Paper 2023/1575

SoK: Web3 Recovery Mechanisms

Panagiotis Chatzigiannis, Visa (United States)
Konstantinos Chalkias, Mysten Labs
Aniket Kate, Purdue University, Supra Research
Easwar Vivek Mangipudi, Supra Research
Mohsen Minaei, Visa (United States)
Mainack Mondal, IIT Kharagpur
Abstract

Account recovery enables users to regain access to their accounts when they lose their authentication credentials. While account recovery is well established and extensively studied in the Web2 (traditional web) context, Web3 account recovery presents unique challenges. In Web3, accounts rely on a (cryptographically secure) private-public key pair as their credential, which is not expected to be shared with a single entity like a server owing to security concerns. This makes account recovery in the Web3 world distinct from the Web2 landscape, often proving to be challenging or even impossible. As account recovery has proven crucial for Web2 authenticated systems, various solutions have emerged to address account recovery in the Web3 blockchain ecosystem in order to make it more friendly and accessible to everyday users, without "punishing" users if they make honest mistakes. This study systematically examines existing account recovery solutions within the blockchain realm, delving into their workflows, underlying cryptographic mechanisms, and distinct characteristics. After highlighting the trilemma between usability, security, and availability encountered in the Web3 recovery setting, we systematize the existing recovery mechanisms across several axes which showcase those tradeoffs. Based on our findings, we provide a number of insights and future research directions in this field.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Preprint.
Keywords
recoveryblockchainweb3smart contracts
Contact author(s)
pchatzig @ visa com
kostas @ mystenlabs com
aniket @ purdue edu
e mangipudi @ supraoracles com
mominaei @ visa com
mainack @ cse iitkgp ac in
History
2023-10-13: approved
2023-10-12: received
See all versions
Short URL
https://ia.cr/2023/1575
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2023/1575,
      author = {Panagiotis Chatzigiannis and Konstantinos Chalkias and Aniket Kate and Easwar Vivek Mangipudi and Mohsen Minaei and Mainack Mondal},
      title = {{SoK}: Web3 Recovery Mechanisms},
      howpublished = {Cryptology {ePrint} Archive, Paper 2023/1575},
      year = {2023},
      url = {https://eprint.iacr.org/2023/1575}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.