Staking Pool Questionnaire Answers
Stakewise was provided an initial questionnaire by the EDDC to provide further insights into how Stakewise works and to evaluate their safety as a Staking Pool Service. Please see below for the EDDC questions and Stakewise answers.
What country is your business based out of?
Are you confident that you are adhering to all of the necessary regulations for the jurisdiction you are in?
We are confident about being compliant with the laws of Estonia. We are working with a reputable
Legal Opinion about our full compliance.
How much control do you have over users’ funds? – Do you hold 0, 1, or 2 keys?
In the Pool service, we will generate a shared withdrawal key with Shamir’s secret sharing. The parts will be distributed between trusted entities in the Ethereum community to prevent centralization of custody in our hands and will be used to sign the withdrawal transaction through a threshold signature (akin to multisig) arrangement. For the Solo service, we require users to submit their withdrawal public key. In both instances, we retain control of the validator keys. However, for the solo service, we will implement pulling validator keys upon request, so that they could migrate from StakeWise to some other provider or continue running by themselves. When pulling the validator keys, they will be encrypted using the user’s eth1 address or RSA. They will also retrieve validator.db to avoid slashing.
Do you have any insurance in case funds are lost?
We don’t have an insurance that covers the loss of the funds. We expect users to turn to insurance protocols like Shield DAO and Nexus Mutual to insure their funds, and will likely have an internal solution where some users can underwrite the risk of the slashing-related losses for the rest of the users in exchange for a fee.
What is your company’s history in the cryptocurrency space?
As a company, this is our first commercial crypto project, yet we obtained decent exposure to the cryptocurrency space individually. Dmitri has been involved with blockchains and cryptography for about 5 years, having obtained a Master’s degree in Cryptography and Security and later working on hobby projects like mining Monero on cellphones using CPU and designing no-loss lotteries based on Ethereum mining. Kirill has been invested in Ether since 2017.
Who are your team members, and what are their academic and professional backgrounds?
Dmitri is a FullStack engineer with a wealth of DevOps and System Administration experience. He worked on the development of a public cloud network for the government in the Middle East, and later helped build a 5G network for Verizon while at Ericsson. He has a degree in Computer Science and a Master’s in Cryptography and Security.
Kirill is an investment analyst by occupation, having worked for one of the largest investment funds in Estonia since 2017. His experience includes working with public and private companies in the equity and debt markets on the buy-side. He has a degree with an Economics major and has passed Level 1 of the CFA exam.
If you are using smart contracts, have they been audited, by whom?
We are choosing an audit team now, but in addition to them, our code will be audited by a few private individuals with a strong background in security.
Describe your staking setup. – Do you have your own servers, if no, which hosting provider are you using? Which client(s) are you using? How many nodes are you using? Do you have some sort of redundancy built-in? etc…
1.We are using Google Cloud and Microsoft Azure to run a distributed cloud setup in different geographies to achieve redundancy. We use Prysm and Lighthouse as Eth2 clients and run 2 beacon nodes per cluster. The setup allows to quicky switch between clients and clouds in case one of the parts of the setup goes down (in case of a bug or datacenter downtime, for example).
2.We run our server clusters using Kubernetes. This allows us to automatically scale the number of servers in the cluster according to the # of validators that we run and allocate more resources to the servers in times of peak demand (for example, when there is no finality).
3.We have a failover mechanism enabled to achieve maximum redundancy. Failover allows us to automatically migrate validators to a new server in case some other server failed, without loss of uptime. We ensure protection from slashing by enabling local and external slashing protection, as well as storing the validator db’s on a separated volume.
Who is invested in your business, is there venture capital, is there a token? If there is a token, what is it used for?
We have a few offers on the table and are negotiating the venture structure now.
We have 2 tokens for the Pool, to represent the deposit and the rewards separately. They are called stETH (staked ETH) and rwETH (reward ETH). Users receive stETH when they make a deposit in the Pool (at a 1:1 ratio). As long as they hold stETH in their address, they accrue rewards in rwETH, proportionally to their share of the Pool. rwETH similarly reflects users’ rewards in 1:1 fashion (net of StakeWise staking fee). Transferring stETH to another address would be akin to transferring one’s deposit in the Pool to someone else, so in case stETH is transferred to another address, rwETH will start accruing there. More about our tokens can be read here: https://docs.stakewise.io/tokens
How much are you charging for your staking services?
We have a 10% fee on rewards in the Pool and charge 10 DAI/validator/month for Solo.