cardano-foundation · fallen-icarus · Jan 23, 2023 · Jan 23, 2023 · Jan 23, 2023 · Jan 30, 2023
diff --git a/CIP-????/README.md b/CIP-????/README.md
@@ -0,0 +1,132 @@
+---
+CIP: ?
+Title: Beacon Tokens & Distributed Dapps
+Category: Tools
+Status: Informational
+Authors:
+    - fallen-icarus <modern.daidalos@gmail.com>
+    - zhekson1 <zhekson@nomadpool.io>
+Implementors: []
+Discussions:
+Created: 2023-02-21
+License: CC-BY-4.0
+---
+
+## Abstract
+In the absence of atomic delegation, in order for layer 1 (L1) Dapp users to maintain full delegation control of their assets, each user must have his/her own address while using the Dapp. This poses a challenge: if all users have their own addresses while using the Dapp, how can users find and interact with each other, without relying on a central order batcher? This informational CIP proposes an NFT standard, called ***Beacon Tokens***, to solve this broadcasting issue. Using beacon tokens, it is possible to create distributed L1 Dapps (eg, DEXs, p2p lending, etc) where users not only maintain full delegation control of their assets, but can also maintain full custody of their assets at all times. Beacon tokens can be generalized to other use cases, such as creating an on-chain personal address book tied to - and fully recoverable by - a user's payment pubkey, or trustlessly sharing reference scripts with other blockchain users.
+
+## Motivation: why is this CIP necessary?
+To date, there are very few L1 Dapps in which users maintain full delegation control of their assets. Those that do, tend to be closed source and, therefore, do not share how they have overcome the broadcasting issue associated with giving each user his/her own Dapp address. The rest of the L1 Dapps usually end up pooling user assets together and therefore are forced to delegate the assets all together. In Proof-of-Stake (PoS) blockchains, this is a significant security concern. The more popular a L1 Dapp becomes, the more centralized the underlying stake becomes. Some Dapps try to address this concern by:
+
+1. Fractionalizing the asset pools - instead of all assets being at one address and delegated to only one stake pool, the assets are split among several addresses and delegated to several separate stake pools.
+2. Issuing governance tokens - each user gets a vote on where the pooled assets will be delegated.
+
+This general pattern is utilized by all kinds of L1 Dapps: DAOs, DEXs, p2p lending, etc. Unfortunately, the above mitigations do not fully solve the issue; the blockchain is still significantly more centralized than if full delegation control was used.
+
+## Specification
+
+### Beacon Tokens
+
+#### What are Beacon Tokens?
+All native tokens on Cardano broadcast their current address and any transactions they were ever a part of at all times. Take a look at the following off-chain APIs:
+
+| Task | Koios API | Blockfrost API |
+|--|--|--|
+| Addresses with asset | [API](https://API.koios.rest/#get-/asset_address_list) | [API](https://docs.blockfrost.io/#tag/Cardano-Assets/paths/~1assets~1%7Basset%7D~1addresses/get) |
+| Txs including asset | [API](https://API.koios.rest/#get-/asset_txs) | [API](https://docs.blockfrost.io/#tag/Cardano-Assets/paths/~1assets~1%7Basset%7D~1transactions/get) |
+
+Knowing *exactly* which addresses/transactions have the token, you can then use the same off-chain API services to take a closer look at those addresses/transactions:
+
+| Task | Koios API | Blockfrost API |
+|--|--|--|
+| UTxO info of address | [API](https://API.koios.rest/#post-/address_info) | [API](https://docs.blockfrost.io/#tag/Cardano-Addresses/paths/~1addresses~1%7Baddress%7D~1utxos/get)|
+| Tx metadata | [API](https://API.koios.rest/#post-/tx_metadata) | [API](https://docs.blockfrost.io/#tag/Cardano-Transactions/paths/~1txs~1%7Bhash%7D~1metadata/get)|
+
+Here is a short list of what you can get:
+
+1. Any reference scripts stored at the address and their associated UTxO TxIx.
+2. Any datums stored at the address.
+3. The stake address associated to that payment address.
+4. The metadata history of each transaction that had the token.
+5. The datum history of each UTxO that held the token.
+
+These queries are possible for *all* Cardano native tokens. However, while all native tokens *can* broadcast this information, the broadcasting itself is usually not the intended purpose of the native token (eg, governance tokens). **A *Beacon Token* is a native token whose ONLY purpose is to broadcast information.** If you want to broadcast certain transactions, just make sure the beacon token is part of those transactions. If you want to broadcast certain addresses, just make sure the beacon token is stored at those addresses. If you want to broadcast certain UTxOs, just make sure the beacon token is stored in those UTxOs.
+
+#### Using Beacon Tokens
+Every native token has two configurable fields: the policy ID and the token name. The policy ID will be application specific while the token name can be data specific. To use a beacon token, simply create a native token that is unique to your application and if necessary, control how UTxOs with beacons can be spent.
+
+Here are a few basic reference implementations:
+
+- [Cardano-Address-Book](https://github.com/fallen-icarus/cardano-address-book) - a personal payment address book on Cardano that is tied to a user's payment pubkey. It uses the Tx metadata API to broadcast all metadata attached to the transactions containing the beacon. The address book is the aggregation of all of the metadata. This application can be generalized to store *any* information in a way that is unique to, and protected by, the user's payment pubkey. The beacon token name is the user's payment pubkey hash. Minting the beacon requires the signature of the payment pubkey hash used for the token name. This guarantees that only Alice can mint Alice's personal beacon.
+
+- [Cardano-Reference-Scripts](https://github.com/fallen-icarus/cardano-reference-scripts) - trustless p2p sharing of Cardano reference scripts. It uses the UTxO info API to broadcast all of the UTxOs that contain each beacon. The beacon token name is the script hash of the reference script being shared. Minting the beacon requires that the beacon is stored with the reference script whose hash matches the beacon's token name. This example also uses a helper plutus spending script to guarantee the burning of the beacon when a reference script UTxO is consumed. 
+
+### Distributed L1 Dapps
+As already alluded to, a *distributed L1 Dapp* is one where all users have their own personal address while using the Dapp. This is opposite to *concentrated L1 Dapps* where all users share one or a few addresses while using the Dapp.
+
+Distributed L1 Dapps can use beacon tokens to aggregrate all of the necessary information for using the Dapps. Such distributed L1 Dapp follow the same general design pattern:
+
+1. All user addresses use the same spending script for a given use case.
+2. All user addresses *must* have a staking credential.
+3. The spending script delegates the authorization of owner related actions to the address' staking credential - ie, the staking key must sign or the staking script must be successfully executed in the same transaction.
+4. The spending script's hash is hard-coded into the beacon minting policy and the minting policy enforces that the beacons can only be minted to an address of that spending script.
+5. The datums for the spending script must have the policy ID of the beacons so that the script can force proper usage of the beacons (such as burning when necessary).
+
+#### Advantages
+Since each user has his/her own address for the Dapp, the following are now possible:
+
+1. **Full delegation control**
+2. Users maintain full custody of their assets while using the Dapp, since owner related actions must be approved by the staking credential.
+2. The address itself can act as the User ID. There is no need to place a User ID in a datum and guard its usage.
+
+Furthermore, the Dapp itself gains some nice features:
+
+1. Since there are at least as many UTxOs as there are users, the distributed L1 Dapp is naturally concurrent and gets more concurrent as the number of users increases.
+2. Upgradability can happen democratically - ie, users can choose whether to move their assets to an address using a newer version of the Dapp's spending script.
+3. The Dapp is easily integratable into existing frontends (wallets).
+4. Since the address itself can act as the User ID, in some cases, the Dapp's logic can be dramatically simplified.
+
+#### Cardano-Swaps: A L1 DEX with full delegation control
+Using these design principles, it was possible to create a L1 DEX proof-of-concept that has full delegation control. The result is the `Cardano-Swaps` DEX; it is fully open-sourced and can be found [here](https://github.com/fallen-icarus/cardano-swaps). It is fully operational and can be tested on either the PreProd Testnet or the mainnet. In addition to full delegation control, it has the following features:
+
+1. Composable atomic swaps.
+2. Users maintain custody of their assets at all times.
+3. Naturally concurrent and gets more concurrent the more users there are. No batchers are required.
+4. Liquidity naturally spreads to all trading pairs instead of being siloed into specific trading pairs.
+5. Enough liquidity can turn the DEX into a price oracle.
+6. Capital efficient due to the nature of atomic swaps where users specify their prices.
+7. ADA is all you need to interact with the DEX.
+8. Upgradability can happen democratically.
+9. Easy to integrate into any frontend.
+
+## Rationale: how does this CIP achieve its goals?
+By being able to easily broadcast the necessary information for a Dapp, user assets can be segregated into separate addresses and, therefore, enable full delegation control while using the Dapp. Thanks to broadcasting, the segregated addresses can act as if all the assets were pooled together (checkout the `Cardano-Swaps` README to see how liquidity is achieved; it arises naturally).
+
+The fact that beacon tokens are generalizable for aggregating any information on the blockchain is a bonus.
+
+### Does the reliance on off-chain APIs create *more* centralization?
+The short answer is no. It is important to look at what the limiting centralization factors are for any design. 
+
+#### Centralization Bottlenecks for concentrated L1 Dapps:
+
+1. Full delegation control is not possible without atomic delegation. This is baked into the on-chain design of the Dapp. 
+
+2. Batchers are needed since there aren't enough UTxOs for each user. For most Dapps, it is not easy to become a batcher due to needing to be selected by some entity. Furthermore, these batchers are effectively middlemen that can take advantage of their unique positions. While new innovations in batcher protocols are improving this situation ([spectrum-finance](https://docs.spectrum.fi/docs/protocol-overview/bots) batchers can be anyone), this is a work in progress and is currently an off-chain centralization bottleneck for concentrated Dapps.
+
+#### Centralization Bottlenecks for distributed L1 Dapps:
+
+1. Reliance on off-chain API services. This is the only centralization bottleneck for distributed L1 Dapps; similarly to batchers, new innovations are improving this. For example, Koios is more decentralized than Blockfrost.
+
+#### We can therefore extract the following conclusions:
+
+- Concentrated L1 Dapps have centralization bottlenecks both in their on-chain design and their off-chain design.
+
+- Distributed L1 Dapps only have a centralization bottleneck in their off-chain design.
+
+This means that distributed L1 Dapps are better positioned to naturally grow more decentralized as the off-chain services become more decentralized.
+
+## Path to Active
+It is already possible to use beacon tokens and create distributed L1 Dapps. No updates to Cardano are necessary.
+
+## Copyright
+[CC-BY-4.0](https://creativecommons.org/licenses/by/4.0/legalcode)