Skip to content
Blockchain

Why can my wallet not verify whether the RPC node it trusted told the truth?

82

기회

Almost every dApp and wallet routes its blockchain queries through Infura, Alchemy, or a comparable centralized provider. Those providers can return manipulated state, censor transactions, or go offline with no cryptographic consequence for the user. Light clients can check Merkle proofs for specific values but must bootstrap from a trusted header and rely on peers for data availability. A paper accepted at IEEE ICDCS 2025 identifies the core impasse: permissionless public RPC endpoints have no accountability, while registered providers have accountability but require permissioned access, and no financial incentive exists for altruistic full non-validating nodes to serve read traffic at scale. No production system combines cryptographic verifiability, open participation, and sustainable incentives in a single protocol.

μ™œ μ€‘μš”ν•œκ°€

If the RPC layer can lie without consequence, a user has no guarantee that the chain state they read is real or that their signed transaction was broadcast honestly.

기회 평가 방식

기회 μ μˆ˜λŠ” 츑정값이 μ•„λ‹Œ 제 주관적 ν‰κ°€μž…λ‹ˆλ‹€. μ–Όλ§ˆλ‚˜ λΆˆνŽΈν•œμ§€, μ–Όλ§ˆλ‚˜ 자주 λ°œμƒν•˜λŠ”μ§€, ν˜„μž¬ 해결책이 μ–Όλ§ˆλ‚˜ λΆ€μ‘±ν•œμ§€λ₯Ό λ°˜μ˜ν•©λ‹ˆλ‹€. μ μˆ˜κ°€ λ†’μ„μˆ˜λ‘ λ§Œλ“€ κ°€μΉ˜κ°€ 더 λ†’λ‹€κ³  μƒκ°ν•©λ‹ˆλ‹€.

심각도8/10

λ°œμƒν–ˆμ„ λ•Œ μ–Όλ§ˆλ‚˜ 큰 λΆˆνŽΈμ„ μ΄ˆλž˜ν•˜λŠ”μ§€.

λΉˆλ„9/10

μ‹€μ œλ‘œ μ–Όλ§ˆλ‚˜ 자주 μ ‘ν•˜κ²Œ λ˜λŠ”μ§€.

곡백 μ˜μ—­8/10

ν˜„μž¬ 이λ₯Ό ν•΄κ²°ν•  λ§Œν•œ 도ꡬ가 μ–Όλ§ˆλ‚˜ λΆ€μ‘±ν•œμ§€.

ν•΄κ²°ν•  κ°€μΉ˜ μžˆλŠ” 더 λ§Žμ€ λ¬Έμ œλ“€