Current Issues
Despite the implementation of MIP-9 (which blocklisted malicious validators from the stake auction marketplace), several problems persist:
- The ban has proven to be only temporary and insufficient. Some banned validators still maintain active stake in the system (ref)
- Attackers simply change their identity addresses and create new validator instances to continue executing sandwich transactions. Current sandwich attackers represent more than 50% of total stake (ref)
In the current auction environment, most high-bidding validators are sandwich attackers. This has made participation economically irrational for honest validators, leading to deterioration of Solana’s UX and unhealthy validator concentration.
Proposed Solution
To completely remove sandwich attackers from the auction, a more continuous and severe penalty mechanism is needed that makes it economically rational for attackers to exit the auction system. After discussions in Discord, the following approach has been agreed upon:
—If a validator is flagged as a sandwicher, they get banned in the next epoch and all their bonds are confiscated. (ref)
For flagging validators as sandwich attackers, either the criteria used in the MIP-9 implementation or the standards compiled by Hanabi-Staking could be applied. (ref)
Expected Outcomes
When sandwich attackers are removed from the auction:
There may be a temporary decrease in winning APY and Marinade’s yield. However, this will attract many honest validators to participate in the auction. This will promote validator diversification across the network.
In the medium term, competition among honest validators will gradually increase the winning APY in a healthy and sustainable manner