The multisig is the vulnerability. The dominant security model for bridges like Stargate and Multichain is a permissioned multisig. This creates a single point of failure, as evidenced by the $625M Ronin Bridge and $200M Wormhole exploits, which targeted validator keys.
layer-2-wars-arbitrum-optimism-base-and-beyond
Blog
Why 'Trust-Minimized' Bridges Are Still a Distant Dream
A technical breakdown of why true, general-purpose trustless bridges between Arbitrum, Optimism, and Base are computationally infeasible today, exposing the security trade-offs of current 'minimized' solutions.
introduction
THE TRUST TRAP
Introduction
Current 'trust-minimized' bridges rely on centralized assumptions that fundamentally contradict their security promises.
Light clients are not a panacea. Projects like IBC and Near's Rainbow Bridge use light clients for cryptographic verification, but they trade validator risk for liveness assumptions. A chain halt or a 51% attack on the source chain can still compromise funds.
Economic security is misaligned. Models like Across's optimistic verification or LayerZero's Oracle/Relayer design externalize risk. They rely on third-party actors staking capital, creating security that is probabilistic and reactive, not deterministic.
Evidence: Over $2.5 billion has been stolen from cross-chain bridges since 2020, making them the most exploited crypto primitive. No major bridge has achieved the trust-minimized security of its underlying blockchains.
key-trends
WHY 'TRUST-MINIMIZED' IS A MARKETING TERM
The Current Bridge Landscape: A Spectrum of Trust
Every bridge claims to be 'trust-minimized,' but the reality is a sliding scale of security trade-offs, from centralized validators to optimistic assumptions.
01
The Validator Problem: 8-of-15 Signatures Isn't Security
Most 'canonical' bridges rely on a permissioned, off-chain multisig or validator set. This is a single point of failure disguised as decentralization. The security model is only as strong as its least honest participant.
- Attack Surface: Compromise a threshold (e.g., Wormhole's 19/38) to mint infinite assets.
- Opaque Governance: Validator selection and slashing are often centralized, creating political risk.
- Representative Entity: Multichain, before its collapse, operated on this model.
>50%
Bridge Hacks
8/15
Typical Threshold
02
The Liquidity Problem: You're Bridging IOUs, Not Assets
Lock-and-mint bridges don't move tokens; they mint wrapped derivatives on the destination chain. This fragments liquidity and creates systemic counterparty risk in the bridge's custodial vault.
- Liquidity Fragmentation: Each bridge creates its own wrapped asset (e.g., USDC.e, USDC.wh), harming composability.
- Vault Centralization: All bridged value is custodied in a single, high-value smart contract on the source chain.
- Representative Entities: Most liquidity network bridges (e.g., early Stargate pools) function this way.
$10B+
TVL at Risk
5-10
Fragmented USDCs
03
The Oracle Problem: A New Centralized Middleman
Light client and optimistic bridges replace validators with data availability oracles and fraud provers. This just shifts trust to a new set of assumptions about liveness and censorship resistance.
- Data Availability Assumption: Optimistic bridges (e.g., Across, Nomad original) assume someone is watching and will submit fraud proofs.
- Oracle Liveness: Light client bridges (e.g., IBC, Near Rainbow) assume relayers are uncensored and active.
- Economic Security: The cost to corrupt the system is often poorly defined and not cryptoeconomically enforced.
~30 min
Challenge Window
1-of-N
Honest Assumption
04
The Atomicity Problem: MEV and Failed Transactions
Bridging is a multi-step, asynchronous process vulnerable to maximal extractable value (MEV) and partial failure. Users get sandwiched on the destination DEX or lose funds if a step reverts.
- MEV Leakage: Frontrunning the destination swap is trivial for searchers, eroding user value.
- Partial Execution: A successful source tx with a failed destination tx leaves users stranded.
- Solution Space: This is the core problem intent-based architectures (UniswapX, CowSwap, Anoma) aim to solve.
5-50 bps
MEV Loss
2+ Tx
User Steps
THE TRADE-OFF TRILEMMA
Bridge Security Model Comparison: Trust vs. Cost vs. Latency
A first-principles breakdown of the dominant bridge security models, quantifying the inherent trade-offs between trust assumptions, user cost, and finality latency.
| Security Model / Metric | Canonical (Native) Bridges | Optimistic (Dispute) Bridges | Light Client / ZK Bridges |
|---|---|---|---|
Core Trust Assumption | Native Validator Set | 1-of-N Watchtowers / Guardians | Cryptographic Proofs (ZK or Fraud Proofs) |
Time to Finality (Worst Case) | ~15 min (Ethereum) to ~2 sec (Solana) | 30 min - 24 hours (Dispute Window) | < 5 minutes |
User Cost Premium vs. Native | 0% (Baseline) | 10-50% higher | 200-500% higher (Prover cost) |
Capital Efficiency for Liquidity | High (Minted Assets) | Medium (Bonded Liquidity Pools) | Low (Locked Liquidity Pools) |
Attack Surface | L1 Consensus Failure | Majority Collusion of Guardians | Cryptographic Break or Client Bug |
Example Protocols | Arbitrum Bridge, Polygon PoS Bridge | Across, Nomad (pre-hack), Hop (partially) | Succinct Labs, zkBridge, IBC |
Supports General Message Passing | |||
Time to 'Trust-Minimized' at Scale | Now (for its own rollup) | ~2-5 years (Economic security maturation) | ~5+ years (ZK proof cost reduction) |
deep-dive
THE VERIFICATION PROBLEM
The Computational Brick Wall: On-Chain Light Clients
The computational cost of verifying consensus proofs on-chain makes truly trust-minimized bridges economically unviable for most applications.
On-chain verification is prohibitively expensive. A light client must verify cryptographic proofs of the source chain's consensus on the destination chain. For proof-of-stake chains like Ethereum, this involves verifying thousands of signatures per block, a gas cost that destroys economic viability for all but the largest value transfers.
The gas cost asymmetry is permanent. The cost to produce a validity proof on a rollup is trivial; the cost to verify it on Ethereum is immense. This asymmetry creates a fundamental scaling limit for protocols like IBC or zkBridge that require on-chain light clients, confining them to niche, high-value corridors.
LayerZero's oracle-relayer model sidesteps this wall. By outsourcing verification to an off-chain network and posting only a hash on-chain, LayerZero and Stargate avoid the gas cost entirely. This trade-off replaces cryptographic certainty with cryptoeconomic security, which is the pragmatic standard for today's bridges.
Evidence: The Succinct Light Client for Ethereum on Gnosis Chain costs ~500k gas to verify a single epoch. Verifying a single Ethereum block header directly on another EVM chain can cost over 3 million gas, making per-transaction bridging impossible.
counter-argument
THE REALITY CHECK
Steelman: "But What About ZK Light Clients and Shared Sequencers?"
Theoretical trust-minimization mechanisms face insurmountable latency and economic barriers for general-purpose bridging.
ZK light clients are latency-bound. A validity proof for a single Ethereum block takes ~20 minutes to generate on consumer hardware, making real-time cross-chain messaging impossible for applications like Uniswap.
Shared sequencers centralize trust. Networks like Espresso or Astria propose a single sequencer set for multiple rollups, but this creates a new, monolithic trust point for bridges like LayerZero that defeats the purpose of decentralization.
Economic security is misaligned. The cost of a zero-knowledge proof for a full block's state dwarfs the value of a typical bridge transaction, making the model economically non-viable for protocols like Across or Stargate.
Evidence: The fastest ZK-EVM, Polygon zkEVM, has a 5-hour finality window for Ethereum; shared sequencer designs explicitly trade off liveness for throughput, a fatal flaw for bridge security.
risk-analysis
WHY TRUST-MINIMIZATION IS A SPECTRUM
The Hidden Risks of 'Minimized' Trust
Most bridges claim to be 'trust-minimized,' but their security models often rely on opaque committees, economic assumptions, and centralized upgrade keys.
01
The Multi-Sig Moat
The dominant security model is a multi-signature wallet controlled by a permissioned set of entities. This is not trust-minimization; it's trust displacement.\n- Attack Surface: Compromise of ~5/8 signers can drain $1B+ TVL.\n- Opaque Governance: Signer selection and slashing are often off-chain, creating political risk.
5/8
Attack Threshold
$1B+
TVL at Risk
02
The Oracle Problem Reborn
Light client and optimistic bridges depend on a supermajority of honest actors to relay block headers or challenge fraud. This recreates blockchain consensus off-chain.\n- Data Availability: Relayers must be constantly online and uncensored.\n- Economic Finality: Fraud proofs can take 7 days, locking capital and creating systemic risk for protocols like Across.
7 Days
Challenge Window
>66%
Honest Assumption
03
The Upgrade Key Backdoor
Even 'decentralized' bridges like LayerZero and Wormhole have centralized upgrade mechanisms controlled by a multi-sig. A single malicious upgrade can change all security parameters.\n- Instant Invalidation: All prior trust assumptions can be rewritten in one transaction.\n- Protocol Risk: Integrators like Uniswap and Circle inherit this systemic vulnerability.
1 Tx
To Invalidate
100%
Control Centralized
04
The Liquidity Layer Illusion
Bridges like Stargate and Synapse use Liquidity Provider (LP) pools, conflating security with capital efficiency. LP withdrawals create insolvency risk during a bank run.\n- Reflexive Risk: TVL drives security, but security failures destroy TVL.\n- Validator/LP Alignment: LPs have no ability to validate cross-chain messages, creating a principal-agent problem.
Minutes
Withdrawal Delay
Reflexive
Security Model
05
Intent-Based Abstraction
Solutions like UniswapX and CowSwap abstract the bridge away by using a network of solvers. This shifts risk from bridge security to solver competition.\n- New Trust Vector: Users must trust the solver auction mechanism and its economic guarantees.\n- Limited Scope: Primarily for swaps, not generic messaging for DeFi legos.
Solver
New Trust Vector
Swap-Only
Current Scope
06
The ZK Light Client Horizon
The only path to true minimization is ZK-proofs of state validity. Projects like Succinct and Polygon zkEVM are building this, but it's nascent.\n- Technical Overhead: Proving times and costs are still high for high-throughput chains.\n- Chain Client Diversity: Requires a new ZK verifier for each unique consensus mechanism (Ethereum, Solana, Cosmos).
~30 Sec
Proving Time
$$$
Current Cost
future-outlook
THE REALITY CHECK
The Pragmatic Path Forward: Niche Trustlessness
Achieving universal trust-minimized bridges is a multi-year research problem, forcing pragmatic architects to target specific, high-value use cases first.
Universal trustlessness remains impossible without a shared, battle-tested light client or zero-knowledge proof system for every major chain. The technical fragmentation between heterogeneous chains like Ethereum, Solana, and Cosmos creates a coordination nightmare no single protocol like LayerZero or Axelar can solve.
The pragmatic path is niche optimization. Protocols must choose between security, speed, and cost. Across Protocol optimizes for security with bonded relayers and slow, optimistic verification. Stargate optimizes for unified liquidity and speed via the LayerZero Omnichain Fungible Token standard, accepting different trust assumptions.
Evidence: The Total Value Locked (TVL) and attack surface are directly correlated. The 2022 Wormhole and Nomad hacks, which lost over $1 billion, exploited the trusted verification models that enable cross-chain speed and liquidity today. True decentralization sacrifices scalability.
Future-proofing means building for intent. The endgame is user-centric routing, not chain-centric bridges. Systems like UniswapX and CowSwap abstract bridge choice, allowing aggregators like Across to compete on execution. The bridge becomes a commodity, and the intent-based solver network becomes the critical, trust-minimized layer.
takeaways
BRIDGE REALITY CHECK
Key Takeaways for Builders and Investors
The promise of trust-minimized bridges is held back by fundamental economic and technical trade-offs. Here's what you're actually building on.
01
The Economic Security Trilemma: Speed, Cost, Trust
You can only optimize for two. Fast/cheap bridges like LayerZero rely on external verifiers. Trust-minimized bridges like IBC or Across are slower/costlier. There is no free lunch.
- Speed/Cost: Rely on off-chain attestation committees.
- Trust/Speed: Require on-chain light clients (high latency/cost).
- Trust/Cost: Use optimistic verification (slow dispute windows).
~3-5s
Attestation Speed
~1-2 weeks
Optimistic Window
02
The Oracle is Still the Weakest Link
Most 'trust-minimized' bridges merely outsource trust to a different set of entities—oracle networks. A 51% attack on the underlying chain can still compromise the bridge's state proof.
- Relayer/Oracle Sets: Bridges like Wormhole, Axelar use ~19-50 validators.
- Collateralization: Slashing is reactive, not preventive.
- Single Chain Risk: L1 failure breaks all connected rollups.
19-50
Typical Validator Set
$B+
TVL at Risk
03
Intent-Based Routing is the Real Disruption
Projects like UniswapX and CowSwap bypass the bridge security problem entirely. They don't move assets; they move ownership via off-chain solvers and on-chain settlement.
- No Bridge TVL: Eliminates the canonical bridge as a target.
- Solver Competition: Better pricing and liquidity discovery.
- Future-Proof: Naturally aggregates all liquidity layers.
0
Bridge TVL
100%
Execution Efficiency
04
Rollup-Centric Bridges Are the Only Path Forward
Native bridges for Optimism, Arbitrum, and zkSync are the only truly trust-minimized option for their own chains. They use the L1 for consensus and dispute resolution.
- Forced Security: Inherits L1's economic security.
- Vendor Lock-In: Creates a liquidity moat for the rollup.
- Builder Mandate: Your stack choice dictates your bridge security.
L1 Secured
Security Model
7 Days
Std Challenge Period
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall