WPRC 2026#002

WorldCoin & Chainlink CCIP

WPRC-002· SG· · INFRASTRUCTURE

WorldCoin & Chainlink CCIP

Worldcoin is a global identity and financial network using biometric proof of personhood, while Chainlink CCIP enables cross-chain asset and message transfers via decentralized oracle networks.

Contributors

WPRC Contributors

LayerZero VS CCIP discussion notes

Commit store acts as a cache function - Allows LayerZero to retry messages if it doesn’t go through the first time if messaging fails.
Collusion: A key challenge with CCIP is that it’s unclear if the Risk management networks, committing DON, and transacting DON are actually different node operators. Thus, a key reason to use layer zero over chainlink is philosophical. It’s to prevent over-concentration of power.
LayerZero allows the developer to swap out the Oracle networks and use their own if they are interested. Polyhydra - https://polyhedra.network/.
Book recommendation: Sacred economics
Cross-chain challenges: Managing forks, uncles, and issues around the downtime of the chain. (Aptos bridge by layer zero is very unstable and very unstable) Compatability in finality between the chains is critical (security)
Arbitrum has 2 USDC - until circle and march want to become more native on chains -
Omnichain fungible chains - USDC.E - non-native token

WorldCoin discussion notes

We already gave so much data to the government that it doesn’t matter 🙂
Funny experience of a young dude - who was walking around scanning people’s Iris’s in 2021.
At what price are you willing to sell your Iris data?
World coin can be used for authentication, and solve issue of spam.

WorldCoin

Blurb

Worldcoin is a global identity/financial network which uniquely identifies a person. Their goal is to combat issues like bots, spam and to promote financial opportunity and fair distribution of resources. This project is built on both software and hardware innovations.

Summary

Proof of personhood (PoP) is a mechanism that verifies that a user is a unique human being, and is needed for high-stakes use cases such as global UBI, the democratic governance of AI, and the Worldcoin project.
A good PoP need to have the following properties:
Deduplication ensures that each user can only be issued a PoP once.
Authentication ensures that only the legitimate owner of a PoP can use it.
Recovery allows users to regain access to their PoP if it is lost or compromised.
Inclusivity allows everyone, regardless of nationality, race, gender, or economic means.
Fraud-resistant to prevent duplicate sign-ups.
Technical details of the Orb:
Developed by Tools for Humanity because no off-the-shelf hardware met the requirements, including custom lens.
Security features such as tamper detection, firmware that is designed for security, and the ability to update the firmware over the air.
Privacy features, including the fact that all images are processed on the device and no iris images are stored by the verifier.
Users can register and use their World ID fully pseudonymously without sharing personal information. Zero-Knowledge Proofs (ZKPs) are used to prevent cross-application tracking and to prove the uniqueness of a user. Image custody is optional. The iris code is a complex numerical representation of an individual's iris, and it's designed in a way that it cannot be reverse-engineered to recreate the original image. (hmm - true)
Open source, and feedback for design improvements is welcome.

Vitalik’s Thoughts:

A potential solution could be a hybrid model that combines biometrics, social graphs, and other verification methods.
Proof of personhood can be compatible with pseudonymity, allowing users to create multiple profiles. However, concerns arise about whether these systems will be exploited or misused by powerful entities to gather more data.
Selling votes - mechanisms like MACI can hinder credible vote selling. Yet, if the briber controls key registration, this fails. Solutions include: Running applications inside a Multi-Party Computation (MPC), and maintaining user privacy. Decentralized registration ceremonies, ensuring trust without external snooping.

Questions

As a developer - what would it take for you to develop on top of the world coin code.
How would you exploit this?
False positives hard to verify?

Additional Reads

Irises: https://www.cl.cam.ac.uk/~jgd1000/infrared-examples.html
Vitalik’s Blog: https://vitalik.ca/general/2023/07/24/biometric.html
EigenTrust: https://en.wikipedia.org/wiki/EigenTrust
ZK Machine Learning: https://worldcoin.org/blog/engineering/intro-to-zkml
World Coin repo: https://worldcoin.org/open-source

ChainLink CCIP

Blurb

(CCIP is a protocol that allows for the transfer of assets, data, and messages between different blockchains. CCIP is built on top of Chainlink's decentralized oracle network and works by using a messaging router smart contract (MSRC) to route messages between different blockchains. The MSRC is responsible for verifying the authenticity of messages and ensuring that they are delivered to the correct destination.

Key Concepts:

Router: Main contract for initiating cross-chain interactions.
Commit Store: Stores the Merkle root of finalized messages.
OnRamp: Checks message validity, manages billing, and tracks message sequence.
OffRamp: Ensures message authenticity and executes transactions.
Token Pools: Manages the transfer mechanism for different types of tokens. This will mostly be LINK Tokens
Risk Management Network Contract: Maintains a list of Risk Management node addresses.
Lane: represents a one-way path between two blockchains.
Decentralized Oracle Network (DON): Chainlink's DON uses OCR2, where data values undergo a consensus round. The output is a report attested by a participant quorum and then broadcasted on-chain. Within CCIP, lanes contain two OCR DON committees.
Risk Management Network: Functions as a secondary validation service to the primary CCIP system, working with both off-chain and on-chain components. Off-chain: Several nodes monitor all chains for abnormalities.
On-chain: A specific Risk Management contract for each CCIP-supported chain. The network operates in two main modes:
Blessing: It verifies Merkle roots and blesses them if they match.
Cursing: Activated when anomalies are detected. Under certain conditions, the CCIP system can be paused by the Risk Management network. The on-chain Risk Management contract maintains authorized nodes for blessing/cursing and uses weighted votes to determine blessings or curses.

Questions

What would be the cost required to transfer in and out of a token across chains? How can this be minimized?
How will Chainlink enable competitors to work with them, e.g LayerZero?
Does compromising the Risk Management Network lead of compromising CCIP? - On Chain and off-Chain?
All Cross Chain protocols that manages pools will become LP providers
Separating Commitment and Excution integresting + Layer Zero was previously the committing DON.
Transaction costs high

Additional Reads

Chainlink LLM Doc answer tool: https://t.co/gDjN0mblJd (not loading)
Video introduction: https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=&cad=rja&uact=8&ved=2ahUKEwjPs8_o_MaAAxV-amwGHa2ADbQQtwJ6BAgNEAI&url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DyJ1mXgumOAk&usg=AOvVaw04N7MJ1Qm7IO8FRUUAoqS9&opi=89978449

Stanford Blockchain:

MEV event:https://livestream.com/accounts/1973198/mev-2022

LayerZero VS CCIP discussion notes

Commit store acts as a cache function - Allows LayerZero to retry messages if it doesn’t go through the first time if messaging fails.
Collusion: A key challenge with CCIP is that it’s unclear if the Risk management networks, committing DON, and transacting DON are actually different node operators. Thus, a key reason to use layer zero over chainlink is philosophical. It’s to prevent over-concentration of power.
LayerZero allows the developer to swap out the Oracle networks and use their own if they are interested. Polyhydra - https://polyhedra.network/.
Book recommendation: Sacred economics
Cross-chain challenges: Managing forks, uncles, and issues around the downtime of the chain. (Aptos bridge by layer zero is very unstable and very unstable) Compatability in finality between the chains is critical (security)
Arbitrum has 2 USDC - until circle and march want to become more native on chains -
Omnichain fungible chains - USDC.E - non-native token

WorldCoin discussion notes

We already gave so much data to the government that it doesn’t matter 🙂
Funny experience of a young dude - who was walking around scanning people’s Iris’s in 2021.
At what price are you willing to sell your Iris data?
World coin can be used for authentication, and solve issue of spam.

WorldCoin

Blurb

Summary

Proof of personhood (PoP) is a mechanism that verifies that a user is a unique human being, and is needed for high-stakes use cases such as global UBI, the democratic governance of AI, and the Worldcoin project.
A good PoP need to have the following properties:
Deduplication ensures that each user can only be issued a PoP once.
Authentication ensures that only the legitimate owner of a PoP can use it.
Recovery allows users to regain access to their PoP if it is lost or compromised.
Inclusivity allows everyone, regardless of nationality, race, gender, or economic means.
Fraud-resistant to prevent duplicate sign-ups.
Technical details of the Orb:
Developed by Tools for Humanity because no off-the-shelf hardware met the requirements, including custom lens.
Security features such as tamper detection, firmware that is designed for security, and the ability to update the firmware over the air.
Privacy features, including the fact that all images are processed on the device and no iris images are stored by the verifier.
Users can register and use their World ID fully pseudonymously without sharing personal information. Zero-Knowledge Proofs (ZKPs) are used to prevent cross-application tracking and to prove the uniqueness of a user. Image custody is optional. The iris code is a complex numerical representation of an individual's iris, and it's designed in a way that it cannot be reverse-engineered to recreate the original image. (hmm - true)
Open source, and feedback for design improvements is welcome.

Vitalik’s Thoughts:

A potential solution could be a hybrid model that combines biometrics, social graphs, and other verification methods.
Proof of personhood can be compatible with pseudonymity, allowing users to create multiple profiles. However, concerns arise about whether these systems will be exploited or misused by powerful entities to gather more data.
Selling votes - mechanisms like MACI can hinder credible vote selling. Yet, if the briber controls key registration, this fails. Solutions include: Running applications inside a Multi-Party Computation (MPC), and maintaining user privacy. Decentralized registration ceremonies, ensuring trust without external snooping.

Questions

As a developer - what would it take for you to develop on top of the world coin code.
How would you exploit this?
False positives hard to verify?

Additional Reads

Irises: https://www.cl.cam.ac.uk/~jgd1000/infrared-examples.html
Vitalik’s Blog: https://vitalik.ca/general/2023/07/24/biometric.html
EigenTrust: https://en.wikipedia.org/wiki/EigenTrust
ZK Machine Learning: https://worldcoin.org/blog/engineering/intro-to-zkml
World Coin repo: https://worldcoin.org/open-source

ChainLink CCIP

Blurb

Key Concepts:

Router: Main contract for initiating cross-chain interactions.
Commit Store: Stores the Merkle root of finalized messages.
OnRamp: Checks message validity, manages billing, and tracks message sequence.
OffRamp: Ensures message authenticity and executes transactions.
Token Pools: Manages the transfer mechanism for different types of tokens. This will mostly be LINK Tokens
Risk Management Network Contract: Maintains a list of Risk Management node addresses.
Lane: represents a one-way path between two blockchains.
Decentralized Oracle Network (DON): Chainlink's DON uses OCR2, where data values undergo a consensus round. The output is a report attested by a participant quorum and then broadcasted on-chain. Within CCIP, lanes contain two OCR DON committees.
Risk Management Network: Functions as a secondary validation service to the primary CCIP system, working with both off-chain and on-chain components. Off-chain: Several nodes monitor all chains for abnormalities.
On-chain: A specific Risk Management contract for each CCIP-supported chain. The network operates in two main modes:
Blessing: It verifies Merkle roots and blesses them if they match.
Cursing: Activated when anomalies are detected. Under certain conditions, the CCIP system can be paused by the Risk Management network. The on-chain Risk Management contract maintains authorized nodes for blessing/cursing and uses weighted votes to determine blessings or curses.

Questions

What would be the cost required to transfer in and out of a token across chains? How can this be minimized?
How will Chainlink enable competitors to work with them, e.g LayerZero?
Does compromising the Risk Management Network lead of compromising CCIP? - On Chain and off-Chain?
All Cross Chain protocols that manages pools will become LP providers
Separating Commitment and Excution integresting + Layer Zero was previously the committing DON.
Transaction costs high

Additional Reads

Chainlink LLM Doc answer tool: https://t.co/gDjN0mblJd (not loading)
Video introduction: https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=&cad=rja&uact=8&ved=2ahUKEwjPs8_o_MaAAxV-amwGHa2ADbQQtwJ6BAgNEAI&url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DyJ1mXgumOAk&usg=AOvVaw04N7MJ1Qm7IO8FRUUAoqS9&opi=89978449

Stanford Blockchain:

MEV event:https://livestream.com/accounts/1973198/mev-2022