Solana, as an open-source network, is a collective effort by a community of developers from around the world to build a global state machine that can process thousands of transactions per second with sub-second confirmation times. Anyone can launch new tooling or protocols that find new uses for the Solana network and inspire projects, businesses, and even entire industries.
It’s important to celebrate the work these independent tools and protocols do to improve decentralization, immutability, and sustainability. It makes them safer, more secure, increases developer and user confidence, and paves the way for institutional adoption. Metaplex’s announcement today about Token Metadata, the on-chain program that is used to build, manage, and update NFTs on Solana, is just the latest example of a protocol embracing these values.
One of the best parts of open-source software is the ability for anyone, anywhere in the world, to define the future of the protocol. This culture of open source development has made crypto what it is today; however the industry still struggles with sustainable revenue models that don’t rely on token sales or outlandish capital raises. As open source, non-monetizable tooling matures, the hope is that more protocols will look to donation and neutral fee-supported models to achieve this sustainability.
Security through decentralization
When people in web3 talk about decentralization, they’re usually referring to the underlying infrastructure of a layer 1 or layer 2 network — the number of validators, the Nakamoto coefficient, and so on. But decentralization should also be strongly considered for the infrastructure protocols built on top of blockchains.
One of the best and simplest ways to decentralize a protocol is through the use of multi-signature security, with tools like Squads. Multisigs require authorization from multiple, independent wallets in order to perform actions like transfer funds, or upgrade an on-chain program — similar to a launch key for a missile that must be turned at the same time from multiple locations. The chance that any one bad actor (or hacker) can take control goes down significantly when a project uses multisigs.
Metaplex announced they’re taking this a step further, and will be moving towards program immutability. In the interim, Metaplex will be handing over control of Token Metadata to a number of independent security firms, forming a multisig which will govern Token Metadata. When they take this step, which Metaplex has committed to doing in the next 18 months, Token Metadata will not be changed without a quorum of entities on the multisig agreeing to those changes — decentralizing the control of this important infrastructure tool while an extensive security review is conducted.
Immutability and verification
The next level beyond securing the upgrade authority is to formally verify a program, and then lock (freeze) the program in its current state, forever. Formal verification is a process of mathematically proving a program’s instruction set can only do what is intended, as defined by the specification — which brings a greater sense of security to the use of a program and ensures it remains a public good for years, and even decades, to come.
Once programs are in a state where their core functions have been determined, and the code has been sufficiently audited, projects can move towards immutability. Immutability involves restricting the upgrade authority of a program and burning the upgrade keys, effectively freezing the program in its current state on the blockchain. Immutability, after extensive audits and threat analysis has been performed, is the gold standard for on-chain program security.
Metaplex is taking the first step towards immutability with these recent changes, and the hope is that more protocols move to immutability after sufficient battletesting on mainnet.
Building financially sustainable infrastructure
To date, DeFi protocols are largely the only class of infrastructure protocols that have achieved ways to develop sustainable public goods for the long-term, usually through tokens, or percent fees generated by the nature of the protocol’s construction.
Sustainability can come in many forms. Linux has achieved sustainability by becoming fundamental to the very fabric of the internet, and as such receives substantial donations from companies that depend upon it. In web3, this sustainability can take the form of ‘endowment’ grants — grants substantial enough that earned staking rewards are sufficient to support the protocol’s long-term development. However, non-DeFi protocols are beginning to explore a third option, a fixed-fee model.
In order for a fixed-fee model to work, the fees must be credibly neutral, and apply evenly to all users of a piece of infrastructure. At its simplest form, this is the United States Postal Service. It costs exactly the same amount to send a letter anywhere in the United States, regardless of if that letter is a certified check for $1m, or a letter from a friend.
Metaplex’s neutral and non-discriminatory fees will help ensure the sustainability of Token Metadata. These fees will also go to support the long list of open-source tooling developed by the Metaplex Foundation, which is not subject to fees.
I expect to see more diversity to fee models beyond token sales with the upcoming implementation of Token-2022, which will give developers even more options for building sustainable public goods.