As I mentioned in my post showing my interest in oDAO membership, the community hasn’t created clearly defined expectations for the oDAO’s security model. Because the oDAO is a security feature of the protocol, its compensation is directly tied to this security in the same way that, under PoW, block rewards are part of the overall security of Ethereum.
Lately, there’s been a lot of discussion of inflation changes, likely sparked in part by my own writings on this subject where I argue for a more dynamic inflation model. While I make my stance clear on inflation in that article, I want to discuss the oDAO allocation in a more detail because I believe we should only make protocol changes after sufficient analysis and discussion of the security implications.
First, some numbers for context:
- 135,000 of the approximately 900,000 RPL created annually are allocated to the oDAO
- With a fairly high ~75 gwei gas average, this translates to roughly 8,761 RPL per oDAO member per year
- In USD prices, that’s about $150k/yr per oDAO member at today’s RPL price
- Based on a generous estimate of 5 hrs/wk of admin time per member, this compensation outweighs even a high level sysadmin compensation by ~70%
Second, some questions:
- Is a sysadmin salary an appropriate framework for compensation comparison?
- Since the RP network “secures” ETH and ETH/RPL floats, can we consider oDAO compensation as a function of ETH prices instead of RPL (even if they’re paid in RPL)?
- Most importantly, how much oDAO security is enough?
Compared to the views expressed in the writing I linked above, I’ve evolved my thinking on oDAO compensation based on this mental framework of security. I now think it’s crucial that we discuss the minimum level of security we desire from oDAO compensation and target this level consciously after factoring in their gas and admin expenses.
For example, if we think 8 of the 14 members could be bribed with just three years of compensation, then the cost of such an attack is a measly ~1500 ETH at today’s RPL/ETH prices! Such a low cost to attack a ~200k ETH market cap coin underscores the hefty trust required in the oDAO members. Notably, this figure does not change if we increase the number of oDAO members since inflation is allocated equally to all its members – a bigger oDAO only makes it more difficult to coordinate such an attack.
Ultimately, we need to decide as a community what level of security we want to achieve from oDAO compensation (if any) because, right now, we aren’t achieving very much. From a pure security perspective, my previous suggestion of an ~80% reduction in compensation may have been overzealous, though perhaps if we’re relying on trust and other intangible factors so heavily, maybe it’s more honest. I do think it’s unlikely that an oDAO bribery attack would succeed, especially given that holding the members’ reputation and RPL holdings at stake makes them more likely to profit more from the protocol’s future success than immediate failure, but let’s be careful and deliberate here.
TL;DR: oDAO compensation factors into security for the protocol. How much security do we want to achieve from this compensation?