Short Paper: Accountable Safety Implies Finality
Joachim Neu, Ertem Nusret Tas, David Tse
TL;DR
The paper studies BFT SMR protocols in partially synchronous settings, introducing accountable safety and proving that achieving $(f+1)$-accountable safety necessarily yields $f$-finality, thereby unifying prior results on finality and accountability. The authors provide formal models, adversarial settings, and a central impossibility-driven argument that even the weakest form of accountability (delay-free networks) implies finality across network models. They further relate these notions to CAP-like tradeoffs, show simplifications of earlier results, and demonstrate nuanced relationships via the SyncFin gadget, which is accountable-safe and live under synchrony but not after GST. The results guide protocol design by showing that accountability mechanisms can ensure finality, but simultaneous guarantees on liveness and accountability under partial synchrony may be impossible, emphasizing fundamental tradeoffs in PoS/BFT blockchain settings.
Abstract
Motivated by proof-of-stake (PoS) blockchains such as Ethereum, two key desiderata have recently been studied for Byzantine-fault tolerant (BFT) state-machine replication (SMR) consensus protocols: Finality means that the protocol retains consistency, as long as less than a certain fraction of validators are malicious, even in partially-synchronous environments that allow for temporary violations of assumed network delay bounds. Accountable safety means that in any case of inconsistency, a certain fraction of validators can be identified to have provably violated the protocol. Earlier works have developed impossibility results and protocol constructions for these properties separately. We show that accountable safety implies finality, thereby unifying earlier results.