Security is not additive. A validator set securing a cross-chain bridge like LayerZero or Wormhole does not combine the security of Ethereum and Solana. It creates a new, weaker system whose failure is determined by the weakest linked chain's validator set.
comparison-of-consensus-mechanisms
Blog
Why Cross-Chain Validation Dilutes Economic Security
A first-principles analysis of how validator reuse across Cosmos SDK zones, Avalanche subnets, and other multi-chain architectures creates systemic fragility by lowering the cost of a 51% attack on individual chains.
introduction
THE FLAWED PREMISE
Introduction
Cross-chain validation fragments, rather than aggregates, the economic security of the underlying blockchains.
Economic security gets diluted. The capital-at-risk for a bridge validator is a fraction of the total value they secure. This creates a catastrophic risk asymmetry where a $100M exploit can steal billions, as seen in the Wormhole and Nomad hacks.
Proof-of-Stake economics break. Protocols like Axelar and Cosmos IBC rely on delegated staking, but a validator's stake on Chain A provides zero slashing risk for malicious actions on Chain B. The economic disincentives are not transitive across chains.
Evidence: The total value locked in cross-chain bridges exceeds $20B, yet the largest bridge hacks have consistently exploited this validation gap, with over $2.5B stolen since 2021.
thesis-statement
THE ECONOMICS
The Core Argument: Shared Validators, Divided Security
Shared validator sets for cross-chain messaging fragment a finite resource: economic security.
Security is a finite resource. A validator's stake secures a single state. When that stake is used to secure multiple chains via protocols like LayerZero or Polymer, its security is divided, not multiplied.
The slashing dilemma is real. A validator's stake cannot be slashed simultaneously on Ethereum and Cosmos for a fault on Avalanche. This creates asymmetric risk vectors where the cost of attack is lower than the isolated chain's security budget.
Compare this to native validation. Chains like Solana and Avalanche maintain sovereign, dedicated validator sets. Their security is not shared or diluted, creating a higher cost-of-attack floor for their entire state.
Evidence: The re-staking calculus. EigenLayer operators securing Omni Network or AltLayer must split their slashing risk across multiple AVSs. A 32 ETH stake backing ten systems offers just 3.2 ETH of economic security to each—a 90% dilution.
key-trends
ECONOMIC SECURITY DILUTION
The Multi-Chain Rush: A Security Trade-Off
Cross-chain bridges fragment liquidity and security, creating systemic risk by dividing the capital that secures each chain.
01
The Problem: Isolated Security Pools
Each new chain or Layer 2 must bootstrap its own validator set and economic security. This fragments the total Proof-of-Stake capital, creating dozens of smaller, weaker security pools. A $1B TVL chain is inherently less secure than a $100B TVL chain like Ethereum, making it a prime target for attacks.
~$1B
Avg. L2 TVL
-90%
Security vs. L1
02
The Attack Vector: Bridge as the Weakest Link
Cross-chain bridges concentrate risk. They hold billions in TVL but are secured by a small subset of validators, often just a multisig. This creates a single point of failure. The Ronin Bridge hack ($625M) and Wormhole hack ($325M) prove the model's fragility. Attackers target the bridge, not the underlying chains.
$2B+
Bridge TVL at Risk
5-20
Typical Multisig Size
03
The Solution: Shared Security & Native Validation
The only way to avoid dilution is to share a base layer's security. Ethereum L2s (via rollups) and Cosmos zones (via Interchain Security) inherit economic security from a larger pool. For asset transfers, intent-based protocols like UniswapX and Across minimize custodial risk by not locking funds in a bridge contract.
100%
L1 Security Inherited
Zero
Bridge TVL Risk
04
The Reality: The Liquidity-Security Trilemma
You can only optimize for two: Capital Efficiency, Decentralization, or Security. Fast, cheap bridges sacrifice security (e.g., LayerZero's configurable security). Secure, decentralized bridges are slow and expensive. The market has consistently chosen efficiency over security, leading to systemic fragility.
Pick 2
Trilemma Constraint
~$10B
Total Bridge Exploits
CROSS-CHAIN VALIDATION DILUTION
Attack Cost Analysis: Hypothetical Validator Set
Compares the economic security of a validator set when its stake is used to secure a single chain versus when it is diluted across multiple chains via restaking or shared security models.
| Security Metric | Single-Chain Native (Baseline) | Cross-Chain via Restaking (e.g., EigenLayer) | Cross-Chain via Shared Security (e.g., Cosmos Hub) |
|---|---|---|---|
Total Staked Value (TVL) | $10B | $10B | $10B |
Chains Secured | 1 | 5 | 5 |
Effective Stake per Chain | $10B | $2B | $2B |
Attack Cost for 33% Slash (per chain) | $3.3B | $660M | $660M |
Attack Cost Reduction Factor | 1x | 5x | 5x |
Correlated Slashing Risk | |||
Liveness Fault Isolation | |||
Capital Efficiency for Validator | 1x | Up to 5x | 1x |
deep-dive
THE DILUTION
The Math of Marginal Security
Cross-chain validation fragments economic security, creating attack vectors cheaper than the sum of its parts.
Security is not additive. A validator securing $10B on Ethereum and $1B on Avalanche does not create an $11B security budget. An attacker only needs to compromise the weaker chain's subset of validators, exploiting the lowest common denominator of stake.
Economic security becomes marginal. The cost to attack a cross-chain bridge like LayerZero or Wormhole is the cost to attack the least secure chain in its validator set. This creates a sublinear security model where adding chains reduces average security.
Proof-of-Stake exacerbates dilution. Validators with slashing penalties on Ethereum face minimal consequences for malicious actions on a smaller chain. This misalignment of incentives is a core vulnerability for omnichain applications built on Axelar or Chainlink CCIP.
Evidence: The 2022 Nomad bridge hack exploited a bug in a single, under-audited smart contract, draining $190M. The economic security of the underlying chains (Ethereum, Avalanche) was irrelevant; the marginal security of the bridge's code was the determining factor.
case-study
SECURITY DILUTION
Architectural Case Studies: Cosmos vs. Avalanche vs. Solana
Cross-chain validation fragments capital and trust, creating systemic risk. These three architectures reveal the trade-offs.
01
Cosmos IBC: The Sovereign Security Dilemma
IBC's interchain security is opt-in, allowing new chains to rent security from Cosmos Hub validators. This creates a hub-and-spoke trust model where the hub's security is the ceiling.
- Problem: A new chain can bootstrap with ~$1B in staked ATOM, but this dilutes the hub's economic security across all consumer chains.
- Solution: Security is explicit and priced, but the total value secured is split, not summed, creating a shared-risk pool.
~$1B
Rentable Security
Split
Security Pool
02
Avalanche Subnets: Isolated Security Silos
Avalanche Subnets are sovereign networks with their own validator sets and tokens, connected via the Avalanche Warp Messaging (AWM) protocol.
- Problem: Each subnet's security is fully isolated. A bridge between a $10M TVL subnet and the $5B+ TVL C-Chain is only as secure as the weaker chain.
- Solution: Isolation prevents contagion but makes cross-subnet communication a weakest-link security game, heavily reliant on third-party bridges like LayerZero or Wormhole.
Isolated
Security Model
Weakest-Link
Bridge Risk
03
Solana: The Monolithic Fortress
Solana's single-state architecture consolidates all activity—DeFi, NFTs, payments—onto one global validator set securing over $70B in stake.
- Problem: It has no native cross-chain security problem because it doesn't natively validate external chains. All composability is internal and atomic.
- Solution: This creates immense shared-state security but forces all scaling and innovation through the monolithic L1, making bridges to Ethereum or Cosmos critical, high-risk external dependencies.
$70B+
Consolidated Stake
Atomic
Internal Comp.
counter-argument
THE DILUTION
Counterpoint: Interchain Security & Subnet Incentives
Cross-chain validation fragments and dilutes the economic security of the underlying base layer.
Interchain security is a zero-sum game. Validators securing a subnet or an appchain like dYdX v4 must split their stake, reducing the capital securing the parent chain. This creates a security budget where capital allocated to a subnet is capital not slashed on the mainnet.
Economic security is not composable. The security of a Cosmos Hub validator set securing a consumer chain is not additive to the hub's own security; it is the same capital counted twice. This creates systemic risk, as a correlated failure on a subnet can cascade.
Subnet incentives misalign validator priorities. Projects like Avalanche subnets offer higher yields to attract validators, diverting stake from the primary network. This incentive leakage weakens the base layer's Nakamoto Coefficient for marginal application-specific gains.
Evidence: The Celestia modular data availability model explicitly decouples execution security from settlement security, acknowledging that shared validator sets for rollups create unsustainable security assumptions compared to isolated, high-value chains like Ethereum L1.
takeaways
CROSS-CHAIN SECURITY DILUTION
Key Takeaways for Architects & Investors
The economic security of a cross-chain validator network is not the sum of its parts; it's the weakest link multiplied by systemic risk.
01
The Problem: The Sum-of-Stakes Fallacy
Architects often assume a network like LayerZero or Axelar with $1B+ TVL across 50 chains has $50B in security. This is dangerously wrong. Security is not additive; it's the minimum slashable stake per chain, often <2% of the total. A $20M attack on one chain can compromise the entire system.
<2%
Effective Security
$20M
Attack Cost
02
The Solution: Shared Security Silos (e.g., EigenLayer AVS)
Instead of fragmented validators, pool security from a high-trust source like Ethereum. Protocols like Across and Hyperlane are building on EigenLayer Actively Validated Services (AVS). This creates a unified, slashable economic layer backed by ~$20B in restaked ETH, making cross-chain attacks economically irrational.
~$20B
Unified Stake
1
Trust Root
03
The Reality: Intent-Based Abstraction Wins
The endgame isn't more validation layers; it's abstracting them away. UniswapX and CowSwap use solvers who compete to fulfill user intents across chains, bearing the bridge risk themselves. Security shifts from consensus to economic competition and reputation, eliminating the validator attack surface entirely.
0
User Risk
Solver-based
Security Model
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall