AIP: Support RIP-7212 for Account Abstraction Wallets

Arbitrum · April 19, 2024, 5:04am

Constitutional proposal

Abstract

This proposal adopts RIP-7212 (Rollup Improvement Proposal), a precompile for verifying the secp256r1 curve on Arbitrum One and Arbitrum Nova. Other major L2s have committed to adopting RIP-7212. Adding support for this precompile would enable account abstraction wallets to cheaply verify a type of signature widely used in passkeys and secure enclaves.

Motivation

Wallet security is one of the most prominent pain points for crypto users today. Adopting RIP-7212 will reduce the costs of using passkey-based wallets on Arbitrum One and Nova, making them more feasible for everyday use and enabling dApp developers and protocols to offer their users improved UX.

Passkey-based wallets offer a better level of security than a typical EOA and seamless cross-device support. Specifically, adding this precompile will reduce the costs of verifying the secp256r1 curve for account abstraction wallets. Passkeys offer a solution that removes the need for personally storing a private key. They leverage WebAuthn, a global standard for passwordless authentication used by Google, Facebook, Microsoft, and all major web browsers. The private key generated when creating a passkey can be encrypted and then stored in the iCloud Keychain (or the Android Keystore for Android devices). The decryption of the private keys happens in a specialized module located in every iPhone (and other smartphones) called the Secure Enclave. The Secure Enclave ensures a user’s private key can never leave the device, transforming a smartphone into a hardware wallet. Users can authorize transactions with biometric features like Touch ID or Face ID when using passkey-based wallets for key management. These qualities add flexibility and significantly improve UX while maintaining high security.

Ethereum currently has a precompile for the secp25k1 curve, which all EOA wallets use as their signature scheme. Account abstraction wallets can use alternative signature schemes, such as the one that passkeys utilize: secp256r1. Without a precompile, verifying this signature onchain is extremely expensive. Adding support for RIP-7212 would decrease the costs of verifying the secp256r1 curve by 99% when compared to current implementations. This makes implementing passkey-based wallets feasible for everyday use. Many wallets, and notably, apps using embedded wallets, have been requesting this feature for over a year.

Rationale

This proposal is aligned with the Arbitrum community’s mission and values as per the Constitution:

Ethereum-Aligned: RIP-7212 is the first Rollup Improvement Proposal adopted by the broader Ethereum ecosystem. The RIP stakeholders coordinate with Ethereum Core Devs to ensure Ethereum will continue to be compatible with the upgrade.

Accessibility: Many users who are not crypto-native will refuse to write down a seed phrase or buy a dedicated hardware wallet. While options exist to get around those pain points, this upgrade empowers account abstraction wallets to provide high-level security without UX tradeoffs.

Secure: Passkeys and secure enclaves offer hardware-level security since a user’s private key can never leave the device. This is a great alternative to EOAs that does not compromise on usability.

Inclusivity: RIP-7212 was discussed publicly among all major L2s before being adopted. The codebase is open-source, and anyone can implement the upgrade.

Key Terms

RIP (Rollup Improvement Proposal): A process to establish optional norms and standards for L2s to extend the EVM and related tooling while limiting conflicts with the L1 EVM and preventing a proliferation of mutually incompatible standards among L2s.
Precompile: Predefined smart contracts with special addresses that provide specific functionality executed not at the EVM bytecode level but natively by the client.

Specifications

The specifications of RIP-7212, including test cases, can be found in the RIP repository. If approved, Arbitrum One will use this specification as the reference for implementation.

The Ethereum Magicians Forum discusses design decisions, iterations, and the transformation of the proposal from an EIP (Ethereum Improvement Proposal) to a RIP.

Steps to Implement

If the Arbitrum DAO approves the AIP, the path would consist of:

Discussion of the proposal on the forum and governance call(s)
A vote on Snapshot to enable RIP-7212 on Arbitrum Sepolia
Sufficient time for testing on a public testnet that emulates production environments
An onchain vote to deploy the upgrade on Arbitrum One and Arbitrum Nova

Timeline

This proposal will be included in the vote to upgrade to the next version of ArbOS along with Stylus, which will move to a Snapshot vote once it is production-ready.

jengajojo · April 19, 2024, 8:59am

Thanks for alerting the community about this RIP. In a separate post, the suggestion is to upgrade One and Nova to BOLD AIP: BOLD - permissionless validation for Arbitrum , if that is the case, can this upgrade be included in the BOLD package?

noam · April 19, 2024, 2:59pm

We’re really excited to support this!

yoavw · April 19, 2024, 3:41pm

I support this RIP. Excited to see it taking off!

ITUblockchain · April 20, 2024, 12:11am

It’s very encouraging to see RIP-7212 being embraced by the Arbitrum ecosystem. As delegates, we support this proposal, which is also backed by ecosystems like Polygon, Optimism, and zkSync. Thank you for your efforts, Doğan and @ulerdogan (our guys) <3

ismailemin · April 20, 2024, 12:46am

It’s great to see that RIP-7212 has been adopted by all rollups. LFG!!

z0r0z · April 20, 2024, 10:04am

This seems like a positive trend in L2s progressively enshrining discrete efficiency features in anticipation of their integration into L1. RIP-7212 expands the toolkit around signature verifications. I would therefore support this proposal as a developer looking for more ways to abstract chain interactions on Arbitrum.

arash.okx · April 22, 2024, 2:11am

+1 As a wallet provider we definitely support this to give our users an accessible path to easy onboarding!

Arbitrum · April 29, 2024, 7:34am

Hey everyone, a reminder that we’ll be hosting a short governance call later today (Monday, 29 April) at 14:30 UTC to walkthrough this proposal, and answer questions if any.

Link to join: https://meet.google.com/jym-zozz-kwf

cliffton.eth · April 30, 2024, 6:08am

Hey everyone, here’s the recording of the governance call - Gov Call for RIP7212 and Nova Fee Router proposals (2024-04-29 22:35 GMT+8) - Google Drive

marc · April 30, 2024, 11:18am

+1 from our side as both from a smart wallet builder perspective and AA Infra provider. We support this RIP.

cp0x · April 30, 2024, 1:59pm

An interesting proposal, but I would not mix different solutions into one update, given that voting on them could theoretically have different results.

cliffton.eth · May 2, 2024, 4:12am

Hey @jengajojo , the goal is to have individual forum posts (DONE) and temperature checks for each change.

If there is strong consensus from the DAO to adopt all 4 upgrades and changes at the , then the plan as of now is to:

Bundle Stylus, RIP-7212, and the Nova Fee Router changes into one ArbOS v30 upgrade onchain AIP on Tally.
Have a separate onchain AIP for BOLD.

If there are varying results on Stylus, RIP-7212 and the Nova Fee Router temperature checks, then we will adjust the bundling accordingly and only include those strong support into the onchain ArbOS v30 AIP.

Topic		Replies	Views
AIP-2: Activate support for account abstraction endpoint on One and Nova Finalized AIPs	20	5605	October 16, 2023
Proposal [Non-Constitutional]: Defending Open Source: A United Stand for Developer Rights and Software Freedom Proposals	51	1608	May 4, 2024
Proposal: AIP-1.1 - Lockup, Budget, Transparency Finalized AIPs	89	21551	July 11, 2023
[Draft] Non-Constitutional AIP: Continuous Ecosystem Security Provision Proposals	2	3098	November 5, 2023
TorWallet <> Arbitrium Strategic Collaboration General	0	324	February 16, 2024