Discussions for CGP 15: Extend Attestation Expiration Duration found here.
Q:
I believe part of the reason attestations expire was to prevent collusion between validators. Have we decided that this isn’t important? Or that 1 day is not enough time for collusion?
A: The attack in getting 3 validators to collude doesn’t seem much easier with the extra time for the following reasons.
- Already, they can collude before making the requests. For this route, they would statistically need to make a bunch of issuer requests before being randomly paired with the colluding validators. So their rate of successful verifications should be low. Time for expiration does not impact this.
- The other avenue is to get paired with 3 random issuers and actively convince them to collude. So it’s more of a question of likelihood that 3 random validators would be convinced to change their attestations service for a request within 1 day. Feels low risk, but let me know if you or anyone thinks differently?