Partial Set Security
Partial Set Security (PSS) is a complete revamp of the Hub's security offering. It allows consumer chains to leverage only a subset of validators from the provider chain, which offers more flexibility than the previous Replicated Security model. By introducing the top_N
parameter, each consumer chain can choose the extent of security needed:
-
Top N: Requires the top N% validators from the provider chain to secure the consumer chain. This guarantees that the validators with the most power on the provider will validate the consumer chain, while others can voluntarily opt in.
-
Opt-In: If the
top_N
parameter is set to zero, no validator is mandated to secure the consumer chain. Instead, any validator from the provider chain can opt in using a dedicated transaction.
An advantage of Top N chains is that they are guaranteed to receive at least a certain fraction of the market cap of the provider chain in security. In turn, Top N chains need to be approved by governance, since some validators will be forced to validate on them. Thus, Top N chains should typically expect to need to provide a strong case for why they should be added to the provider chain, and they should make sure they offer enough rewards to incentivize validators and delegators to vote for their proposal.
Opt-In chains, on the other hand, are more flexible. Validators are never forced to validate these chains and simply opt in if they want to. Because of this, Opt-In chains can be launch completely permissionlessly by sending a transaction to the provider chain. As a trade-off though, Opt-In chains do not get a fixed amount of security as a relation of the market cap of the provider as top N chains do, so Opt-In chains might want to keep an eye on how many validators have opted in to validate their chain and adjust their reward emissions accordingly to incentivize validators.
Note that Top N consumer chains can become Opt-In chains or vice versa via a MsgUpdateConsumer
message.
Partial Set Security is handled only by the provider chain - the consumer chains are simply sent validator sets, and they are not aware that this represents only a subset of the provider chain's validator set.