A data availability attack exploits the fundamental requirement for blockchains that all network participants must be able to access and verify the data within a new block. When a malicious block producer publishes only the block header—a cryptographic commitment to the data—but not the actual data, other nodes cannot check if the transactions are valid or if they follow the protocol's rules (e.g., no double-spends). This creates a situation where the network must decide whether to accept a block it cannot fully audit, creating a critical liveness vs. safety dilemma.
LABS
Glossary
Data Availability Attack
A security attack where a block producer withholds transaction data, preventing verification and potentially leading to invalid state transitions being accepted by the network.
Chainscore © 2026
definition
BLOCKCHAIN SECURITY
What is a Data Availability Attack?
A data availability attack is a security exploit where a blockchain block producer, such as a validator or miner, publishes a block header but withholds the underlying transaction data, preventing the network from verifying the block's validity.
This type of attack is a primary concern for scaling solutions like rollups (Optimistic and ZK-Rollups) and sharded blockchains. In an Optimistic Rollup, for instance, the sequencer posts state commitments to a base layer like Ethereum. If the sequencer withholds transaction data, fraud provers cannot generate fraud proofs to challenge invalid state transitions. The attack's success hinges on the network's inability to distinguish between a maliciously withheld block and a genuinely empty one, a problem formalized as the Data Availability Problem.
To mitigate data availability attacks, protocols implement various data availability sampling (DAS) and fraud proof mechanisms. In DAS, light clients randomly sample small chunks of the block data; if all samples are available, they can statistically guarantee the entire dataset is published. Ethereum's danksharding roadmap and Celestia's modular blockchain architecture are built around this principle. Alternatively, networks may require validators to attest to data availability or employ erasure coding, which redundantly encodes data so that only a portion is needed for full reconstruction.
The consequences of a successful data availability attack are severe. It can lead to chain halts, enable theft of funds in layer-2 bridges or rollups, or allow for the inclusion of invalid transactions that cannot be challenged. Defenses against it are therefore a core component of blockchain security design, ensuring that the system's safety—the guarantee that only valid states are finalized—is not compromised by a failure in liveness—the ability to produce new blocks.
key-features
ATTACK VECTORS
Key Features of a Data Availability Attack
A Data Availability Attack exploits the inability of network participants to verify that all transaction data for a new block has been published. This breakdown in the data availability assumption is a core challenge for scaling solutions like rollups.
01
Core Premise: Hidden Data
The attack hinges on a block producer (e.g., a sequencer or validator) publishing a block header but withholding the corresponding transaction data. Honest nodes cannot reconstruct the block's state or validate its contents, creating a critical information asymmetry. This violates the fundamental data availability assumption required for secure light client verification.
02
Primary Target: Light Clients & Rollups
These attacks are most potent against systems relying on fraud proofs or validity proofs (ZK-proofs).
- Optimistic Rollups: A malicious sequencer could withhold data, preventing verifiers from generating fraud proofs within the challenge period.
- Light Clients: They depend on data availability sampling; if data is hidden, they cannot verify chain validity. The attack undermines the security model of Layer 2 scaling solutions.
03
Withholding vs. Publishing Invalid Data
This is distinct from publishing invalid state transitions. The attacker correctly constructs the block but makes the data unavailable for download. The block may be valid, but its unverifiability forces honest nodes into a dilemma: accept a potentially fraudulent block or reject a potentially valid one, risking chain forks.
04
Exploiting Data Sampling Limits
In networks using Data Availability Sampling (DAS), like Celestia or Ethereum DankSharding, clients randomly sample small pieces of block data. An attacker might withhold data for a specific, unsampled chunk. While probabilistic guarantees make this hard, a determined attacker with significant resources could target the sampling mechanism's statistical security margin.
05
Economic Incentive & Slashing
The attack is often economically motivated. A block producer might withhold data to enable a double-spend or censor transactions. Prevention relies on cryptoeconomic penalties (slashing). If a producer fails to provide data upon request within a timeframe, their staked collateral is destroyed, making the attack costly.
how-it-works
BLOCKCHAIN SECURITY
How a Data Availability Attack Works
A detailed breakdown of the mechanism by which malicious validators can hide transaction data to defraud a blockchain network.
A data availability attack is a sophisticated threat to blockchain networks, particularly those using fraud proofs or validity proofs in layer 2 rollups or sharded chains. The core of the attack occurs when a block producer (or sequencer) publishes a block header and attests to its validity but withholds a portion of the underlying transaction data. This makes it impossible for honest network participants to download and verify the full contents of the block, creating a critical asymmetry of information. The attacker relies on this hidden data to contain invalid transactions or state transitions that would be rejected if fully inspected.
The attack unfolds in two phases. First, the malicious validator proposes a block with a hidden invalid transaction. Second, when challenged by a light client or a full node running a data availability sampling protocol, the attacker can temporarily provide proof that the data exists without revealing the fraudulent part, or they may simply be unresponsive. This prevents the generation of a conclusive fraud proof because the verifier lacks the complete data needed to computationally demonstrate the invalidity. The system is thus stalled in a state where a block is considered potentially valid but unverifiable, undermining the chain's security guarantees.
Mitigating this attack is the primary purpose of data availability layers and protocols like EigenDA or Celestia. These systems employ cryptographic techniques such as erasure coding and data availability sampling (DAS). Erasure coding redundantly encodes the block data, so only a random 50% of it needs to be available for the full data to be recoverable. Light nodes then perform DAS by randomly querying for small, random chunks of this encoded data. If a sufficient number of samples are successfully retrieved, they can statistically guarantee—with high probability—that the entire data set is available to the network, neutralizing the attack.
security-considerations
SECURITY CONSIDERATIONS & RISKS
Data Availability Attack
A Data Availability Attack is a security threat where a block producer withholds the data for a newly created block, preventing other network participants from verifying its contents and challenging invalid state transitions.
01
Core Mechanism
The attack exploits the separation of block production from data publishing. A malicious sequencer or block producer creates a block with invalid transactions but publishes only the block header. Validators cannot download the full block data to reconstruct the state and thus cannot prove fraud. This is a fundamental challenge for scaling solutions like rollups that post data to a base layer.
02
Impact on Rollups & L2s
For Optimistic Rollups, a successful attack during the challenge period can freeze funds or enable theft, as fraud proofs cannot be constructed without data. For ZK-Rollups, while validity proofs ensure state correctness, lack of data prevents users from rebuilding their state and exiting the system. The attack directly threatens the safety and liveness guarantees of the scaling solution.
03
Mitigation: Data Availability Sampling
Data Availability Sampling (DAS) is a key cryptographic defense. Light nodes randomly request small, random chunks of the block. If the data is unavailable, sampling will quickly detect it. This allows a network of light clients to probabilistically guarantee data availability without any single node downloading the entire block. Ethereum's DankSharding architecture is built around this principle.
04
Mitigation: Data Availability Committees
A Data Availability Committee (DAC) is a set of trusted, known entities that cryptographically attest to the availability of data. Rollups like early versions of Arbitrum Nova used this model. Members sign a commitment that the data is stored and accessible. This provides a weaker, trust-based guarantee compared to cryptographic sampling but with lower implementation complexity.
05
Related Concept: Data Availability Problem
The Data Availability Problem is the broader theoretical challenge: how can a network node be sure that all data for a block is published, without downloading the entire block itself? Solving this is essential for blockchain scalability. It is distinct from data validity; the data could be available but incorrect, which is addressed by fraud proofs or validity proofs.
06
Real-World Example & Risk
In 2022, the Celestia network implemented the first production-grade Data Availability Sampling. Prior to such solutions, modular blockchains and high-throughput L2s were vulnerable. The risk is quantified by the cost of withholding data versus the value secured. If the cost to keep data hidden (e.g., via staking slashing) is less than the potential profit from an attack, the system is economically insecure.
examples
DATA AVAILABILITY ATTACK
Examples & Real-World Context
Data Availability Attacks are not theoretical; they are a critical vulnerability that has been exploited and mitigated in various blockchain designs. These examples illustrate how the attack manifests and the solutions developed to counter it.
03
Fraud Proofs & Validity Proofs
Rollups rely on data availability to enable two key security mechanisms:
- Fraud Proofs (Optimistic Rollups): Require the full transaction data to be available on-chain so that any watcher can reconstruct the state and submit a proof if they detect fraud.
- Validity Proofs (ZK-Rollups): Require data availability so users can compute the correct state and verify the provided cryptographic proof. Without the data, users cannot independently verify the proof's correctness, breaking the security model.
04
The Data Withholding Attack
This is the canonical example of a Data Availability Attack. A malicious block producer creates a valid block but withholds a portion of the transaction data. To the network, the block header appears valid, but nodes cannot verify the transactions inside. In a system relying on fraud proofs, this prevents honest actors from creating a proof to challenge invalid state transitions, allowing the malicious state to be finalized.
05
Data Availability Committees (DACs)
An alternative, more centralized solution used by some early rollups. A Data Availability Committee is a known set of entities that cryptographically sign attestations confirming they have stored a copy of the transaction data off-chain. While this provides availability guarantees without publishing all data on-chain, it introduces a trust assumption in the committee members' honesty and liveness.
06
Erasure Coding & Merkle Roots
A core cryptographic technique to mitigate data availability attacks. Block data is expanded using erasure coding (like Reed-Solomon codes), making it possible to reconstruct the entire dataset from any 50% of the pieces. The root of a Merkle tree over this encoded data is committed in the block header. Light nodes can then sample small, random pieces; if enough samples are successfully retrieved, they can be statistically confident the entire data is available.
defense-mechanisms
DEFENSE MECHANISMS & SOLUTIONS
Data Availability Attack
A data availability attack is a security threat where a blockchain sequencer or proposer withholds transaction data, preventing network participants from verifying the validity of a new block.
In a data availability attack, a malicious block producer creates a valid block but publishes only the block header, withholding the underlying transaction data. This prevents full nodes and light clients from downloading the data required to execute the block's transactions and verify its correctness. The core problem is that without the data, the network cannot determine if the block contains invalid transactions or double-spends, creating a risk of accepting a fraudulent state. This attack is a primary concern for optimistic rollups and other scaling solutions that rely on a challenge period for fraud proofs.
The attack exploits the fundamental data availability problem: how can a node be sure that all data for a block is published and retrievable? If data is withheld, honest validators cannot construct fraud proofs to challenge invalid blocks. Data availability sampling (DAS) is a key defense, where light clients randomly sample small pieces of the block data. If a sample request fails, it signals that the data is not fully available, and the block should be rejected. Technologies like erasure coding are used to ensure that even if some data is missing, the entire dataset can be reconstructed from available fragments.
Real-world implementations to mitigate this risk include data availability committees (DACs) and data availability layers. A DAC is a set of trusted entities that sign attestations confirming data is available. More robust solutions are dedicated data availability layers, such as Celestia or EigenDA, which provide a separate blockchain network specifically designed for guaranteeing that transaction data is published and stored. For Ethereum, the proto-danksharding (EIP-4844) upgrade introduces blob-carrying transactions, creating a dedicated, low-cost space for rollup data with a temporary storage window, significantly bolstering data availability guarantees.
The consequences of a successful attack are severe: it can lead to a chain halt if validators cannot proceed, or enable state divergence where different network participants have different views of the blockchain's state. Defenses are therefore critical for the security of any system where block production and data publication are separated. Ensuring data availability is a prerequisite for the secure operation of layer 2 rollups, sidechains, and sharded blockchains, making it a cornerstone of scalable blockchain architecture.
DATA AVAILABILITY
Frequently Asked Questions (FAQ)
Data availability attacks target the foundational layer where transaction data is stored and retrieved. Understanding these attacks is critical for evaluating blockchain security and scalability solutions.
A data availability attack is a scenario where a blockchain block producer (e.g., a miner or validator) withholds the transaction data for a newly created block, making it impossible for the network to verify the block's validity while the block header is still propagated. This prevents nodes from detecting invalid transactions, such as double-spends or invalid state transitions, because the necessary data to perform the check is unavailable. The attack exploits the separation between block propagation (sharing headers) and data availability (sharing the full transaction set). It is a core challenge that data availability sampling (DAS) and data availability committees (DACs) are designed to mitigate, ensuring that data is always retrievable for verification.
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall