A theoretical basis for MEV
Massimo Bartoletti, Roberto Zunino
TL;DR
The paper formalizes Maximal Extractable Value (MEV) on public blockchains by building an abstract, cryptography-inspired model where contracts are state-transition systems, actors hold finite token sets, and wealth is measured additively. It introduces a transaction-deducibility framework ${\kappa_{\mathcal{A}}}$ that captures how adversaries combine private knowledge with mempool data, defines MEV for any actor set ${MEV_{\mathcal{A}}}$, and extends this to a universal MEV via a minimax game with token redistributions ${\approx_{\$}}$, including a variant for 'bad MEV'. The authors prove key properties like existence, monotonicity with respect to mempools and wallets, and finite-mev realizability, then apply the theory to a suite of contracts (e.g., Whitelist, Blacklist, Bank, HTLC, AMM, Crowdfund, Bounty, Lending Pool) to classify MEV-freedom, revealing both MEV-free and attackable cases. By providing formal definitions, proofs, and a benchmark of use cases, the work lays a rigorous foundation for analyzing and mitigating MEV in smart contracts and informs contract design to resist MEV exploitation.
Abstract
Maximal Extractable Value (MEV) refers to a wide class of economic attacks to public blockchains, where adversaries with the power to reorder, drop or insert transactions in a block can "extract" value from smart contracts. Empirical research has shown that mainstream DeFi protocols are massively targeted by these attacks, with detrimental effects on their users and on the blockchain network. Despite the increasing real-world impact of these attacks, their theoretical foundations remain insufficiently established. We propose a formal theory of MEV, based on a general, abstract model of blockchains and smart contracts. Our theory is the basis for proofs of security against MEV attacks.