[aip-55] Generalize Transaction Authentication and Support Arbitrary K-of-N MultiKey Accounts #263
Conversation
davidiw
requested review from
alinush,
zekun000,
sherry-x,
movekevin and
igor-aptos
aips/aip-55.md
Outdated
| --- | ||
| aip: 55 | ||
| title: Generalize Transaction Authentication and Support Arbitrary K-of-N MultiKey Accounts | ||
| author: davidiw, hariri |
| ## Summary | ||
|
|
||
| Transactions submitted to Aptos contain a `RawTransaction` and a `TransactionAuthenticator`. The `TransactionAuthenticator` authorizes the execution of the transaction by the set of senders or approvers of the accounts within the transaction. The `TransactionAuthenticator` contains a mixture of general purpose authenticators like fee payer and multiagent but also some very specific types for single sender transactions such as Ed25519, MultiEd25519, and Secp256k1. Thus adding a new cryptographic proof for authorizing a transaction requires a new `TransactionAuthenticator` and `AccountAuthenticator` variant to support both the single and multiparty transaction authenticaton. | ||
|
|
There was a problem hiding this comment.
I never had time to understand this: why do we have both TransactionAuthenticator and AccountAuthenticator?
aips/aip-55.md
Outdated
|
|
||
| ## Alternative solutions | ||
|
|
||
| This work could have focused purely on multi-key solutions that work across the board. This would have eliminated the optimization for single-sender applications. Doing so increases the burden for creating adding cryptographic algorithms for authorization. |
There was a problem hiding this comment.
Typo: "creating adding" should have been just "adding"?
| } | ||
|
|
||
| pub struct MultiKeyAuthenticator { | ||
| public_keys: MultiKey, |
There was a problem hiding this comment.
You need to define the MultiKey struct.
Also, why not replace MultiKey by a Vec<AnyKey>?
There was a problem hiding this comment.
because we use MultiKey in the AuthenticationKey generation, will add context
aips/aip-55.md
Outdated
|
|
||
| New cryptographic algorithms can be added by adding an appropriate data structure and verify method under `AnyKey` and `AnySignature`. | ||
|
|
||
| The `MultiKeyAuthenticator` supports up to 255 keys and up to 32 signatures, as 32 signatures are the maximum allowed in a single transaction. |
There was a problem hiding this comment.
Can you clarify why is 32 the maximum? Is it because you assume signatures are, say 32 bytes, so
There was a problem hiding this comment.
Also, does this mean in a
There was a problem hiding this comment.
it is a legacy component of the code, will clarify
|
|
||
| Instead of doing this at an account level, we could have used Multisigv2. In Multisigv2, multiple on-chain accounts share a single account. This is similar to the model here, where multiple keys share the same account. The caveat being that if keys are misplaced in a Multisigv2, the assets within those accounts are lost. Those accounts require minimally gas fees, so there would be inevitable loss. | ||
|
|
||
| ## Specification |
There was a problem hiding this comment.
I see nothing mentioned here about how the address (a.k.a., authentication key) of such "multikey" accounts is computed...
There was a problem hiding this comment.
- Explain the
MultiKeystruct - Explain what multikey addresses look like (and how to deal with complications when wallets lose some of the PKs underneath a multikey address and, as a result, are not able to reconstruct the address)
- Maybe take the opportunity to explain the difference between
TransactionAuthenticatorandAccountAuthenticator - Writing is incredibly difficult to follow for me due to poor use of terminology / undefined terms
…K-of-N MultiKey Accounts
| } | ||
|
|
||
| pub struct MultiKeyAuthenticator { | ||
| public_keys: MultiKey, |
There was a problem hiding this comment.
because we use MultiKey in the AuthenticationKey generation, will add context
aips/aip-55.md
Outdated
|
|
||
| New cryptographic algorithms can be added by adding an appropriate data structure and verify method under `AnyKey` and `AnySignature`. | ||
|
|
||
| The `MultiKeyAuthenticator` supports up to 255 keys and up to 32 signatures, as 32 signatures are the maximum allowed in a single transaction. |
There was a problem hiding this comment.
it is a legacy component of the code, will clarify
No description provided.