Cointime

Download App
iOS & Android

Exchanges Are Revealing Their “Proof of Reserves” but There Is a Way to Cheat

Validated Media

November 11th, 2022 will forever be remembered as the day FTX, one of the world’s largest and most reputed cryptocurrency exchanges, filed for voluntary bankruptcy. The company’s shocking fall from grace has led to at least $1 billion of customer funds disappearing altogether.

The collapse of the crypto exchange FTX and its subsequent bankruptcy filing underscore the need for robust digital asset risk compliance. While the FTX fallout has accelerated pressure for increased regulatory scrutiny, it also offers stark lessons in risk management, disclosure, and oversight.

It is imperative to mention the timeline and cascading effects of this fallout and how it acted as a catalyst for the 4th biggest bitcoin capitulation causing holders $10 billion in losses. The details available with the authorities suggest that:

  • 1) Sam Bankman's crypto venture FTX owes its top 50 unsecured creditors a combined $3.1 billion, with a handful of clients owing more than $200 million each. 
  • 2) FTX-affiliated companies owe their single largest creditor more than $226 million, according to a redacted list of the top 50 creditors released on 19th November. All of them were named customers, and 11 of them demanded nearly $100 million, according to the papers.

To understand the full chain of events, here is a brief timeline leading up to the fallout:

FTX’s Downfall

The FTX downfall can be traced back to its close links with Alameda Research, a cryptocurrency hedge fund that Sam Bankman-Fried (SBF) founded. Concerns about FTX surfaced after CoinDesk published a piece disclosing that majority of Alameda Research's holdings consisted of FTT, native token of the FTX.

Because FTT could not be converted to cash easily, the study highlighted worries about Alameda Research's capital reserves. In response to the report, Binance CEO, Changpeng Zhao, known as CZ, stated that he will sell all of Binance’s shares of FTT for $580 million.

This massive selloff by a crypto behemoth provoked a larger withdrawal, creating extra pressure on FTX to accommodate the escalating demand for client withdrawals. Due to a liquidity shortage, FTX suspended all customer withdrawals.

Binance, the cryptocurrency exchange whose CEO largely contributed to the selloff, previously agreed to buy FTX. SBF was optimistic about the deal, saying that it is “a user-centered development that helps the entire industry.” He further added that "CZ has done and will continue to do an excellent job building the global crypto ecosystem and creating a more decentralized economic ecosystem…What is important is that the clients are protected," he continued.

Unfortunately, Binance’s due diligence into FTX combined with recent press stories indicating abuse of customer assets and probable US government investigations caused the deal to fall apart, leaving FTX with no path forward.

The failed acquisition set in motion a chain of events which started with Sequoia Capital reducing its over $210 million holding in FTX to zero. Meanwhile, the SEC and the Justice Department launched investigations into the alleged mishandling of user funds by FTX, according to the Wall Street Journal.

In the aftermath of the collapse, the cryptocurrency ecosystem is yearning for a more robust disclosure mechanism to be adopted by centralized cryptocurrency exchanges - one that strengthens user security, ensures privacy protection, and provides transparency into how funds are managed and maintained.

To achieve the above-mentioned properties, one mechanism that is currently gaining interest is the concept of ‘Proof of Reserves’ or PoR. Proof of Reserve provides transparency into the total amount of funds and allocation funds held by an exchange. PoR is not only limited to exchanges, but any entity holding client funds can use this technique to ensure its clients that their funds are in reserve and are truly backed 1:1. This in theory would help identify red flags, prevent misuse of clients funds, and can avoid Alameda and FTX-like events from happening in the future.

What is Proof of Reserve?

Exchanges have always been vulnerable to hacks. As the value of cryptocurrencies rises and cryptocurrencies gain popularity, the stakes have also become higher. In 2014, Mt.Gox, once the largest Bitcoin exchange, filed for bankruptcy after losing 850,000 Bitcoins (worth about $450 million at that time). Since then, there have been numerous other exploits such as the Wormhole Protocol hack in February 2022 and the Ronin Network hack in March 2022, where the hackers stole $320 million in wETH (Wrapped ETH) and 620 million in ETH and USDC tokens, respectively.

Proof of Reserve (PoR) requires exchanges to confirm that digital assets like fiat-backed stablecoins and wrapped tokens are collateralized by the appropriate value of assets. It entails an impartial audit carried out by a third party auditor to verify that a custodian of digital assets genuinely owns the assets that it represents to its clients. 

To prove that they have the reserves to cover all customer deposits, many exchanges such as Huobi, Binance, Crypto.com, Deribit, KuCoin, OkxKraken, BitMEX,  are now using PoR. The idea is to demonstrate to the depositors that the cryptocurrency held on the deposit matches the user balances. PoR provides the transparency essential for cryptocurrency protocols, markets, users and regulators, ensuring a fair and authentic environment in the ecosystem.

How does Proof of Reserve Work?

PoR relies on a technique called a Merkle Tree (also known as a binary hash tree) to provide a cryptographically secure method of verifying assets in a reserve. 

The Merkle Tree data structure is used to verify the integrity of the data by comparing a hash of the data to the hash of the root node. If the two hashes match, the data is considered to be valid. 

Here is How PoR Works:

  • An independent auditor takes a snapshot of all the user balances held by a cryptocurrency exchange and aggregates them into a Merkle Tree. By storing these hashes in a Merkle Tree, it becomes possible to verify that a given transaction is included in a block without having to check the entire block. This is essential in ensuring the privacy of users, as it means that their transaction data can be verified without revealing their identity.
  • To further ensure privacy, each user's balance is also hashed with a unique salt before being stored in the Merkle Tree. This makes it impossible to determine the balance of any given user without knowing their salt. In cryptography, salt is a set of random data that is used as an additional input to a one-way function, that hashes data, a password and a passphrase.
  • Here, only those with access to the user's salt can view their balance. This ensures that even if someone were able to view the contents of the Merkle Tree, they would not be able to determine which account belongs to which user.
  • This dataset is then run through a cryptographic hash function through which the auditor obtains a Merkle root - a cryptographic fingerprint that uniquely identifies the combination of balances. 
  • The auditor gathers the exchange’s digital signatures that show the total number of assets held in reserve at a point of time and verifies whether or not it matches the user balances represented in the Merkle tree, therefore ensuring that the client’s assets are held safely and the protocol is backed by assets to efficiently meet all withdrawal requests. 

Furthermore, the Merkle Tree makes it easier for users to check whether their accurate account balance was included in the audit by comparing selective data within the Merkle Tree. They can verify this in two simple steps:

  1. Hash their account balance and unique ID
  2. Search for it in the Merkle Tree 

How To Build a Merkle Tree For Proof of Reserve?

Gate.io sheds light on the steps that can be used to create a Merkle Tree including:

  1. Hashed user ID(UID) and user balances are first extracted from the exchange data. 
  2. Each pair of hashed UID and user balance is hashed respectively, and then connected to the underlying block.
  3. Leaf nodes of the Merkle Tree are generated using the same hash function for each data block. 
  4. The resulting hashed data is hashed together in pairs to create the parent nodes. This process continues until a single hash known as the ‘Merkle root’ is obtained. 

 PICTORIAL REPRESENTATION OF A PROOF OF RESERVE MERKLE TREE

                                                                                                                                 IMAGE: GITHUB.COM

Ensuring Transparency

Proof of Reserve ensures transparency with the help of a Merkle Tree. It is a privacy-friendly data structure that assures quick and easy verification of large volumes of data, enhancing accountability, credibility and trust between protocols and their users. 

Merkle Trees are also ideal for data integrity since user data is anonymized using a unique salt before being added to the Merkle Tree. Each user’s balance can only be viewed if one has access to this salt. 

Is Proof of Reserve enough?

Proof of Reserve is one of the two variables in the Proof of Solvency equation. PoR only paints half of the picture, whereas disclosing an exchange’s liabilities gives a fair idea of the exchange’s status. Proof of Solvency in theory would be an optimal way for clients, partners, and third parties to verify the solvency of exchanges without compromising their users’ privacy.  

Here, an exchange first needs to prove custody and ownership of the reserves. Next, it would publish the liabilities on its books. Once both of these are known it becomes fairly apparent if the exchange has enough reserves to cover its liabilities. This output is what we call “Proof of Solvency”, which can be used to build trust and transparency between the exchange, its clients, and regulators and prove that an exchange is backed by assets enough to meet all withdrawal requests at any given time. 

Proof of Solvency = Proof of Reserve + Proof of Liabilities 

Does Proof of Reserve say Anything about Liabilities?

Without the context of total liabilities, proof of reserve becomes almost irrelevant. Where proof of liabilities requires careful reviewing by an independent auditor, perhaps multiple auditors are required to ensure all unique financial products such as staking, interest accounts, rehypothecation, collateralized loans, etc. are accounted for to provide full coverage and a high level of confidence in the total amount of liabilities.

Generally, the ratio between the reserves and liabilities provides the only health status indicator. Wherein larger reserves and lower liabilities are considered “safer”. Unfortunately, this is also easier said than done.

A few of the primary challenges with this approach include: 

  1. Ensuring complete coverage of liabilities
  2. Funds being moved to generate a more financially beneficial balance snapshot
  3. Enabling creditors to review and verify the liabilities (as well as report any fraudulent data).

One approach to solve this comes from Nic Carter “This is why I recommend both a user-facing PoR protocol, allowing users to obtain ‘herd immunity’ by collectively verifying their individual balances, and an auditor-facing PoR protocol, to prove that the claimed liabilities are faithful to reality.”

What is the role of an Auditor?

The auditor is responsible for collecting data from financial institutions and exchanges and verifying whether or not it matches the user balances mentioned in the Merkle Tree. 

To help enhance trust and transparency in the industry, Gate.io has made its Proof of Reserve auditing solution open-source. In 2020, Gate.io became the first exchange to provide third-party certified, user-verifiable Proof of Reserve audit. 

The company carries out audits with the help of a leading U.S. firm: Armanino LLP. Armanino LLP first conducts an audit and publishes the report on Gate.io’s reserve alongside user account balances that are compiled and encrypted using Merkle Tree. Users can then independently verify if their account balances are reflected in the reserve report correctly. 

Is it Possible To Cheat Proof of Reserve By Borrowing From Other Exchanges?

Unfortunately, yes. To cheat a PoR, exchanges may borrow funds to pass an audit and omit certain obligations. For this reason, it is recommended that a reputed, independent third-party auditor implements an audit for a crypto exchange or project that can ensure maximum security for investors, traders and regulators. 

What are The Limitations with Proof of Reserve?

While Proof of Reserve can offer transparency and enhance the credibility and trust between protocols and its users, it also has some limitations:

  1. Although Proof of Reserve discloses custody over on-chain data at the time of an audit, it cannot verify the exclusive ownership of a private key. 
  2. Proof of Reserve cannot determine whether the disclosed assets are held by an exchange in reserve or have been borrowed to pass an audit. 
  3. Proof of Reserve offers users a false sense of security. Audits provide an overview of assets held on the platform’s associated addresses without disclosing the company’s liabilities or obligations to their customers.

Companies Disclosing their Proof of Reserve 

After the collapse of FTX, one of the largest cryptocurrency exchanges, Binance published its Proof of Reserve disclosing $69 billion in assets. As of November 10th, Binance held 475,000 BTC, 4.8 million Ether, 17.6 billion USDT, 601 million USDC, 58 million BNB, and approximately 21.7 billion in its own stablecoin, BUSD. The total reserves held by Binance as of 10th November, was approximately $69 billion. 

Comments

All Comments

Recommended for you

  • Bitcoin Layer 2 Project Bitlayer Launches $50 Million Ecosystem Incentive Program

    Bitlayer, a Bitcoin Layer2 infrastructure project based on the BitVM paradigm, announced the launch of a $50 million ecological incentive plan to promote the development of its mainnet ecosystem. The first phase of the incentive program, named "Ready Player One," will begin registration at 09:00 UTC on March 29th, 2024 and end at 09:00 UTC on April 29th, 2024, and will officially start after the Bitlayer mainnet is launched. Specific rules and reward allocation guidelines for the event will be disclosed in subsequent announcements. Through the "Ready Player One" and other ecological incentive plans, Bitlayer aims to accelerate ecosystem development and incentivize projects to deploy on the Bitlayer mainnet. In addition, Bitlayer promises comprehensive ecosystem support for all projects, including potential foundation and institutional investment, initial liquidity support, comprehensive product development resources, guidance and investment opportunities from top incubators, support from the Bitcoin community and OGs, ecosystem cooperation, and co-creation.

  • Stablecoin protocol Ethena on BNBChain has been hacked

    The stablecoin protocol Ethena on BNBChain has been hacked, causing a loss of 480 BNB, worth about $290,000, as monitored by PeckShieldAlert.

  • Singapore-based Bitcoin Layer2 Project BEVM Raises Tens of Millions in Seed and Series A Funding

    Singapore-based Bitcoin Layer2 project, BEVM, has completed its seed round and part of its Series A round, raising tens of millions of USD from over 20 investors including RockTree Capital, Waterdrip Capital, and ViaBTC Capital. The project's Series A valuation has reached $200m and aims to accelerate its international development and roll-out. BEVM is an EVM-compatible Bitcoin Layer2 network built on Taproot Consensus, which uses $BTC as gas and aims to bring 10% of $BTC into its Layer2 network environment. The project's mainnet is scheduled to launch on March 28th and has already implemented decentralized Bitcoin cross-chain custody services through Schnorr Signature, MAST, and Bitcoin SPVs.

  • Ethereum on-chain DEX transaction volume exceeded $2.1 billion yesterday

    According to DeFiLlama data, the trading volume of DEX on the Ethereum blockchain on March 28th was 2.111 billion US dollars, ranking first. The daily trading volume of DEX on the BSC chain was 1.398 billion US dollars, ranking second; the daily trading volume of DEX on the Solana chain was 1.097 billion US dollars, ranking third.

  • Taiwan’s Ministry of Interior has approved the establishment of a cryptocurrency industry association

    Taiwan's Ministry of the Interior has approved the application of the local cryptocurrency industry to establish an industry association. The local cryptocurrency industry working group, which was established last year to prepare for the establishment of the industry association, said that the working group now needs to complete all preparations and officially establish the cryptocurrency industry association by the end of June as required by the government. The working group is currently composed of 22 cryptocurrency companies, including Taiwan's major exchanges such as MaiCoin and BitoPro. The working group pointed out that ACE Exchange has been expelled from the group because the troubled exchange is under investigation by prosecutors for improper behavior by its former executives.

  • Grayscale ETH Trust negative premium rate is 22.77%

    According to ChainCatcher news and Coinglass data, the Grayscale Bitcoin Trust Fund (GBTC) has a premium rate of 0.02%. The Grayscale ETH Trust has a negative premium rate of 22.77%, and the ETC Trust has a negative premium rate of 36.58%.In addition, the Grayscale BCH Trust has a premium rate of 238.13%, the LTC Trust has a premium rate of 380.60%, the SOL Trust has a premium rate of 515.93%, the MANA Trust has a premium rate of 726.65%, the LINK Trust has a premium rate of 713.66%, and the FIL Trust has a premium rate of 3057.89%.

  • Net inflows into spot Bitcoin ETFs reached $179 million on March 28

    Spot on Chain, a blockchain data monitoring platform, posted on social media that the net inflow of spot bitcoin ETF on March 28th reached 179 million US dollars, a decrease of 26.9% compared to the previous trading day. After 54 trading days, the total net inflow accumulated to 12.13 billion US dollars, which is the level before the last fully negative trading week. BlackRock's iShares Bitcoin ETF (IBIT) and Grayscale's GBTC both saw a significant slowdown in daily inflows and outflows on March 28th.

  • Bitcoin spot ETF had a total net inflow of US$179 million yesterday, and the ETF net asset ratio reached 4.25%

    According to SoSoValue data, the Bitcoin spot ETF had a total net inflow of $179 million yesterday (March 28th, US Eastern Time).Yesterday, Grayscale's ETF GBTC had a net outflow of $104 million, and its historical net outflow is $14.77 billion. The Bitcoin spot ETF with the highest net inflow yesterday was BlackRock's ETF IBIT, with a net inflow of approximately $95.12 million, and its historical total net inflow has reached $13.96 billion. The second is Fidelity's ETF FBTC, with a net inflow of approximately $68.09 million yesterday, and its historical total net inflow has reached $7.56 billion.As of now, the total net asset value of Bitcoin spot ETF is $59.1 billion, and the ETF net asset ratio (market value compared to the total market value of Bitcoin) is 4.25%, with a historical total net inflow of $12.12 billion.

  • Ethereum Inscription ETHS rose over 95% in 24H

    CoinGecko data shows that Ethereum Inscription ETHS has risen by 95.9% in the last 24 hours, now reporting at 7.51 USDT. Earlier, Ethereum founder Vitalik released the latest long article "Ethereum has blobs. Where do we go from here?". As a result of this news, the price of Ethereum Inscription ETHS soared.

  • Binance exec sues Nigeria’s National Security Agency over detention

    According to CoinGape, Tigran Gambaryan, a detained executive of Binance, has filed a lawsuit against the National Security Adviser (NSA) and the Economic and Financial Crimes Commission (EFCC) in Nigeria. Local media reported that on March 28th, Tigran Gambaryan sued the National Security Agency, accusing it of violating his basic human rights and seeking five major remedies from the court.He urged the court to approve the return of his passport and to release him immediately after more than three weeks of detention. He also requested a ban on future detention in similar investigations and demanded public apologies from the National Security Agency and the EFCC.In addition, he requested that the court pay the full amount of compensation for the lawsuit.