The Vulnerable Nature of Decentralized Governance in DeFi

Maya Dotan; Aviv Yaish; Hsin Chu Yin; Eytan Tsytkin; Aviv Zohar

doi:10.1145/3605768.3623539

The Vulnerable Nature of Decentralized Governance in DeFi

Maya Dotan, Aviv Yaish, Hsin Chu Yin, Eytan Tsytkin, Aviv Zohar

The Rachel and Selim Benin School of Engineering and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

7 Scopus citations

Abstract

Decentralized Finance (DeFi) platforms are often governed by Decentralized Autonomous Organizations (DAOs) which are implemented via governance protocols. Governance tokens are distributed to users of the platform, granting them voting rights in the platform's governance protocol.Many DeFi platforms have already been subject to attacks resulting in the loss of millions of dollars in user funds. In this paper we show that governance tokens are often not used as intended and may be harmful to the security of DeFi platforms. We show that (1) users often do not use governance tokens to vote, (2) that voting rates are negatively correlated to gas prices, (3) voting is very centralized. We explore vulnerabilities in the design of DeFi platform's governance protocols and analyze different governance attacks, focusing on the transferable nature of voting rights via governance tokens. Following the movement and holdings of governance tokens, we show they are often used to perform a single action and then sold off. We present evidence of DeFi platforms using other platforms' governance protocols to promote their own agenda at the expense of the host platform.

Original language	English
Title of host publication	DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security
Publisher	Association for Computing Machinery, Inc
Pages	25-31
Number of pages	7
ISBN (Electronic)	9798400702617
DOIs	https://doi.org/10.1145/3605768.3623539
State	Published - 30 Nov 2023
Event	2023 Workshop on Decentralized Finance and Security, DeFi 2023 - Copenhagen, Denmark Duration: 30 Nov 2023 → …

Publication series

Name	DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security

Conference

Conference	2023 Workshop on Decentralized Finance and Security, DeFi 2023
Country/Territory	Denmark
City	Copenhagen
Period	30/11/23 → …

Bibliographical note

Publisher Copyright:
© 2023 Owner/Author.

Keywords

blockchains
decentralized finance
governance

Access to Document

10.1145/3605768.3623539

Cite this

Dotan, M., Yaish, A., Yin, H. C., Tsytkin, E., & Zohar, A. (2023). The Vulnerable Nature of Decentralized Governance in DeFi. In DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security (pp. 25-31). (DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security). Association for Computing Machinery, Inc. https://doi.org/10.1145/3605768.3623539

@inproceedings{00dd5acc2bea449b85cfea1d5c5240e7,

title = "The Vulnerable Nature of Decentralized Governance in DeFi",

abstract = "Decentralized Finance (DeFi) platforms are often governed by Decentralized Autonomous Organizations (DAOs) which are implemented via governance protocols. Governance tokens are distributed to users of the platform, granting them voting rights in the platform's governance protocol.Many DeFi platforms have already been subject to attacks resulting in the loss of millions of dollars in user funds. In this paper we show that governance tokens are often not used as intended and may be harmful to the security of DeFi platforms. We show that (1) users often do not use governance tokens to vote, (2) that voting rates are negatively correlated to gas prices, (3) voting is very centralized. We explore vulnerabilities in the design of DeFi platform's governance protocols and analyze different governance attacks, focusing on the transferable nature of voting rights via governance tokens. Following the movement and holdings of governance tokens, we show they are often used to perform a single action and then sold off. We present evidence of DeFi platforms using other platforms' governance protocols to promote their own agenda at the expense of the host platform.",

keywords = "blockchains, decentralized finance, governance",

author = "Maya Dotan and Aviv Yaish and Yin, {Hsin Chu} and Eytan Tsytkin and Aviv Zohar",

note = "Publisher Copyright: {\textcopyright} 2023 Owner/Author.; 2023 Workshop on Decentralized Finance and Security, DeFi 2023 ; Conference date: 30-11-2023",

year = "2023",

month = nov,

day = "30",

doi = "10.1145/3605768.3623539",

language = "אנגלית",

series = "DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security",

publisher = "Association for Computing Machinery, Inc",

pages = "25--31",

booktitle = "DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security",

}

Dotan, M, Yaish, A, Yin, HC, Tsytkin, E & Zohar, A 2023, The Vulnerable Nature of Decentralized Governance in DeFi. in DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security. DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security, Association for Computing Machinery, Inc, pp. 25-31, 2023 Workshop on Decentralized Finance and Security, DeFi 2023, Copenhagen, Denmark, 30/11/23. https://doi.org/10.1145/3605768.3623539

The Vulnerable Nature of Decentralized Governance in DeFi. / Dotan, Maya; Yaish, Aviv; Yin, Hsin Chu et al.
DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security. Association for Computing Machinery, Inc, 2023. p. 25-31 (DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - The Vulnerable Nature of Decentralized Governance in DeFi

AU - Dotan, Maya

AU - Yaish, Aviv

AU - Yin, Hsin Chu

AU - Tsytkin, Eytan

AU - Zohar, Aviv

PY - 2023/11/30

Y1 - 2023/11/30

N2 - Decentralized Finance (DeFi) platforms are often governed by Decentralized Autonomous Organizations (DAOs) which are implemented via governance protocols. Governance tokens are distributed to users of the platform, granting them voting rights in the platform's governance protocol.Many DeFi platforms have already been subject to attacks resulting in the loss of millions of dollars in user funds. In this paper we show that governance tokens are often not used as intended and may be harmful to the security of DeFi platforms. We show that (1) users often do not use governance tokens to vote, (2) that voting rates are negatively correlated to gas prices, (3) voting is very centralized. We explore vulnerabilities in the design of DeFi platform's governance protocols and analyze different governance attacks, focusing on the transferable nature of voting rights via governance tokens. Following the movement and holdings of governance tokens, we show they are often used to perform a single action and then sold off. We present evidence of DeFi platforms using other platforms' governance protocols to promote their own agenda at the expense of the host platform.

AB - Decentralized Finance (DeFi) platforms are often governed by Decentralized Autonomous Organizations (DAOs) which are implemented via governance protocols. Governance tokens are distributed to users of the platform, granting them voting rights in the platform's governance protocol.Many DeFi platforms have already been subject to attacks resulting in the loss of millions of dollars in user funds. In this paper we show that governance tokens are often not used as intended and may be harmful to the security of DeFi platforms. We show that (1) users often do not use governance tokens to vote, (2) that voting rates are negatively correlated to gas prices, (3) voting is very centralized. We explore vulnerabilities in the design of DeFi platform's governance protocols and analyze different governance attacks, focusing on the transferable nature of voting rights via governance tokens. Following the movement and holdings of governance tokens, we show they are often used to perform a single action and then sold off. We present evidence of DeFi platforms using other platforms' governance protocols to promote their own agenda at the expense of the host platform.

KW - blockchains

KW - decentralized finance

KW - governance

UR - http://www.scopus.com/inward/record.url?scp=85180125651&partnerID=8YFLogxK

U2 - 10.1145/3605768.3623539

DO - 10.1145/3605768.3623539

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:85180125651

T3 - DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security

SP - 25

EP - 31

BT - DeFi 2023 - Proceedings of the 2023 Workshop on Decentralized Finance and Security

PB - Association for Computing Machinery, Inc

T2 - 2023 Workshop on Decentralized Finance and Security, DeFi 2023

Y2 - 30 November 2023

ER -

The Vulnerable Nature of Decentralized Governance in DeFi

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this