From NFT1.0 to NFT2.0: Soulbound Tokens(SBTs), NFT Anti-theft, NFT Lease and NFT Mortgage Lending Contract Design Mechanism4.2

中文版：

https://mirror.xyz/5660.eth/I99gut-t6POHiY2kp4uQoqJuLaOLqJEHBNagQtCBsME

ERC721QS：Make NFT Bigger, Make Web3 Bigger

For Jessie, who was very sad about her NFT being stolen. So, we conducted in-depth research to prevent such things. At the same time, with our in-depth research on ERC721QS and the inspiration from the latest papers of E. Glen Weyl, Puja Ohlhaver and Vitalik Buterin, we found that its application scenarios is greatly beyond our imagination and even can solve the difficult problems in Web3 industry. Mr. FAN and 0007.eth also provide us with inspiration.We are very grateful to them!

Advantages

Make NFT holders safer ,protect their interests, and retrieve losses in case of account theft.

Reduce hackers’ benefits, so that they can return to the normal track and work with us to promote faster progress in the industry.

New NFT projects can adopt this mechanism to reduce the risk of NFT theft and improve own security.

Previous NFT projects can consider upgrading the contract to reduce user’s insecurity (recommended).

Applicable to NFT leasing scenarios.

Find the soul of Web3 and solve the problem of SBT design mechanism.

Core Problems Solved

Hackers no longer benefit from theft.

Not only to prevent NFT theft, but also to retrieve NFT in a safe and harmless way when NFT may be stolen.

Take NFT lease support in consideration in contract.

Propose the design mechanism of SBT.

NFT Anti-theft Contract ：ERC721QS-1P

ERC721QS-1 is our basic version, but it is not considered optimal and we will not show it anymore. Later, we made further improvements and proposed the ERC721QS-1P.

Role or Address Settings

Ward: The holder of NFT, generally the wallet address of NFT. When the Guardian address and quantity are empty, the Ward can transfer NFT or set the Guardian address and quantity. However, when the Guardian address already exists in NFT, the Ward cannot modify the Guardian address and quantity without the permission of the Guardian, and cannot transfer NFT.

Guardian: The NFT Guardian is generally the NFT owner’s cold wallet or trusted address. The Guardian can remove its Guardian identity by itself, or when the NFT Ward address is abnormal, call the NFT smart contract, burn the original NFT, and re-mint the NFT with the same Token ID to the specified address.

Possible Operations Related to the Two Roles

Mint NFT: Operated by the Ward.

Transfer NFT: Operated by the Ward, but can only be carried out when NFT has no Guardian. Before NFT transfers, the smart contract will verify whether the NFT has a Guardian address. If so, it will refuse to initiate the transfer; If not, the transfer can be operated.

Set Guardian: Set by the Ward. Please note that the Ward can only set the address and quantity of the Guardian when the Guardian address is empty. When NFT already has a Guardian, the Ward cannot change the address and quantity of the Guardian. The Ward can only set the two when the NFT does not have any Guardian(s). When there is a Guardian, the Ward cannot transfer NFT.

Remove Guardian: Operated by the Guardian. When the Ward address wants to transfer NFT, all Guardians need to remove their Guardian identities.

Burn the original NFT in the Ward address and re-mint a new NFT and transfer it to the specified address( the old and new NFT has the same Token ID) : Operated by the Guardian. After the Ward has set the Guardian, when the private key of the Ward address is unfortunately disclosed or lost, there will be no loss to anyone due to NFT transfer because the original NFT cannot be transferred by the Ward at this time. At this time, the Guardian calls the smart contract to burn the original NFT in the Ward address and re-mint a new NFT ,and then the new one will be transferred to the specified address. The old and new NFT has the same Token ID , the new NFT’s metadata link points to that of the original one. Therefore, the new NFT has the same properties as the original one. When a new NFT is generated, the Guardian of the original NFT may lose its value, and the Ward of the new NFT can reset one or more Guardians (or retain the original Guardian setting when a new NFT is generated).

After an NFT sets the Guardian address, it can generate several scenarios.

The Ward has authorized an unsafe smart contract or the private key has been stolen by hackers: At this time, the NFT has a Guardian. When the hacker requests to transfer the NFT in the Ward address, the action will be rejected by the smart contract, and the hacker cannot steal the NFT. When the NFT owner realizes that his/her authorization is dangerous or his/her private key has been disclosed, his/her has time to cancel the authorization of the unsafe smart contract or directly burn the original NFT through the Guardian address, and generates a new one with the same Token ID.

Transfer NFT: The Guardian needs to remove its Guardian identity. When the address and quantity of NFT Guardian are empty, the Ward can transfer NFT.

Supplement

ENS has designed a re-registration mechanism for expired ENS using a similar approach. We also found inspiration from it and improved the ERC721QS-1P.Below is an example.

https://etherscan.io/tx/0xf5a4f4039c7e5690f220d2752fe83efd5ca37e61137b5334ea968e0c859a8483

NFT Anti-theft and NFT Lease Contract: ERC721QS-2

Role or Address settings

Ward: The Ward address. The holder of NFT, generally the wallet address of NFT. When the Guardian address and quantity are empty, the Ward can transfer NFT, or set the Guardian address and quantity. When the Guardian address already exists in NFT, the Ward cannot modify the Guardian address and quantity without the permission of the Guardian, and cannot transfer NFT.

Guardian: The Guardian address. The NFT Guardian is generally the NFT holder’s cold wallet or trusted address. The Guardian can remove its Guardian identity by itself, or call the NFT smart contract to transfer the NFT to the specified address after the Ward address where the NFT is located is abnormal.

Possible Operations Related to the Two Roles

Mint NFT: Operated by the Ward.

Transfer NFT:

1. Operated by the Ward, but can only be carried out when NFT has no Guardian. Before NFT transfers, the smart contract will verify whether the NFT has a Guardian. If so, it will refuse to initiate the transfer; If not, the transfer can be operated.

2. Operated by the Guardian. When the NFT has a Guardian, with the permission of all the Guardian(s), the NFT can be transferred to a specific address.

Set Guardian: Set by the Ward. Please note that the Ward can only set the address and quantity of the Guardian when the Guardian address is empty. When NFT already has a Guardian, the Ward cannot change the address and quantity of the Guardian. The Ward can only set the two when the NFT does not have any Guardian(s). When there is a Guardian, the Ward cannot transfer NFT.

Remove Guardian: Operated by the Guardian. When the Ward address wants to transfer NFT, all Guardians need to remove their Guardian identity.

Ward address is unavailable, the NFT needs to be transferred: Operated by the Guardian. After the Ward has set the Guardian, when the private key of the Ward address is unfortunately disclosed or lost, there will be no loss to anyone due to NFT transfer because the NFT cannot be transferred by the Ward then. At this time, the Guardian calls the smart contract to transfer the NFT to a new address.

After an NFT sets the Guardian address, it can generate several scenarios.

The Ward has authorized an unsafe smart contract or the private key has been stolen by hackers: At this time, the NFT has a Guardian. When the hacker requests to transfer the NFT at the Ward address, the action will be rejected by the smart contract, and the hacker cannot steal the NFT. When user realizes that the authorization is dangerous or the private key has been disclosed, the user has time to cancel  the authorization of the unsafe smart contract or directly transfer the NFT to a specific new safe address through the Guardian.

Transfer NFT (especially if it needs to be transferred to others, such as selling on OpenSea): The Guardian address needs to remove  its Guardian identity. When the address and quantity of NFT Guardian are empty, the Ward can transfer NFT.

An analogy: When NFT needs to be transferred to others or sold, we consider that NFT needs to form a new family like a child grows up, so the current Guardian should let go.

Further Improvements:

When the Ward sets the Guardian, it can set the validity period or expiration time of the Guardian. After the expiration, the Guardian setting can be automatically removed, and the Ward then can transfer NFT. It is a way to retrieve NFT due to problems such as the loss of the Guardian private key.

When part of Guardians agrees, the NFT can be transferred. If 4 Guardians are set, the NFT can be transferred with the permission of 3 of them.

NFT lease and NFT mortgage lending

This mechanism opens a channel for the opening of NFT lease market. By separating the holding right from the transfer right, the actual owner can set several Guardian addresses to control the transfer right. When will be a lease, the actual owner can transfer the NFT to the lessee address (Further, the Guardian can set the transfer time interval, for example 3 months. On this occasion, within 3 months, the Guardian cannot call the smart contract to transfer the NFT in order to protect the interests of the lessee). At the same time, in order to combine with potential NFT lease platform cases in the future, the Guardian roles can be granted to individuals, smart contracts, or a combination of both.

At the same time, it also proposes a new NFT mortgage lending model.

Supplements

Guardian address setting is very flexible, which makes it possible for the contract of different application directions and scenarios, and is also compatible with some future NFT application scenarios. We have more casual article, named “100 Ways to Play with Guardian Address”, which will be continuously improved for reference. For example, we think of a very interesting scenario: if you want to become a diamond hand of a certain NFT, you can set an expiration time for the Guardian and set some special addresses. Within the expiration, you will not sell your NFT due to the psychological pressure caused by market fluctuations.

https://mirror.xyz/5660.eth/0TKe6Ere091ZuGWN1QEzyB6FFyjun42c0BYVSLrsHWQ

Without a Guardian, the operation of NFT following ERC721QS contract is no different from the current ordinary NFT operation.

Setting a Guardian does increase the user’s capital cost and operation steps. Thus, this needs to be weighed by the holder. For example, for high-value NFT, if the holder prefers to hold it for a long time (multiple signatures is also a way to store NFT, but it is less operable, more unfriendly to users, and cannot meet some NFT use scenarios, such as NFT lease, NFT mortgage lending, etc.), the user can set a Guardian. For low-value NFT, user may not be willing to set a Guardian. However, we cannot judge the NFT value to a holder only from the price. Perhaps an NFT without market value is also very important to the holder, such as the NFT made of photos or videos of important moments in his/her life. The holder can also set a Guardian for this kind of NFT. At the same time, since NFT is in a static state most of the time, the transfer frequency is not high. Therefore, when NFT needs to be transferred, the Guardian identity setting can be removed. With the significant improvement of asset security, the reduction of operation convenience has little impact.

A new type of fraud may occur, that is, an unethical Guardian makes an offline transaction with the purchaser, transfers the NFT to the purchaser’s address, and transfers it out after receiving the payment, thus achieving the purpose of fraud.

Solution: In the perspective of contract or NFT smart contract, we can consider making a clear distinction and tip on the display for NFTs with and without Guardian settings. For industry participants, such as NFT viewing platforms or NFT trade platforms, the above two can be divided into different categories for display and operation. In addition, the main way of NFT transaction is still through NFT trade platforms, and transaction completed on the platforms will not occur in such cases of fraud. We believe that offline transaction has higher trust requirements for both parties, and it is more difficult for fraudsters to obtain illegal income in this way. However, out of the interests of users, we need to take fraud prevention into our consideration.

The contract is usually recommended to be written into NFT smart contract, and also in upgrading issued NFT smart contract.

Other Proposals (but not good enough at present)

Mortgage Appeal: Once the holder’s NFT is stolen, he/she can file a theft appeal to an organization (such as the DAO set up by the project party), but it requires a certain amount of mortgage deposit. If the organization affirms that the appeal of the original holder is successful, the holder will take back his/her own NFT or obtain a new NFT with same properties, and refund the deposit (the organization may charge a fee for the services of the appellant to incentivize those involved in judging the appeal). If the organization affirms that the appeal fails, the holder’s deposit will be confiscated.

Blockchain Police DAO or Judge Dao: If Web3 forms such a credible organization in the future, it can connect the NFT smart contract to the Oracle of the organization, and the organization will determine whether there is theft, restrict and treat the stolen assets to a certain extent.

Challenger Research Opinions

Blockchain is decentralized, but not de-justified. Maintaining people’s security needs is the key to promoting more people to participate and use the blockchain.

Web2 governs hackers through administrative and legal means, but often has poor results at present. Web3 actually lacks an effective way to govern hackers, but we can reduce the benefits of hackers. In fact, hackers form a very strong security team and development organization. We can attract them to do things that are beneficial to the blockchain industry, rather than only doing things that harm the industry interests through reward plans or flexible recruitment methods that satisfy them.

After this contract released, there were many technical discussions. We hope you will not only consider issues from the perspective of technology, but also switch identities and consider the necessity of this set of contracts from the perspective of different blockchain industry participants.

SBT Design Mechanism: ERC721QS-3

QS-3 is based on the improvement of QS-2. In fact, because the setting of Guardian address is very flexible, the so-called SBT (we prefer to call it identity proof NFT, but it seems that SBT is more widely used, so we won’t distinguish it in detail in QS-3). We only need to make some adjustments to the QS-2 mechanism. Adjustments are as follows:

1. The SBT can be issued with a Guardian role. SBTs of the same series can have the same Guardian. At this time, the Ward can mint NFT, but has no transfer right after mint. Or the Ward doesn’t need to mint SBT, and SBT is distributed directly by Guardian.

2. The Guardian(s) can together reset a new Guardian (introduce new members, like the expansion of the company’s management), or remove the identity of a Guardian (eliminate a member, such as a member’s death or lack of due diligence).

3. The performance period of different Guardian(s) can be different, and it does not need to start immediately. A Guardian can work in the future (for example, the identity of the new member elected by the parliament has been determined, but has not yet entered the performance cycle).

4. Optional. Turn off the Ward’s transfer permission. That is, even if all Guardian(s) remove their identity by themselves (like the company’s bankruptcy and dissolution), the Ward still cannot transfer the NFT or SBT.

For example, a Harvard bachelor’s degree SBT. When a Harvard student successfully passes the oral defense and graduates, the Guardian of the University transfers the degree SBT with unique code to his/her address, which proves that he/she graduated from the University and obtained his/her bachelor’s degree. He/she can prove that he/she has obtained a bachelor’s degree from Harvard University by verifying the ownership of wallet, which can be used in job hunting, social networking and other scenarios. If the private key of the address is disclosed or lost, the student can apply to the school, and the University Guardian will transfer his/her degree SBT to a new address. If the student is later found to have academic misconduct or acts contrary to the purposes of Harvard University, the University Guardian can also withdraw the degree SBT. For this SBT, students only have the right to use, but not the right of transfer or transaction. Because the value of this degree SBT comes from the endorsement of Harvard University, the University has important rights to its distribution and transfer.

Role or Address Settings

Ward: The holder of SBT (such as a university degree certificate, a company CEO identity certificate, a country President identity certificate, or a credit commitment certificate), generally the wallet address of SBT. When the Guardian address already exists in SBT, the Ward cannot modify the Guardian address and quantity without the permission of the Guardian, and cannot transfer SBT. When the Guardian address and quantity are empty, the Ward can transfer SBT and set the Guardian address and quantity.

Guardian: The Guardian of SBT, generally refers to several addresses of corresponding social organizations or individuals (such as a university, a company board of directors, a country Parliament, a bank, a DAO), or addresses trusted by SBT holders (such as credit guarantors). The Guardian can remove its Guardian identity by itself (e.g., resignation). SBT can be added or removed the Guardian(s) with the permission of a specified number of Guardian(s). The Guardian can call SBT smart contract and transfer the SBT to a specified address .

Possible Operations Related to the Two Roles

Mint SBT: Operated by the Ward. Or the Ward doesn’t need to mint SBT. After the SBT is generated by smart contract, it is directly controlled and distributed by the Guardian.

Transfer SBT:

1. Operated by the Guardian. When the SBT has Guardian(s), with the permission of all or part of the Guardian(s), the SBT can be transferred to a specified address.

2. Operated by the Ward, but can only be carried out when SBT has no Guardian. Before SBT transfers, the smart contract will verify whether the SBT has a Guardian address. If so, it will refuse to initiate the transfer; If not, the transfer can be operated (Optional, can be turned off).

Set Guardian: When the SBT is initially issued, the Guardian is set by the smart contract. Or set by the Ward after the SBT is transferred to the Ward address.

Add or Remove Guardian:

With the permission of a specified number of Guardian(s), SBT can be added or removed Guardian(s).

In addition, different Guardian(s) can have different time period for performing their duties, and it is not necessary to perform their duties at the current timing. A Guardian may perform its duties in the future.

Remove Guardian: Operated by the Guardian by itself.

Ward address is unavailable, the SBT needs to be transferred to new address: Operated by the Guardian. When the private key of the Ward address is unfortunately disclosed or lost, there will be no loss to anyone due to SBT transfer because the SBT cannot be transferred by the Ward at this time (but caution should be taken, there may be the possibility of SBT being used fraudulently). At this time, the Guardian calls the smart contract to transfer the SBT to a new address.

Upgrade SBT

If the Guardian needs to upgrade the original SBT smart contract to issue a new SBT (for example, change the ID card or make the university diploma more artistic). The Guardian does not need to notify the Ward and requires the Ward to perform some complex operations. The Guardian only needs to take a snapshot of the address held by the original SBT, and then issue a new SBT to the Ward. The original SBT can also be retrieved from the Ward address if the Guardian considers necessary. Or do not take it back as a souvenir of the Ward.

Challenger Research Opinion

The more Guardians, the more complex composition of members, the more difficult operation and the higher cost. This is true in design, but it is not worth criticizing because it conforms to sociological theory. For higher-value SBT (for example, “President identity SBT”), the Guardian should be more cautious in transferring the SBT to a specified address, and gas expenditure is also a necessary governance cost to avoid the abuse and excessive issuance of SBT. For low-value SBT, such as the issuance of invitations to an informal party, you can only set one Guardian. If the goal is to reduce operation cost, we can also build it on layer 2 or even layer 3 (this concept was first proposed by Stark Net. Unlike layer 2, layer 3 is more flexible and can only be used for a wide range of or important specific purposes and meet special needs, such as possible privacy needs of SBT in the future). Alternatively, consider a new public blockchain. However, at present, we think that we can study the need to use layer 2, layer 3 or establish a new public blockchain, but it is not urgent. There are two reasons: first, the market demand for SBT has not been fully expanded, and the functional demand for SBT also needs to be further studied; Second, with the implementation of ETH 2.0, the performance of ETH main network has also been improved.

QS-3 gives the Guardian greater authority, which puts forward higher requirements for the governance of Guardian organization itself. This organization can be a parliament, a company, or a newly emerging DAO. The Guardian governance is a problem worthy of in-depth study. There are also many Web3 governance methods being introduced, such as the “Triangle Structure” and “Mutually Assured Destruction Mechanism” proposed by us using Game Theory. The industry can carry out deeper discussion and research in this perspective.

Through further design, under a certain mechanism, the SBT address only with the right of use can also become the Guardian of another SBT. For example, the Guardian, a national citizenship certification authority, grants “citizenship SBT” to citizens, but in the direct presidential election, the addresses holding citizenship SBT can become the voter Guardian. Voters can vote for a presidential candidate (call the smart contract to transfer the “President identity SBT” or “designate President SBT” to a candidate’s address). When a candidate’s address is supported by enough voters, the “President identity SBT” will be automatically transferred to his/her address. After holding the “President identity SBT”, the candidate will unlock a series of relevant permissions by virtue of the “President identity SBT”, such as military command, authorization of nuclear weapons use, etc. (If the SBT may have such rights in the future, you will understand that it is fairly reasonable to make operation of transferring some SBTs to the designated address more complex and cautious.)

For the production and issuance of SBT, we should design a simpler and more convenient way. For example, design a website. When a party initiator wants to make an SBT as his/her party invitation, he/she just needs to log in to the website, connect his/her wallet address, enter the Guardian address, and enter the name, content, and quantity of the SBT to be generated. Then he/she can generate the SBT as wanted. If he/she wants to transfer the SBT to a party participant, he/she can also operate on this website; Or if he/her wants to make some new friends, he/she will remove the Guardian identity and allow SBT to transfer freely. The progressiveness of technology and the popularity of technology are not necessarily linked. The link between the two is usability and convenience.

Enhance Privacy and Security QS-X

In QS-1P, QS-2 and QS-3, the Guardian’s identity is public, and their operation behavior is public too, which may be detrimental to protect the Guardian’s privacy and security. For example, under the pressure of public opinion and power, the Guardian may make choices that do not conform to his/her own wishes. If the Guardian needs privacy protection and security, we can further improve it by adopting technologies such as MPC or Zero-knowledge proof. This can be used in such scenarios as secret ballot and anonymous billionaire club charity fund.

Qs-1 is our basic version, but we don't think it is the best. It is attached below for reference. We hope it can bring you new inspiration.

Supplements

Compared with QS-1P, the design of QS-2 and QS-3 is more in line with real-life examples, and the gas cost is saved in smart contract execution.

It should be noted that in ERC721QS, due to the addition of support for use scenarios such as NFT lease, NFT mortgage lending and SBT, the NFT holder is not necessarily the owner of the NFT ownership, the holder can be the lessee, lender and user.

We note that some EIPs are committed to solving NFT lease problem, but after research, we believe that they do not conform to the practice in real society. For example, one approach is to use the NFT lease smart contract. The owner will pledge the NFT into the lease smart contract address, and then give the lessee user identity. Technically, it works, but it is not in line with the real leaser and lessee relationship. For example, this is equivalent to the tenant signing a lease contract with the landlord (through the smart contract). We can prove the landlord (owner)’s identity through the property certificate and the tenant (user)’s identity through the lease contract. However, we did not give the apartment key to the tenant. The tenant proved that he/she had the right to use the apartment by holding the lease contract to tell everyone that I signed a lease contract and paid the money. The apartment is not in the hands of the landlord or the tenant, but in the hands of a third party (NFT lease smart contract address). This sounds very strange.

Someone has proposed a simple SBT design, that is, using the existing ERC721 contract to generate SBT, but turn off the owner’s transfer right to SBT (but there is no QS-3 design mentioned that the Guardian can transfer the SBT). This design also does not meet some application scenarios in reality. For example, the Harvard University Bachelor’s degree SBT mentioned above. If a Harvard University student is found to have academic misconduct, in theory, the bachelor’s degree should be withdrawn, but the above method is impossible. Therefore, this Harvard University graduate with academic misconduct can still have the Bachelor’s degree SBT and continue to cheat. This will have a negative impact on the reputation of Harvard University.

Research Support：By Challenger Research, Epochs Labs，Web3 技术小组

About Challenger Research (CR)

CR is a loose but united, non-profit organization composed of Web3 industry researchers. The core value of the organization is to challenge people’s cognition of Web3 and release the powerful potential of the Web3 world. Web3 is constantly evolving (not progress, but evolution). CR think that most people’s understanding of Web3 is not accurate and complete at present, and industry researchers need to continuously conduct in-depth research and update the public’s understanding. Its organization name “Challenger” comes from the wrecked US space shuttle “Challenger”. Although Web3’s world exploration is full of failure possibility, CR is still willing to be a pioneer. CR does not deliberately pursue anonymity, but it still will not disclose the organization members, their work and research. New researchers can join CR publicly or anonymously, and we also accept contributions in various forms. CR will conduct some interesting experiments later. For example, when ERC721QS-3 or QS-X contract is adopted, we will generate CR-SBT to verify the researcher’s identity, and determine the researcher’s proposal and qualification to participate in possible meetings.

Temporary contact: 5660.eth

Search 5660.eth on Blockscan Chat and start the conversation

https://chat.blockscan.com/index

Know about our recent experiment projects and more details to be disclosed:

https://linktr.ee/10kuniverse

Attachment: Soundbound Tokens paper participated by Vitalik: “Decentralized Society: Finding Web3's Soul”

English version: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4105763

Chinese version: https://www.panewslab.com/zh/articledetails/1652665746121864.html

From NFT1.0 to NFT2.0: Soulbound Tokens(SBTs), NFT Anti-theft, NFT Lease and NFT Mortgage Lending Contract Design Mechanism4.2

中文版：

https://mirror.xyz/5660.eth/I99gut-t6POHiY2kp4uQoqJuLaOLqJEHBNagQtCBsME

ERC721QS：Make NFT Bigger, Make Web3 Bigger

For Jessie, who was very sad about her NFT being stolen. So, we conducted in-depth research to prevent such things. At the same time, with our in-depth research on ERC721QS and the inspiration from the latest papers of E. Glen Weyl, Puja Ohlhaver and Vitalik Buterin, we found that its application scenarios is greatly beyond our imagination and even can solve the difficult problems in Web3 industry. Mr. FAN and 0007.eth also provide us with inspiration.We are very grateful to them!

Advantages

Make NFT holders safer ,protect their interests, and retrieve losses in case of account theft.

Reduce hackers’ benefits, so that they can return to the normal track and work with us to promote faster progress in the industry.

New NFT projects can adopt this mechanism to reduce the risk of NFT theft and improve own security.

Previous NFT projects can consider upgrading the contract to reduce user’s insecurity (recommended).

Applicable to NFT leasing scenarios.

Find the soul of Web3 and solve the problem of SBT design mechanism.

Core Problems Solved

Hackers no longer benefit from theft.

Not only to prevent NFT theft, but also to retrieve NFT in a safe and harmless way when NFT may be stolen.

Take NFT lease support in consideration in contract.

Propose the design mechanism of SBT.

NFT Anti-theft Contract ：ERC721QS-1P

ERC721QS-1 is our basic version, but it is not considered optimal and we will not show it anymore. Later, we made further improvements and proposed the ERC721QS-1P.

Role or Address Settings

Ward: The holder of NFT, generally the wallet address of NFT. When the Guardian address and quantity are empty, the Ward can transfer NFT or set the Guardian address and quantity. However, when the Guardian address already exists in NFT, the Ward cannot modify the Guardian address and quantity without the permission of the Guardian, and cannot transfer NFT.

Guardian: The NFT Guardian is generally the NFT owner’s cold wallet or trusted address. The Guardian can remove its Guardian identity by itself, or when the NFT Ward address is abnormal, call the NFT smart contract, burn the original NFT, and re-mint the NFT with the same Token ID to the specified address.

Possible Operations Related to the Two Roles

Mint NFT: Operated by the Ward.

Transfer NFT: Operated by the Ward, but can only be carried out when NFT has no Guardian. Before NFT transfers, the smart contract will verify whether the NFT has a Guardian address. If so, it will refuse to initiate the transfer; If not, the transfer can be operated.

Set Guardian: Set by the Ward. Please note that the Ward can only set the address and quantity of the Guardian when the Guardian address is empty. When NFT already has a Guardian, the Ward cannot change the address and quantity of the Guardian. The Ward can only set the two when the NFT does not have any Guardian(s). When there is a Guardian, the Ward cannot transfer NFT.

Remove Guardian: Operated by the Guardian. When the Ward address wants to transfer NFT, all Guardians need to remove their Guardian identities.

Burn the original NFT in the Ward address and re-mint a new NFT and transfer it to the specified address( the old and new NFT has the same Token ID) : Operated by the Guardian. After the Ward has set the Guardian, when the private key of the Ward address is unfortunately disclosed or lost, there will be no loss to anyone due to NFT transfer because the original NFT cannot be transferred by the Ward at this time. At this time, the Guardian calls the smart contract to burn the original NFT in the Ward address and re-mint a new NFT ,and then the new one will be transferred to the specified address. The old and new NFT has the same Token ID , the new NFT’s metadata link points to that of the original one. Therefore, the new NFT has the same properties as the original one. When a new NFT is generated, the Guardian of the original NFT may lose its value, and the Ward of the new NFT can reset one or more Guardians (or retain the original Guardian setting when a new NFT is generated).

After an NFT sets the Guardian address, it can generate several scenarios.

The Ward has authorized an unsafe smart contract or the private key has been stolen by hackers: At this time, the NFT has a Guardian. When the hacker requests to transfer the NFT in the Ward address, the action will be rejected by the smart contract, and the hacker cannot steal the NFT. When the NFT owner realizes that his/her authorization is dangerous or his/her private key has been disclosed, his/her has time to cancel the authorization of the unsafe smart contract or directly burn the original NFT through the Guardian address, and generates a new one with the same Token ID.

Transfer NFT: The Guardian needs to remove its Guardian identity. When the address and quantity of NFT Guardian are empty, the Ward can transfer NFT.

Supplement

ENS has designed a re-registration mechanism for expired ENS using a similar approach. We also found inspiration from it and improved the ERC721QS-1P.Below is an example.

https://etherscan.io/tx/0xf5a4f4039c7e5690f220d2752fe83efd5ca37e61137b5334ea968e0c859a8483

NFT Anti-theft and NFT Lease Contract: ERC721QS-2

Role or Address settings

Ward: The Ward address. The holder of NFT, generally the wallet address of NFT. When the Guardian address and quantity are empty, the Ward can transfer NFT, or set the Guardian address and quantity. When the Guardian address already exists in NFT, the Ward cannot modify the Guardian address and quantity without the permission of the Guardian, and cannot transfer NFT.

Guardian: The Guardian address. The NFT Guardian is generally the NFT holder’s cold wallet or trusted address. The Guardian can remove its Guardian identity by itself, or call the NFT smart contract to transfer the NFT to the specified address after the Ward address where the NFT is located is abnormal.

Possible Operations Related to the Two Roles

Mint NFT: Operated by the Ward.

Transfer NFT:

1. Operated by the Ward, but can only be carried out when NFT has no Guardian. Before NFT transfers, the smart contract will verify whether the NFT has a Guardian. If so, it will refuse to initiate the transfer; If not, the transfer can be operated.

2. Operated by the Guardian. When the NFT has a Guardian, with the permission of all the Guardian(s), the NFT can be transferred to a specific address.

Set Guardian: Set by the Ward. Please note that the Ward can only set the address and quantity of the Guardian when the Guardian address is empty. When NFT already has a Guardian, the Ward cannot change the address and quantity of the Guardian. The Ward can only set the two when the NFT does not have any Guardian(s). When there is a Guardian, the Ward cannot transfer NFT.

Remove Guardian: Operated by the Guardian. When the Ward address wants to transfer NFT, all Guardians need to remove their Guardian identity.

Ward address is unavailable, the NFT needs to be transferred: Operated by the Guardian. After the Ward has set the Guardian, when the private key of the Ward address is unfortunately disclosed or lost, there will be no loss to anyone due to NFT transfer because the NFT cannot be transferred by the Ward then. At this time, the Guardian calls the smart contract to transfer the NFT to a new address.

After an NFT sets the Guardian address, it can generate several scenarios.

The Ward has authorized an unsafe smart contract or the private key has been stolen by hackers: At this time, the NFT has a Guardian. When the hacker requests to transfer the NFT at the Ward address, the action will be rejected by the smart contract, and the hacker cannot steal the NFT. When user realizes that the authorization is dangerous or the private key has been disclosed, the user has time to cancel  the authorization of the unsafe smart contract or directly transfer the NFT to a specific new safe address through the Guardian.

Transfer NFT (especially if it needs to be transferred to others, such as selling on OpenSea): The Guardian address needs to remove  its Guardian identity. When the address and quantity of NFT Guardian are empty, the Ward can transfer NFT.

An analogy: When NFT needs to be transferred to others or sold, we consider that NFT needs to form a new family like a child grows up, so the current Guardian should let go.

Further Improvements:

When the Ward sets the Guardian, it can set the validity period or expiration time of the Guardian. After the expiration, the Guardian setting can be automatically removed, and the Ward then can transfer NFT. It is a way to retrieve NFT due to problems such as the loss of the Guardian private key.

When part of Guardians agrees, the NFT can be transferred. If 4 Guardians are set, the NFT can be transferred with the permission of 3 of them.

NFT lease and NFT mortgage lending

This mechanism opens a channel for the opening of NFT lease market. By separating the holding right from the transfer right, the actual owner can set several Guardian addresses to control the transfer right. When will be a lease, the actual owner can transfer the NFT to the lessee address (Further, the Guardian can set the transfer time interval, for example 3 months. On this occasion, within 3 months, the Guardian cannot call the smart contract to transfer the NFT in order to protect the interests of the lessee). At the same time, in order to combine with potential NFT lease platform cases in the future, the Guardian roles can be granted to individuals, smart contracts, or a combination of both.

At the same time, it also proposes a new NFT mortgage lending model.

Supplements

Guardian address setting is very flexible, which makes it possible for the contract of different application directions and scenarios, and is also compatible with some future NFT application scenarios. We have more casual article, named “100 Ways to Play with Guardian Address”, which will be continuously improved for reference. For example, we think of a very interesting scenario: if you want to become a diamond hand of a certain NFT, you can set an expiration time for the Guardian and set some special addresses. Within the expiration, you will not sell your NFT due to the psychological pressure caused by market fluctuations.

https://mirror.xyz/5660.eth/0TKe6Ere091ZuGWN1QEzyB6FFyjun42c0BYVSLrsHWQ

Without a Guardian, the operation of NFT following ERC721QS contract is no different from the current ordinary NFT operation.

Setting a Guardian does increase the user’s capital cost and operation steps. Thus, this needs to be weighed by the holder. For example, for high-value NFT, if the holder prefers to hold it for a long time (multiple signatures is also a way to store NFT, but it is less operable, more unfriendly to users, and cannot meet some NFT use scenarios, such as NFT lease, NFT mortgage lending, etc.), the user can set a Guardian. For low-value NFT, user may not be willing to set a Guardian. However, we cannot judge the NFT value to a holder only from the price. Perhaps an NFT without market value is also very important to the holder, such as the NFT made of photos or videos of important moments in his/her life. The holder can also set a Guardian for this kind of NFT. At the same time, since NFT is in a static state most of the time, the transfer frequency is not high. Therefore, when NFT needs to be transferred, the Guardian identity setting can be removed. With the significant improvement of asset security, the reduction of operation convenience has little impact.

A new type of fraud may occur, that is, an unethical Guardian makes an offline transaction with the purchaser, transfers the NFT to the purchaser’s address, and transfers it out after receiving the payment, thus achieving the purpose of fraud.

Solution: In the perspective of contract or NFT smart contract, we can consider making a clear distinction and tip on the display for NFTs with and without Guardian settings. For industry participants, such as NFT viewing platforms or NFT trade platforms, the above two can be divided into different categories for display and operation. In addition, the main way of NFT transaction is still through NFT trade platforms, and transaction completed on the platforms will not occur in such cases of fraud. We believe that offline transaction has higher trust requirements for both parties, and it is more difficult for fraudsters to obtain illegal income in this way. However, out of the interests of users, we need to take fraud prevention into our consideration.

The contract is usually recommended to be written into NFT smart contract, and also in upgrading issued NFT smart contract.

Other Proposals (but not good enough at present)

Mortgage Appeal: Once the holder’s NFT is stolen, he/she can file a theft appeal to an organization (such as the DAO set up by the project party), but it requires a certain amount of mortgage deposit. If the organization affirms that the appeal of the original holder is successful, the holder will take back his/her own NFT or obtain a new NFT with same properties, and refund the deposit (the organization may charge a fee for the services of the appellant to incentivize those involved in judging the appeal). If the organization affirms that the appeal fails, the holder’s deposit will be confiscated.

Blockchain Police DAO or Judge Dao: If Web3 forms such a credible organization in the future, it can connect the NFT smart contract to the Oracle of the organization, and the organization will determine whether there is theft, restrict and treat the stolen assets to a certain extent.

Challenger Research Opinions

Blockchain is decentralized, but not de-justified. Maintaining people’s security needs is the key to promoting more people to participate and use the blockchain.

Web2 governs hackers through administrative and legal means, but often has poor results at present. Web3 actually lacks an effective way to govern hackers, but we can reduce the benefits of hackers. In fact, hackers form a very strong security team and development organization. We can attract them to do things that are beneficial to the blockchain industry, rather than only doing things that harm the industry interests through reward plans or flexible recruitment methods that satisfy them.

After this contract released, there were many technical discussions. We hope you will not only consider issues from the perspective of technology, but also switch identities and consider the necessity of this set of contracts from the perspective of different blockchain industry participants.

SBT Design Mechanism: ERC721QS-3

QS-3 is based on the improvement of QS-2. In fact, because the setting of Guardian address is very flexible, the so-called SBT (we prefer to call it identity proof NFT, but it seems that SBT is more widely used, so we won’t distinguish it in detail in QS-3). We only need to make some adjustments to the QS-2 mechanism. Adjustments are as follows:

1. The SBT can be issued with a Guardian role. SBTs of the same series can have the same Guardian. At this time, the Ward can mint NFT, but has no transfer right after mint. Or the Ward doesn’t need to mint SBT, and SBT is distributed directly by Guardian.

2. The Guardian(s) can together reset a new Guardian (introduce new members, like the expansion of the company’s management), or remove the identity of a Guardian (eliminate a member, such as a member’s death or lack of due diligence).

3. The performance period of different Guardian(s) can be different, and it does not need to start immediately. A Guardian can work in the future (for example, the identity of the new member elected by the parliament has been determined, but has not yet entered the performance cycle).

4. Optional. Turn off the Ward’s transfer permission. That is, even if all Guardian(s) remove their identity by themselves (like the company’s bankruptcy and dissolution), the Ward still cannot transfer the NFT or SBT.

For example, a Harvard bachelor’s degree SBT. When a Harvard student successfully passes the oral defense and graduates, the Guardian of the University transfers the degree SBT with unique code to his/her address, which proves that he/she graduated from the University and obtained his/her bachelor’s degree. He/she can prove that he/she has obtained a bachelor’s degree from Harvard University by verifying the ownership of wallet, which can be used in job hunting, social networking and other scenarios. If the private key of the address is disclosed or lost, the student can apply to the school, and the University Guardian will transfer his/her degree SBT to a new address. If the student is later found to have academic misconduct or acts contrary to the purposes of Harvard University, the University Guardian can also withdraw the degree SBT. For this SBT, students only have the right to use, but not the right of transfer or transaction. Because the value of this degree SBT comes from the endorsement of Harvard University, the University has important rights to its distribution and transfer.

Role or Address Settings

Ward: The holder of SBT (such as a university degree certificate, a company CEO identity certificate, a country President identity certificate, or a credit commitment certificate), generally the wallet address of SBT. When the Guardian address already exists in SBT, the Ward cannot modify the Guardian address and quantity without the permission of the Guardian, and cannot transfer SBT. When the Guardian address and quantity are empty, the Ward can transfer SBT and set the Guardian address and quantity.

Guardian: The Guardian of SBT, generally refers to several addresses of corresponding social organizations or individuals (such as a university, a company board of directors, a country Parliament, a bank, a DAO), or addresses trusted by SBT holders (such as credit guarantors). The Guardian can remove its Guardian identity by itself (e.g., resignation). SBT can be added or removed the Guardian(s) with the permission of a specified number of Guardian(s). The Guardian can call SBT smart contract and transfer the SBT to a specified address .

Possible Operations Related to the Two Roles

Mint SBT: Operated by the Ward. Or the Ward doesn’t need to mint SBT. After the SBT is generated by smart contract, it is directly controlled and distributed by the Guardian.

Transfer SBT:

1. Operated by the Guardian. When the SBT has Guardian(s), with the permission of all or part of the Guardian(s), the SBT can be transferred to a specified address.

2. Operated by the Ward, but can only be carried out when SBT has no Guardian. Before SBT transfers, the smart contract will verify whether the SBT has a Guardian address. If so, it will refuse to initiate the transfer; If not, the transfer can be operated (Optional, can be turned off).

Set Guardian: When the SBT is initially issued, the Guardian is set by the smart contract. Or set by the Ward after the SBT is transferred to the Ward address.

Add or Remove Guardian:

With the permission of a specified number of Guardian(s), SBT can be added or removed Guardian(s).

In addition, different Guardian(s) can have different time period for performing their duties, and it is not necessary to perform their duties at the current timing. A Guardian may perform its duties in the future.

Remove Guardian: Operated by the Guardian by itself.

Ward address is unavailable, the SBT needs to be transferred to new address: Operated by the Guardian. When the private key of the Ward address is unfortunately disclosed or lost, there will be no loss to anyone due to SBT transfer because the SBT cannot be transferred by the Ward at this time (but caution should be taken, there may be the possibility of SBT being used fraudulently). At this time, the Guardian calls the smart contract to transfer the SBT to a new address.

Upgrade SBT

If the Guardian needs to upgrade the original SBT smart contract to issue a new SBT (for example, change the ID card or make the university diploma more artistic). The Guardian does not need to notify the Ward and requires the Ward to perform some complex operations. The Guardian only needs to take a snapshot of the address held by the original SBT, and then issue a new SBT to the Ward. The original SBT can also be retrieved from the Ward address if the Guardian considers necessary. Or do not take it back as a souvenir of the Ward.

Challenger Research Opinion

The more Guardians, the more complex composition of members, the more difficult operation and the higher cost. This is true in design, but it is not worth criticizing because it conforms to sociological theory. For higher-value SBT (for example, “President identity SBT”), the Guardian should be more cautious in transferring the SBT to a specified address, and gas expenditure is also a necessary governance cost to avoid the abuse and excessive issuance of SBT. For low-value SBT, such as the issuance of invitations to an informal party, you can only set one Guardian. If the goal is to reduce operation cost, we can also build it on layer 2 or even layer 3 (this concept was first proposed by Stark Net. Unlike layer 2, layer 3 is more flexible and can only be used for a wide range of or important specific purposes and meet special needs, such as possible privacy needs of SBT in the future). Alternatively, consider a new public blockchain. However, at present, we think that we can study the need to use layer 2, layer 3 or establish a new public blockchain, but it is not urgent. There are two reasons: first, the market demand for SBT has not been fully expanded, and the functional demand for SBT also needs to be further studied; Second, with the implementation of ETH 2.0, the performance of ETH main network has also been improved.

QS-3 gives the Guardian greater authority, which puts forward higher requirements for the governance of Guardian organization itself. This organization can be a parliament, a company, or a newly emerging DAO. The Guardian governance is a problem worthy of in-depth study. There are also many Web3 governance methods being introduced, such as the “Triangle Structure” and “Mutually Assured Destruction Mechanism” proposed by us using Game Theory. The industry can carry out deeper discussion and research in this perspective.

Through further design, under a certain mechanism, the SBT address only with the right of use can also become the Guardian of another SBT. For example, the Guardian, a national citizenship certification authority, grants “citizenship SBT” to citizens, but in the direct presidential election, the addresses holding citizenship SBT can become the voter Guardian. Voters can vote for a presidential candidate (call the smart contract to transfer the “President identity SBT” or “designate President SBT” to a candidate’s address). When a candidate’s address is supported by enough voters, the “President identity SBT” will be automatically transferred to his/her address. After holding the “President identity SBT”, the candidate will unlock a series of relevant permissions by virtue of the “President identity SBT”, such as military command, authorization of nuclear weapons use, etc. (If the SBT may have such rights in the future, you will understand that it is fairly reasonable to make operation of transferring some SBTs to the designated address more complex and cautious.)

For the production and issuance of SBT, we should design a simpler and more convenient way. For example, design a website. When a party initiator wants to make an SBT as his/her party invitation, he/she just needs to log in to the website, connect his/her wallet address, enter the Guardian address, and enter the name, content, and quantity of the SBT to be generated. Then he/she can generate the SBT as wanted. If he/she wants to transfer the SBT to a party participant, he/she can also operate on this website; Or if he/her wants to make some new friends, he/she will remove the Guardian identity and allow SBT to transfer freely. The progressiveness of technology and the popularity of technology are not necessarily linked. The link between the two is usability and convenience.

Enhance Privacy and Security QS-X

In QS-1P, QS-2 and QS-3, the Guardian’s identity is public, and their operation behavior is public too, which may be detrimental to protect the Guardian’s privacy and security. For example, under the pressure of public opinion and power, the Guardian may make choices that do not conform to his/her own wishes. If the Guardian needs privacy protection and security, we can further improve it by adopting technologies such as MPC or Zero-knowledge proof. This can be used in such scenarios as secret ballot and anonymous billionaire club charity fund.

Qs-1 is our basic version, but we don't think it is the best. It is attached below for reference. We hope it can bring you new inspiration.

Supplements

Compared with QS-1P, the design of QS-2 and QS-3 is more in line with real-life examples, and the gas cost is saved in smart contract execution.

It should be noted that in ERC721QS, due to the addition of support for use scenarios such as NFT lease, NFT mortgage lending and SBT, the NFT holder is not necessarily the owner of the NFT ownership, the holder can be the lessee, lender and user.

We note that some EIPs are committed to solving NFT lease problem, but after research, we believe that they do not conform to the practice in real society. For example, one approach is to use the NFT lease smart contract. The owner will pledge the NFT into the lease smart contract address, and then give the lessee user identity. Technically, it works, but it is not in line with the real leaser and lessee relationship. For example, this is equivalent to the tenant signing a lease contract with the landlord (through the smart contract). We can prove the landlord (owner)’s identity through the property certificate and the tenant (user)’s identity through the lease contract. However, we did not give the apartment key to the tenant. The tenant proved that he/she had the right to use the apartment by holding the lease contract to tell everyone that I signed a lease contract and paid the money. The apartment is not in the hands of the landlord or the tenant, but in the hands of a third party (NFT lease smart contract address). This sounds very strange.

Someone has proposed a simple SBT design, that is, using the existing ERC721 contract to generate SBT, but turn off the owner’s transfer right to SBT (but there is no QS-3 design mentioned that the Guardian can transfer the SBT). This design also does not meet some application scenarios in reality. For example, the Harvard University Bachelor’s degree SBT mentioned above. If a Harvard University student is found to have academic misconduct, in theory, the bachelor’s degree should be withdrawn, but the above method is impossible. Therefore, this Harvard University graduate with academic misconduct can still have the Bachelor’s degree SBT and continue to cheat. This will have a negative impact on the reputation of Harvard University.

Research Support：By Challenger Research, Epochs Labs，Web3 技术小组

About Challenger Research (CR)

CR is a loose but united, non-profit organization composed of Web3 industry researchers. The core value of the organization is to challenge people’s cognition of Web3 and release the powerful potential of the Web3 world. Web3 is constantly evolving (not progress, but evolution). CR think that most people’s understanding of Web3 is not accurate and complete at present, and industry researchers need to continuously conduct in-depth research and update the public’s understanding. Its organization name “Challenger” comes from the wrecked US space shuttle “Challenger”. Although Web3’s world exploration is full of failure possibility, CR is still willing to be a pioneer. CR does not deliberately pursue anonymity, but it still will not disclose the organization members, their work and research. New researchers can join CR publicly or anonymously, and we also accept contributions in various forms. CR will conduct some interesting experiments later. For example, when ERC721QS-3 or QS-X contract is adopted, we will generate CR-SBT to verify the researcher’s identity, and determine the researcher’s proposal and qualification to participate in possible meetings.

Temporary contact: 5660.eth

Search 5660.eth on Blockscan Chat and start the conversation

https://chat.blockscan.com/index

Know about our recent experiment projects and more details to be disclosed:

https://linktr.ee/10kuniverse

Attachment: Soundbound Tokens paper participated by Vitalik: “Decentralized Society: Finding Web3's Soul”

English version: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4105763

Chinese version: https://www.panewslab.com/zh/articledetails/1652665746121864.html