cacti icon indicating copy to clipboard operation
cacti copied to clipboard
verified publisher icon hyperledger

Recovery mechanisms for incidents

Open RafaelAPB opened this issue 1 year ago • 1 comments

It is still not clear what a good incident response framework and interfaces should be for cross-chain applications. [Some info in our recent paper ](https://www.techrxiv.org/users/687326/articles/691934-sok-security-and-privacy-of-blockchain-interoperability(more). We expect the requirements of this issue to be clearer in the next months.

Requirements:

  1. Define processes that deal after a violation for the cross-chain model has been solved(and their different scenarios). Processes should include recovery mechanisms (such as revert transactions, update allow and deny lists, etc)
  2. Implement recovery mechanisms in the smart contract
  3. Implement recovery mechanisms in SATP core, namely the ability to send transactions to the bridge that trigger the recovery, and messages to counterparty gateways
  4. Expose endpoint in SATP that administers the recovery mechanisms (for example, manually contacting counterparty gateway)
  5. Update Prometheus metrics for incidents (time to resume normal operations, e.g., volume)

RafaelAPB avatar Mar 15 '24 15:03 RafaelAPB

I will do this task.

brunoffmateus avatar Mar 16 '24 14:03 brunoffmateus