Permit the vote account’s authorized withdrawer to also change the authorized voter [solana] - TagMerge

Permit the vote account’s authorized withdrawer to also change the authorized voter [solana]

mvinesAsked 4 months ago

Problem

A vote account's authorized voter may only be changed by the existing authorized voter. The authorized voter is a hot key that has a higher probability of being being compromised than other keys. If compromised the attacker could prevent a vote account from ever voting again in future, which would likely be an extinction event for any validator that depends on 3rd party stake.

Proposed Solution

Permit the vote account’s authorized withdrawer to also change the authorized voter.

The other critical fields in a vote account, commission and validator identity, require the withdraw authority to change. This is good as that key lives offline in a well setup validator. The withdraw authority is already doing more than just authorizing the withdrawal of SOL from the vote account.

Source: link

Recent Issues

    Programming Languages