On-chain data is untrustworthy. The current standard for accessing blockchain state relies on centralized RPC providers like Infura and Alchemy, which serve data without cryptographic proof of its validity.
security-post-mortems-hacks-and-exploits
Blog
The Future of On-Chain Data Requires On-Chain Proofs
Oracle security is fundamentally broken. This analysis argues that the only viable endgame is moving from trusted off-chain committees to cryptographically verifiable on-chain proofs, using zero-knowledge technology to eliminate manipulation vectors.
introduction
THE DATA
Introduction
On-chain data is currently a trust-based system, and the future requires cryptographic proofs to verify its authenticity.
The solution is verifiable execution. Protocols like Sui and Fuel use a client-verified model where the full node provides a Merkle proof alongside the state data, allowing the client to independently verify correctness.
This shift eliminates trust assumptions. Unlike the current model where you trust the RPC provider, a proof-based system ensures the data's integrity is mathematically guaranteed, similar to how zk-rollups like zkSync prove state transitions.
Evidence: The Solana RPC incident in 2022, where nodes returned inconsistent state data, demonstrated the systemic risk of the current trust-based data layer.
key-trends
THE VERIFICATION IMPERATIVE
Executive Summary
Current off-chain data feeds are a systemic risk; the next generation of DeFi and on-chain AI requires data with cryptographic provenance.
01
The Problem: Off-Chain Oracles are a Black Box
Protocols like Chainlink and Pyth deliver data but not proof. You trust their multisig committees, not cryptographic verification. This creates a single point of failure for $100B+ in DeFi TVL.
- Trust Assumption: Relies on a permissioned set of node operators.
- Verification Gap: No on-chain proof the data is correct and untampered.
- Systemic Risk: A compromised oracle can drain multiple protocols simultaneously.
$100B+
TVL at Risk
0
On-Chain Proof
02
The Solution: ZK-Proofs for Data Feeds
Projects like Brevis and Herodotus are building ZK coprocessors that generate succinct proofs for any historical on-chain state. This moves verification from social consensus to mathematical certainty.
- State Proofs: Cryptographically verify that data existed on a source chain (e.g., Ethereum, Solana).
- Universal Composability: Proven data becomes a trustless input for smart contracts and rollups.
- AI Enablement: Provides verifiable training data and inference results for on-chain agents.
~100ms
Proof Gen Time
100%
Verifiable
03
The New Stack: Light Clients & Bridges
The endgame is a network of ZK light clients (like Succinct, Polygon zkBridge) that act as the foundational layer for cross-chain everything. This is the missing piece for intent-based architectures like UniswapX and secure omnichain apps.
- Trustless Bridges: Move assets and state with the security of the source chain.
- Intent Fulfillment: Solvers can prove correct execution across domains.
- Data Layer: Serves as a decentralized truth machine for all L2s and appchains.
10x
Security Boost
-90%
Trust Assumptions
thesis-statement
THE DATA
The Core Argument: Trust is Not a Scalable Security Primitive
The future of on-chain data requires on-chain proofs because trust-based models introduce systemic risk and scaling bottlenecks.
Trust-based data oracles like Chainlink are a security liability. They create a single point of failure where a small committee's key compromise can poison the entire ecosystem's state, as seen in the Wormhole hack.
Proof-based architectures like EigenDA and Avail scale security linearly with the network. Their cryptographic attestations move verification on-chain, eliminating the need to trust off-chain actors.
The scaling bottleneck is economic, not technical. Securing a trust-based system requires paying for a committee's reputation premium. A proof-based system pays only for the cost of verifying a succinct proof, which is constant.
Evidence: The 2022 Wormhole bridge hack resulted in a $326M loss from a single compromised multisig, a direct failure of the trusted committee model that proof systems structurally prevent.
THE DATA PROOF SPECTRUM
The Cost of Trust: A Chronicle of Oracle Failures
Comparing the security and operational models of major oracle solutions, highlighting the systemic risk of off-chain data attestation versus on-chain cryptographic proof.
| Security & Data Model | Chainlink (Classic PoR) | Pyth Network | Chainscore (Proof of SQL) |
|---|---|---|---|
Primary Data Source | Off-chain node attestation | Off-chain publisher signatures | On-chain state proofs (zk-proofs) |
Trust Assumption | Honest majority of nodes | Honest majority of publishers | Cryptographic validity (trustless) |
Failure Mode | Collusion or exploit of node operators | Collusion or key compromise of publishers | Mathematical proof failure (cryptographically improbable) |
Time to Finality | Multiple block confirmations (2-5 blocks) | ~400ms (Solana) to ~3s (EVM) | Single block inclusion (proven instantly) |
Historical Failure Impact | bZx ($954k), Harvest ($24m), Mango ($114m) | Pyth $1.1B 'misprice' incident (no loss) | None (no live mainnet exploit) |
Data Provenance | Opaque aggregation from APIs | Signed price feeds from CEXs/MMs | Verifiable query execution from raw chain data |
Auditability | Off-chain, requires node operator trust | Off-chain signature verification only | On-chain, verifiable by any participant |
Integration Complexity | High (custom adapter nodes required) | Low (pre-built price feeds) | Medium (SQL-like queries against proven state) |
deep-dive
THE VERIFICATION LAYER
From Data Feeds to State Proofs: The Architectural Shift
On-chain applications must transition from trusting external data feeds to verifying cryptographic proofs of off-chain state.
Oracles are a security liability. They introduce a centralized trust assumption into decentralized systems, creating a single point of failure for protocols like Aave and Compound.
The future is state proofs. Applications will consume verifiable proofs of events from other chains or systems, as seen with zkBridge designs and LayerZero's Ultra Light Node.
This shifts the security model. Instead of trusting an oracle's multisig, you verify a proof's cryptography. This is the architectural principle behind Chainlink's CCIP and Succinct Labs' work.
Evidence: The $325M Wormhole bridge hack occurred not in the bridge logic, but in the guardian oracle's signature verification, proving the core vulnerability.
protocol-spotlight
ON-CHAIN PROOFS
Builder's Toolkit: Who is Engineering the Proof-Based Future?
The future of scalable, verifiable on-chain data is being built by protocols that replace trust with cryptographic proofs.
01
The Problem: Trusted Oracles are a Systemic Risk
Centralized data feeds like Chainlink create single points of failure. The $650M+ in value secured by oracle-managed DeFi protocols relies on a committee's honesty, not cryptographic guarantees.\n- Vulnerability: Manipulation or downtime of a major feed can cascade through the ecosystem.\n- Cost: Premiums for "secure" data are passed to end-users, limiting micro-transactions.
$650M+
At Risk
1
Trust Assumption
02
Succinct Proofs for Real-World Data
Protocols like Brevis and Herodotus use zk-proofs to cryptographically verify off-chain data (APIs, other chains) before on-chain consumption.\n- Verifiable Compute: Prove the correct execution of any computation on historical data.\n- Composability: Proofs become a portable, trust-minimized asset for DeFi, gaming, and social apps.
~2s
Proof Gen
100%
On-Chain Verif.
03
Universal Proof Verification Layers
Infrastructure like Risc Zero and SP1 provide generalized zkVMs. They allow developers to write proof logic in Rust or C++, moving beyond niche circuit languages.\n- Developer UX: Lowers the barrier for traditional engineers to build proof-based apps.\n- Interoperability: A single, battle-tested verifier can secure proofs from diverse sources.
10x
Dev Speed
1
Universal Verifier
04
Proof-Based Bridges & Intents
Cross-chain interoperability is being rebuilt with light clients and proofs, as seen in Succinct's Telepathy and Polygon zkBridge. This directly competes with optimistic models used by LayerZero and Wormhole.\n- Security: Cryptographic validity vs. economic security and a 7-day challenge window.\n- Finality: Near-instant, verifiable finality versus optimistic delays.
~3min
Finality
-99%
Trust Assumptions
05
Proving Machine Learning On-Chain
EZKL and Giza are pioneering zkML, enabling verifiable inference from AI models. This creates on-chain agents and prediction markets with guaranteed execution.\n- Transparency: Prove an LLM's output was derived correctly from its weights and prompt.\n- Novel Use Cases: On-chain gaming AI, verifiable credit scoring, and resistant MEV bots.
~10s
Inference Proof
100%
Model Integrity
06
Proofs-as-a-Service (PaaS)
Companies like Ingonyama and Ulvetanna are building specialized hardware (FPGAs, ASICs) to accelerate proof generation, commoditizing a critical bottleneck.\n- Economic Moats: Hardware optimization leads to ~50% lower costs and faster proving times.\n- Market Creation: Enables high-frequency, proof-based applications previously deemed too expensive.
50%
Cost Reduced
1000x
Throughput
counter-argument
THE REALITY CHECK
The Inevitable Pushback: Cost, Latency, and the 'Good Enough' Fallacy
The practical objections to on-chain proofs are real but addressable, while the risks of ignoring them are existential.
The cost objection is temporary. Proving systems like RISC Zero and Succinct Labs demonstrate that proof generation costs are on a Moore's Law-like decline, driven by hardware acceleration and recursive proving. The operational expense of a compromised oracle dwarfs a predictable proof fee.
Latency is a design choice. zkOracles from projects like Herodotus and Brevis batch and prove historical state, decoupling proof generation from real-time data delivery. The finality of a proven state root is more valuable than a fast, unverified API call.
'Good enough' is a security liability. Relying on off-chain attestations from Pyth or Chainlink creates a transitive trust assumption. A single compromised multisig or API endpoint invalidates the security model of the entire application built on that data.
The market has already decided. The migration of Total Value Secured from generic oracles to proven data layers for restaking and cross-chain messaging is the leading indicator. Protocols that treat data as a commodity will be outcompeted by those treating it as a verifiable asset.
risk-analysis
THE TRUST MINIMIZATION IMPERATIVE
The New Attack Surfaces: What Could Go Wrong with ZK Oracles?
Zero-knowledge proofs promise verifiable computation, but the data they compute on remains a critical vulnerability. The future of on-chain data requires on-chain proofs.
01
The Problem: The Input is the Attack Vector
A ZK proof is only as good as its input data. A malicious or manipulated data feed (e.g., a price from a compromised API) creates a cryptographically valid but economically fatal proof. This shifts the attack surface from consensus to data sourcing.
- Off-chain data fetches are opaque and unverifiable.
- Prover collusion with a data provider is undetectable.
- Legacy oracles like Chainlink remain a single point of failure for ZK systems.
100%
Proof Validity
0%
Input Integrity
02
The Solution: Proof-Carrying Data (PCD)
Every piece of data must carry a proof of its own provenance and correctness. This creates a verifiable data pipeline from source to on-chain consumption.
- Recursive ZK proofs attest to the entire data-fetching logic.
- On-chain light clients (e.g., for Bitcoin, Ethereum) can be proven inside a ZK circuit.
- Projects like Axiom and Herodotus are pioneering this for historical state proofs.
E2E
Verification
L1 Native
Data Source
03
The Problem: Prover Centralization & Censorship
High-performance ZK proving is computationally intensive, leading to prover oligopolies. A handful of entities (e.g., Espresso Systems, Geometric) could censor or delay proofs for critical oracle updates, freezing DeFi.
- Proof generation latency becomes a new MEV vector.
- Hardware control (GPU/ASIC farms) creates centralization risks akin to mining pools.
- This undermines the decentralized security model of the underlying L1/L2.
<10
Major Provers
~500ms
Censorship Window
04
The Solution: Decentralized Prover Networks & Proof Markets
Incentivize a competitive network of provers with slashing for malfeasance. Proof markets (conceptually like Truebit) allow anyone to challenge and re-prove computations.
- ZK co-processors (e.g., Risc Zero, SP1) standardize the proving target.
- Proof-of-useful-work models can harness decentralized compute.
- EigenLayer restaking could secure prover commitments.
1000+
Node Target
-70%
Cost via Competition
05
The Problem: The Cost of Truth is Prohibitive
Generating a ZK proof for complex real-world data (e.g., an entire TWAP calculation) can cost ~$10-$100+ in gas and compute. This makes continuous, high-frequency oracle updates economically impossible for most assets.
- Proof overhead dwarfs the cost of the underlying transaction.
- Creates a data resolution trilemma: cheap, frequent, or verified—pick two.
- Limits use to high-value, low-frequency settlements.
100x
Gas Multiplier
$10B+
TVL At Risk
06
The Solution: Specialized Coprocessors & L2 Native Oracles
Move the proving and data aggregation off the main execution layer. ZK oracle L2s/ L3s (e.g., Hyperoracle, Lagrange) batch and prove data updates, posting only a single validity proof.
- Parallel proving pipelines for different data types.
- Shared sequencer models amortize cost across all consumers.
- Enables sub-second, provable data at a fraction of L1 cost.
-90%
Cost vs L1
<1s
Update Latency
future-outlook
THE PROOF
The 24-Month Horizon: Hybrid Models and the Flippening
The future of on-chain data is a hybrid model where verifiable proofs, not raw data, become the primary commodity.
Hybrid architectures will dominate. Pure indexing services like The Graph will persist for developer convenience, but the value accrual flips to proof systems. Protocols like Succinct and RISC Zero generate ZK proofs of state transitions, enabling trust-minimized data consumption.
The flippening targets data availability. The current bottleneck is not computation but cheap, reliable data posting. Solutions like Celestia, EigenDA, and Avail compete to become the standardized DA layer, decoupling it from execution.
Proofs enable new data economies. Verifiable data streams become composable assets. A proven Uniswap V3 pool state can be reused by a perpetuals protocol on Arbitrum without re-querying Ethereum, slashing costs and latency.
Evidence: Starknet's upcoming 'Volition' model lets apps choose between Ethereum DA and a cheaper alternative like Celestia, creating a market for data based on security-price tradeoffs.
takeaways
THE DATA INTEGRITY IMPERATIVE
TL;DR for Protocol Architects
Trusted off-chain data is a systemic risk; the next stack requires cryptographic verification.
01
The Oracle Problem is a Consensus Problem
Relying on a committee of nodes for price feeds or randomness is a social, not cryptographic, guarantee. This creates a single point of failure for DeFi's $50B+ TVL. The solution is shifting from attestation to proof.
- Key Benefit: Eliminates need to trust node operators' honesty.
- Key Benefit: Enables permissionless verification by any participant.
1-of-N
Trust Assumption
$50B+
TVL at Risk
02
zkProofs Enable Stateful Data Bridges
Projects like Succinct, Herodotus, and Lagrange are building bridges that prove historical state (e.g., an Ethereum balance at block #18,000,000) onto another chain. This is more powerful than simple messaging.
- Key Benefit: Enables cross-chain composability with Ethereum-level security.
- Key Benefit: Allows L2s/Rollups to verifiably read each other's state.
~5-10s
Proving Time
1000x
Cheaper than re-exec
03
AVS are the New Oracles
EigenLayer's Actively Validated Services (AVS) framework turns the oracle stack into a cryptoeconomic security market. Data providers like eOracle and HyperOracle can leverage Ethereum's staked capital to slash for incorrect data.
- Key Benefit: Data integrity backed by $15B+ restaked ETH.
- Key Benefit: Creates a competitive market for proof generation, driving down cost.
$15B+
Restaked Security
>10
Live AVSs
04
Intent Solvers Need Proven Data
The rise of intent-based architectures (UniswapX, CowSwap, Across) separates order declaration from execution. Solvers compete on fulfillment, but they must prove they used valid market data. On-chain proofs are the only way to verify this without trust.
- Key Benefit: Prevents MEV extraction via fake liquidity quotes.
- Key Benefit: Enables enforceable solver SLAs and slashing conditions.
~$1B+
Monthly Volume
0
Trust Assumed
05
The End Game: Proof Markets
The future is a decentralized network of provers (RiscZero, SP1, Jolt) competing to generate the cheapest, fastest ZK proofs for any data fetch or computation. Protocols will post bounties for specific proofs.
- Key Benefit: Universal verifiability for any off-chain data or compute.
- Key Benefit: Drives hardware acceleration and proof aggregation, collapsing costs.
<$0.01
Target Proof Cost
ASIC/GPU
Hardware Race
06
Legacy APIs are a Liability
RPC endpoints and centralized indexers (The Graph without decentralization) are opaque black boxes. They can censor, serve stale data, or go offline. The new standard is serving data with an accompanying validity proof.
- Key Benefit: Clients can cryptographically verify data freshness and correctness.
- Key Benefit: Eliminates API key management and central points of control.
100%
Uptime Required
0
API Keys
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall