Sabitlenmiş Tweet
Anders
1.9K posts
Anders
@andersavail
"above average easier to take advantage of" - my pals, 2025
(✧ω✧) Katılım Ocak 2011
986 Takip Edilen381 Takipçiler
Anders retweetledi
Civil war over
@lightclients won
Back to making Ethereum the world computer
English
Anders retweetledi
In this article, I dismantle the entire security token industry as it's existed to date — ERC-3643, Securitize, Canton, all of it.
The tokens aren't securities. The compliance modules don't discharge anyone's obligations. The transfer agents, brokers, and depositaries are still there, controlling everything more than they do in TradFi.
The god-mode admin keys make the tokens unpledgeable as collateral. The chain is a notification layer for intermediaries that don't need one.
Canton is the most extreme case: DTCC reimplemented in DAML instead of COBOL. @gluk64 is right that it's not a blockchain.
Then I lay out what it actually takes to put securities onchain: make the chain the ledger, make the token the entry, and stop dressing intermediaries up in smart contract costumes.
_gabrielShapir0@lex_node
English
Anders retweetledi
Canton founders claim ZK proofs are too risky for institutional finance. They have been making this argument to buyers and regulators, publicly and behind closed doors. It deserves a public answer.
Let's see if the argument holds — and if Canton's infrastructure passes its own test.
The argument
Their case, stated fairly: ZKPs are complex. Bugs are inevitable in any sufficiently complex system. If a flaw exists in a proof system, it could go undetected because the underlying data is private. If it goes undetected, it spreads throughout the system. This creates systemic risk. Therefore, ZKPs cannot be used for critical financial infrastructure.
This is a real concern. Let's take it seriously and follow the logic.
The flaw in the logic
Strip away the ZKP-specific language, here's the story:
Technology X can have implementation flaws. Technology X serves a mission-critical function. If it fails, the consequences are catastrophic. Therefore, Technology X can never be used.
Read it again. There is a hidden assumption doing all the work: that Technology X is your only line of defense.
If this logic held, we would not have aviation. Fly-by-wire, engine controllers, autopilot — every one of these systems has bugs, is mission-critical, and can fail catastrophically.
Nuclear reactor control systems, robotic surgery, radiation therapy dosing, implantable cardiac devices, and many other systems all run on software that can fail catastrophically. But they are somehow still in use. How?
Redundancy and containment
The foundation for these mission-critical systems is the explicit assumption in their architectures that every component will eventually fail. They all rely on two things: redundancy and containment.
Redundancy = multiple independent systems, each capable of catching a failure in the others.
Containment = when failure occurs, limit the blast radius so it cannot become systemic.
This is the only question that matters for any mission-critical system: does your architecture have more than one line of defense?
Canton's architecture
Let's apply this test to Canton.
Canton's privacy and integrity model relies on a single mechanism: trusted operators segregating data between participants. There is no cryptographic verification layer and no independent check. If a few keys of the operators in a validation domain are compromised, manipulated state propagates silently inside opaque chains of UTXOs with nothing watching. This is a real systemic risk, accelerated by the rise of AI-assisted cyberattacks.
By Canton's own logic — a single point of failure with catastrophic consequences — this is the architecture that should concern regulators.
Prividium's architecture
Now look at how Prividium is built.
Redundancy. Prividium has three independent lines of defense. First, institutional partners operate Prividium nodes within their own security environments, the same infrastructure banks already trust and regulate. Second, zero-knowledge proofs provide cryptographic integrity verification as an independent layer on top, verifying operational security rather than replacing it. Third, as ZK proof systems standardize, multiple independent provers can verify the same computation. A flaw in one implementation gets caught by another.
Containment. Each Prividium instance is an individual chain operated by an individual institution. When institutions interact across chains, Prividium's interop layer implements inter-chain accounting mechanisms that are independently enforced by the participating institutions, asset issuers, or on-chain. Even an attacker who compromises a single institution's internal IT infrastructure and simultaneously finds a ZKP bug could only affect that one Prividium instance. The damage cannot propagate to the broader network.
The net balance: Canton has a single mechanism, no fallback, silent failure propagation across the network. Prividium has layered defenses, independent verification, blast radius contained by design.
Importance of open standards
Multiple lines of defense only matter if each line is itself strong. What makes a technology strong? The depth of adversarial testing it has survived. Shaul points to a compiler bug example in his post, and it actually illustrates this well.
ZKsync embraced full EVM equivalence over a year ago. This was shaped precisely by the understanding that the more you deviate from an open standard, the larger your attack surface becomes.
And Ethereum is not battle-tested in some polite, academic sense. For over a decade, its smart contract infrastructure has been completely open to scrutiny by the most sophisticated adversarial actors in the world, with hundreds of billions of dollars at stake. Vulnerabilities and exploits fed directly back into the ecosystem: new audit standards, formal verification tools, compiler safeguards, and hardened design patterns. The EVM that exists today is the product of a decade of continuous adversarial stress testing at a scale no other smart contract platform has experienced.
Canton went the opposite direction. DAML is a proprietary smart contract language with a closed ecosystem and a fraction of the developer and security community. Every growing pain that Ethereum went through over the last ten years still lies ahead for DAML, except DAML will face them with orders of magnitude fewer eyes watching. Every maturity concern Canton raises about ZKPs applies to their own technology stack with far less mitigation available.
The safest technology is the one that has survived the longest under the harshest conditions. For smart contract infrastructure, that is Ethereum. It's not close.
So to answer the question directly: everyone agrees bugs exist. The question is whether your architecture has redundancy to catch them and containment to limit the damage when they slip through.
Cryptographic verification provides both. Trust in operators provides neither.
English
Anders retweetledi
Anders retweetledi
just to be very clear,
we all like CROPS.
and the EF mandate is not a milady pledge, but a commitment to CROPS.
all of us are at the EF to build a world where censorship resistance, open source, privacy, and security, are constantly available to anyone anywhere.
these cypherpunk properties unite the institution who wants to minimize counterparty risk, with the person fleeing a tyrannical government, it unites the mom who doesn’t want their kids data leaked to the world with the agent who needs to keep their human’s secrets.
the cypherpunk and the normie need the same thing and they just don’t know it yet.
this is not a mission limited to any one silo, but one that is clearly looking to advance all the silos. the value of CROPS enhances and extends our space and how it impacts daily human life in a way that is more exciting than anything else i have seen in a long time.
99.999% of the world (everyone) are not on our timeline and none of them care about our discourse, they only truly care about if the infrastructure for their freedom exists or doesn’t. the EF mandate ascertains that no matter what, that infrastructure will exist and will remain to be CROPS friendly.
the world is getting less free, surveillance is expanding and censorship is normalizing. the window for building the tools that protect people is getting smaller, we must not lose the gap.
digital freedom is more important than ever right now, and any ceded ground towards that freedom, is lost ground.
thank you for reading this far if you have, i feel this in my bones and it aches me that e are not talking about this more, let’s change that.
English
👏 👏 👏
_gabrielShapir0@lex_node
good callout here from my friend @RebeccaRettig1 against Canton and its concerted FUD against real blockchains however like my own Canton critiques, the Canton crowd will just attribute it to bag bias since she works for a Solana org So, here is a brief summary of critiques of Canton from State Street stalwart Swen Werner who has a storied TradFi capital markets background and seemingly zero bag-bias. These critiques all cut to the bone and don't even require you to be 'cypherpunk-aligned'; they are simply logical: 1. "Synthetic atomicity" — Canton's cross-domain transactions are not actually atomic. This was Werner's first flag, raised in the April 2024 piece. Canton's pilot report used the word "atomic" 45 times in 43 pages. Werner's objection is definitional and he considers it important: true atomicity exists within a single block on a single chain, where all transactions are collectively validated and committed (or rejected) together. Canton's cross-domain transactions span multiple independent systems coordinated through synchronization domains and sequencers. Werner argues this is "synthetic atomicity" — a process designed to mimic single-chain atomicity through additional coordination protocols, but that is not actually atomic in the strict sense. When 90% of pilot participants said they were confident Canton could "enable secure, atomic transactions across independently controlled distributed ledger applications," Werner's reaction was that the systems are not actually independently controlled — they're subnets subject to a common consensus protocol, with independent configuration of business logic but not independent consensus. 2. Broadridge DLR on Canton/VMware is not real tokenization — it's "blockchain theater." Werner digs into the actual architecture of Broadridge's Distributed Ledger Repo solution, which is the flagship Canton use case. He points out that DLR runs DAML smart contracts on top of VMware blockchain (now owned by Broadcom), where Broadridge controls the consensus to book updates. Settlement still happens "by triggering a payment on conventional payment rails," and the whole thing is "built on top of its existing connectivity with central securities depositories and custodian banks." The DAML runtime handles all execution, logic, and permissions — VMware blockchain just stores the data. Werner calls this a "layered architecture" where there's "no direct interoperability between Daml contracts and the chaincode." His summary: no real decentralization (just centrally controlled nodes), no real tokenization (just internal bookkeeping with a new label), and no independent settlement (still relying on traditional rails). The benefit is workflow orchestration, which banks have been doing since before blockchain existed. 3. Canton's privacy model means assets cannot be independently verified — which means they cannot be marketable securities. This is Werner's most structurally important critique. In Ethereum, when you mint a token, the entire network sees it and can verify its existence. In Canton, each participant stores and processes only the data relevant to its own contracts. There is no universally shared ledger — just a "virtual global ledger" composed of private ledger segments that exchange cryptographic proofs. Werner's conclusion: "If Goldman Sachs tokenizes an asset on Canton, that token is just a data entry — it has no independent market presence. Unlike a real tokenized bond on Ethereum, a Canton-based bond cannot be independently verified unless GS allows it." An asset's visibility and existence depend entirely on the issuer's discretion. This, Werner argues, is fundamentally incompatible with the concept of a marketable security, where "the entire point of a security is that it can be freely traded, without needing the original issuer's permission for every subsequent transfer." Canton's selective disclosure model means no free transfers and fragmented visibility — characteristics of syndicated loan markets, "the most cumbersome and inefficient asset class in existence." Hence the title: Canton doesn't tokenize securities, it syndicated-loan-izes them. 4. The IT bottleneck: every new counterparty relationship requires cross-firm software deployment. Werner's most operationally grounded critique. In traditional finance, onboarding a new counterparty doesn't require deploying new software across everyone's infrastructure — legal agreements and settlement instructions are process-driven, handled by middle-office and operations teams. Under Canton, every new counterparty relationship requires a DAML contract explicitly modeling the terms of that specific A-B pairing, deployment of that smart contract across all involved parties' IT environments, and coordination between each party's IT teams. If one party's IT is unavailable — overwhelmed with a compliance upgrade, under a December moratorium, whatever — "the whole transaction is delayed or impossible because the smart contract must be actively deployed and updated on all participant nodes." Werner calls this "radically different from today's financial markets. Radically different, but not radically better." He extends this to the multi-domain case. If you're lending a security to Counterparty B but waiting for Counterparty A to deliver it first, the A→You contract doesn't provide atomicity for the A→You→B chain. You'd need a combined contract, and your local IT team must integrate it before the transaction can occur. Add cross-domain coordination on top and "the simple act of lending a bond turns into a multi-party software deployment problem." 5. Counterparty node dependency creates new systemic fragility. Canton's own documentation acknowledges that "an offline participant can prevent the pruning of contracts by its counter-participants." Werner points out what this means operationally: if Bank A and Bank B share a contract, Bank A cannot garbage-collect or archive that contract's data while Bank B's node is down. Canton is developing "attestators" (trusted third parties that help progress workflows when a counterparty is unresponsive), but Werner flags that delegating control to a third party in this way introduces its own legal and operational risks — and reintroduces centralization through the back door. 6. The endgame: CSDs will absorb Canton's use cases. Werner's prediction, framed through an extended historical analogy to the Franconian Knights' Cantons under the Holy Roman Empire (which were absorbed by Bavaria in 1806 when the Emperor no longer provided protection): "When external forces — regulatory pressure, market realities, and operational inefficiencies — demand an answer, systems like Canton collapse into centralized control." If a CSD launched a centralized digital repo system, it could coordinate transactions without Canton's smart contract dependencies. Once Canton collapses into centralized governance, "its core value proposition disappears, and its software is no longer the best choice." The only real question is when and how CSDs take over. sources: swenldn.substack.com/p/damls-canton… swenldn.substack.com/p/quo-vadis-ca…
ART
Anders retweetledi
Anders retweetledi
6/ We came to build something different. That's what permissionless blockchains are -- new, unique and a real evolution of how the financial world will transaction on chain. That can & will all be achieved . . . I'll be taking on the FUD more directly from here on out.
English
Anders retweetledi
5/ We've tried permissioned "blockchain not bitcoin" networks in @ least 2 prior cycles -- they didn't work/win b/c they don't bring the benefits that permissionless networks do.
English
Anders retweetledi
some reminders of what the future could look like without CLARITY
passive stablecoin yield is a 'nice to have' vs keeping devs out of prison, legal capital-raising for the next gen of builders, & DeFi/validator/wallet safe harbors
@coinbase do the right thing, approve CLARITY
English
Anders retweetledi
Anders retweetledi
Anders retweetledi
Anders retweetledi
Whatever this shit once was it’s now an echo chamber of idealistic virtue signaling and showcasing in-group membership above all else.
This is not how you build a better anything.
It’s how you form an increasingly exclusive cult that has increasingly less influence and achieves less.
When you prioritize agreement and superficial signals over fucking results you fail to achieve anything of value. It’s not about money or what you think it’s valuable, it’s about doing things. And you can’t do things when you’re too fucking busy making sure that you’re all in fucking agreement about doing things.
Grow the actual fuck up this is deeply fucking embarrassing.
English
Anders retweetledi
best in class approach:
- ethereum gets together and announces a specific, detailed PQ roadmap by 2029 (pq.ethereum.org). sets it as top strategic priority. folds PQ into ongoing roadmap. detailed FAQ. no fear, just action.
worst in class approach:
- Bitcoin devs deny, gaslight, gatekeep, bury heads in sand, say "the community will decide" and then refuse to take feedback from the community when offered. currently one group working on a sort of quantum thing (edited to remove all actual post quantum crypto) and has received 0 buy-in from top devs. devs point to one or two pieces of research as "work being done, look away". no coherent strategy. no roadmap.
everyone knows I'm a bitcoiner and would like bitcoin to win. not saying this to hurt feelings. saying this to spur action.
English
Anders retweetledi
Anders retweetledi
Interacted with a milady for the first time. Genuinely disgusting experience, makes me want to stay inside for the next 20 years. Just really gross, socially destructive stuff. I would orbital strike such people if I could.
𖤐 EX_SCXR 𖤐@ex_scxr
Interacted with a milady for the first time. Genuinely disgusting experience, makes me want to stay inside for the next 20 years. Just really gross, socially destructive stuff. I would orbital strike such people if I could.
English
Anders retweetledi
a lot of people are midcurving the EF milady thing
Ethereum was suffering abysmal cultural poverty & aesthetic stagnation over the last 4 years or so
there has been a consistent lack of any kind of mog factor or fun vibes, it always feels like the 'high horse' crowd of holier than thou ivory tower researchers
I've had my ups and downs with the milady thing (I'm not the biggest fan of charlotte), but every great coin is a cult & milady has built a true network spirituality culture that's ETH-aligned
Bitcoin hooks into gold-buggism and libertarianism, Ethereum does not
Solana hooks into Silicon Valley "markets" VC/Y-Combinator 'startup' ideology, Ethereum does not
Ethereum now has CROPS & network spirituality
I think it was a genius move on the part of the EF to make this cultural leap
embrace it, ride it, to me it feels like the beginning of scaling belief in somETHing
English
Anders retweetledi
Ethereum is more live than ever! @MacroMate8 I call you to a debate on that ⚔️
SolanaFloor@SolanaFloor
🚨BREAKING: Seraphim (@MacroMate8), former Growth Lead at @LidoFinance and @ethena, joins Solana Foundation to lead risk and special situations. He says “Ethereum is dead” and outlined plans to bring $10B TVL and expand RWA perps on @Solana.
English
