There are already several validator client implementations, you might be wondering why we need another one.
Much has been written about the importance of client diversity over the years. Bugs in complex systems are unavoidable. In blockchain systems they can have severe consequences, ranging from chains halting all the way to invalid data being confirmed by the network. Ethereum has encouraged multiple teams to develop independent implementations to reduce the impact of any individual bug. But for the network to be resilient, all these different implementations have to actually be used. A network where a (super)majority of validators runs the same client is not much better than a network that only runs a single client.
From the point of view of a node operator, switching to a fallback client in case of a bug is far from enough as it can easily be too late to react at that point - your validator may have already attested to a buggy version of the chain. Exclusively using minority clients works, but that does not seem like a good long-term solution as it relies on self-reported client usage data which has a hard time taking into account multi-node and/or DVT setups.
At Serenita we wanted to make sure our validators do not attest to a chain that is only considered valid by a single client implementation (which could be due to a bug in that client). Our envisioned solution would protect us from single-client bugs no matter how many others used the client in question. In practice this means verifying a single client's view against another client's, both on the CL and EL side.
We found a few good options that fulfilled that requirement:
All of the above options are solid choices. However, each of those options also comes with some downsides.
- Vouch
Vouch does not support the Ethereum remote signing API and is therefore not compatible with remote signing software like web3signer. This makes it non-trivial to switch to. In case of an issue with Vouch, it would also be hard to switch back to a different setup.
Vouch has also in a way become a victim of its own success - it is already being used by a lot of large node operators. And while there has never been an issue with it, if an issue were to occur, it could affect a large portion of the network.
TLDR: not trivial to switch to, already used by a lot of large NOs
- DVT - SSV
Registering validators with the ssv.network is expensive, as encrypted partial validator keys need to be published in transactions on Ethereum mainnet.
In order to run validators on the ssv.network, the cluster also needs to pay a network fee. This requires managing and monitoring a balance of SSV tokens.
TLDR: expensive validator registrations, SSV token requirement
- DVT - Obol's Charon
The Charon middleware client is not open-source, requiring an additional use grant from Obol for production use.
Obol's team also took a different approach and did not implement their own validator client, instead choosing to go with a middleware approach, standing between existing validator clients and beacon nodes. That approach required some Charon-specific changes in beacon nodes. Again, any issue with Charon would be non-trivial to recover from.
TLDR: license, non-standard middleware approach
The biggest shared risk for all of the above options was downtime. An issue in any of the above implementations would require an urgent fix from their respective maintainers. It would be challenging to switch back to a different kind of setup in case of an issue.
At some point, we decided to implement a validator client ourselves. More recently, we also decided to make it available to everyone with a completely open-source license, hoping it improves the client diversity landscape on Ethereum.
With Vero and a multi-node setup, node operators no longer need to worry about exact client usage data. It is easy to switch to, and switch back from in case you don't like it or an issue were to occur.
We have tried to minimize the risk of a bug in Vero in the following ways:
- a small codebase - the more lines of code, the higher the chance of a bug
- high test coverage
- regular cross-client integration testing in local devnets using ethereum-package
Still, if you encounter an issue with Vero, you can switch back to the validator client implementation you were using before - easily, quickly and without slashing risk.
- Requests data from multiple beacon nodes before attesting.
- Only attests if a majority of them agrees on the attestation data.
- Can tolerate a minority of beacon nodes going offline.
| Attestation consensus | |
|---|---|
| Traditional VC | ❌ |
| DVT - Charon | ✅ |
| DVT - SSV | ✅ |
| Vouch | ✅ (majority attestation strategy) |
| Vero | ✅ |
Monitors slashing events on the network and immediately stops performing validator duties as soon as any of the locally managed validators get slashed.
| Slashing detection | |
|---|---|
| Traditional VC | ❌ |
| DVT - Charon | ❌ |
| DVT - SSV | ❌ |
| Vouch | ❌ |
| Vero | ✅ |
Supports remote signers using the Ethereum remote signing API.
If you're already using a remote signer using this API, Vero is very easy to switch to without any slashing risk (the slashing protection data stays in-place). In case you end up not liking Vero, you can switch back just as easily.
| Ethereum remote signing API | |
|---|---|
| Traditional VC | ✅ |
| DVT - Charon | ✅ |
| DVT - SSV | ❌ |
| Vouch | ❌ |
| Vero | ✅ |
Supports performing validator duties on Gnosis Chain.
Medium to large node operators on Gnosis Chain - read this! There are not many options when it comes to EL clients on Gnosis Chain. Nethermind likely has a supermajority there. With only 2 nodes, Vero allows you to run Nethermind and Erigon side-by-side and only attest if both of the implementations agree. That way you never risk getting stuck on a buggy supermajority chain!
| Gnosis Chain support | |
|---|---|
| Traditional VC | ✅ (most of them) |
| DVT - Charon | ❓ |
| DVT - SSV | ❌ |
| Vouch | ❌ |
| Vero | ✅ |
Vero is completely open-source without any strings attached. It is released as a public good to strengthen the Ethereum network and improve the client diversity situation.
| Open Source | |
|---|---|
| Traditional VC | ✅ |
| DVT - Charon | ❌ |
| DVT - SSV | ✅ |
| Vouch | ✅ |
| Vero | ✅ |