynamic and competitive environment to collectively promote network reliability and high participation levels. KIRA builds upon the Tendermint consensus protocol, which ensures liveness by requiring a minimum of 2/3 + 1 of the consensus node set's total voting power to sign a block. While KIRA doesn't employ weighted voting and considers each node as having a single vote (per capita), the principle remains that it is not guaranteed for every node to sign every block as up to 1/3 of nodes can miss a block at any given time. This can be due to various factors, such as the random distribution of nodes around the world, limited networking connectivity between them, and the limited time that nodes have to wait for consensus votes. Accordingly, KIRA’s ranking system is designed to adapt to these variables. The system's parameters are fine-tuned by KIRA network governance to align individual node performance with the broader network health. This approach ensures high levels of participation while upholding the robustness of the network.