The Redbelly Network Whitepaper v1.3.1
The Redbelly Network Whitepaper v1.3.1
The Redbelly Network Whitepaper v1.3.1
COMMERCIAL IN CONFIDENCE
Disclaimer
You must read this page (“Disclaimer”) before reading or making any use of this document or any
information contained within this document.
This document is issued by Redbelly Network Pty Ltd (ACN 640 415 069) of 304/74 Pitt St,
Sydney, NSW, 2000, Australia (“Redbelly”); and is solely for informational purposes. By reading
this Disclaimer, you are acknowledging that you have read the terms and conditions of this
Disclaimer, and agree to be bound by the terms and conditions of this Disclaimer, including any
future modifications of this Disclaimer.
This document is not a draft disclosure document or a pathfinder document for the purposes of
section 734(9) of the Corporations Act 2001 (Cth). This document is not a prospectus, product
disclosure statement or a disclosure document for the purposes of the Corporations Act 2001
(Cth). This document has not and will not be lodged with the Australian Securities and
Investments Commission.
This document does not contain all of the information which would be required to be disclosed in
a prospectus. Neither Redbelly nor any of its officers, employees, related bodies corporate,
affiliates, agents or advisers guarantees or makes any representations or warranties, express or
implied, as to, or takes responsibility for, the accuracy, fairness, reasonableness, correctness or
reliability of any information contained in this Document.
Redbelly does not represent or warrant that this document contains all material information
about Redbelly or which a prospective investor may require in evaluating a possible investment
in Redbelly by acquisition of shares in Redbelly. You must conduct your own independent
investigations and enquiries as you deem necessary.
Any timeframes provided by the Redbelly within this document are estimates and are subject to
change without notice. This includes, but is not limited to: the future development of the
Redbelly product, the token, the listing of the token on the public market, and the applications
that may use the Redbelly product.
Before making any investment, investors are advised to take their own independent accounting,
taxation, legal and any other advice appropriate to your jurisdiction. No person mentioned in this
document will offer or may be construed as offering, advice to any potential investor of Redbelly.
The Redbelly Network is a revolutionary open finance platform that embeds distributed ledger
technology into the heart of financial relationships. This eliminates information asymmetry and
dramatically increases efficiency, helping to build a fairer financial system for all.
With a novel leaderless consensus mechanism, democratic byzantine fault tolerant (DBFT)
consensus developed with The University of Sydney and CSIRO’s Data61, we are able to achieve
high performance, and guarantee the impossibility of forking and mitigate double spending with
near instant finality.
This paper details the purpose of the Redbelly Network, describes its infrastructure topology, and
gives an overview of supporting infrastructure crucial to its success.
Tokenomics 17
Ecosystem Governance 21
Ecosystem Governance Responsibilities 21
References 22
It does not have to be this way. Distributed ledger technology (DLT) allows us to share data,
independently agree and verify its legitimacy, and coordinate the execution of business logic
using that data between parties at incredibly low cost. This allows us to turn competing parties
into cooperating parties, empowering everyone with full and equal knowledge of the relationship,
as well as the performance of the rights and obligations defined in that relationship, thereby
removing the need to trust that the counterparty will do what they say they will do. By extension,
the more we can automate the provision of goods and services, the less we need to rely on the
organisation. If the technology to do this is commoditised and shared fairly, this should put
downward pressure on prices.
Furthermore, DLT shifts the locus of data sovereignty back to the user where it belongs. With
DLT, individuals are empowered with true ownership, agency, and control over their data, what is
done with it, and the ability to take it with them from one service provider to another. This in turn
gives service providers the means to create hyper-personalised value propositions bespoke to
individuals and their historical data sets, rather than forcing individuals to choose the ‘least
worst option’ for their needs.
The range of applications is vast - from illuminating complex financial transactions like
mortgage-backed securities, to simplifying property transactions, to issuing and managing
central bank digital currencies, DLT has the potential to improve the financial system for
everyone.
Yet, despite DLT’s clear potential, it has yet to be embedded into many, if any, of our real world
financial relationships - even though it has matured for more than a decade. Why is this? We
believe that this is largely because blockchains are unable to, on their own, provide the sufficient
accountability required for maintaining high value, complex, real world financial relationships.
A lack of accountability
Current blockchain designs limit accountability because they focus on censorship resistance,
hindering their applicability to important high value financial relationships that require the
enforcement of rights and obligations that cannot all be programmed. With classical blockchains,
double spending attacks can occur when one of two branches are discarded from the system. As
a result, there is by definition no proper way to detect a double spending attack or identify the
participant responsible for the attack. There is simply no accountability.
Real accountability means having known network participants; being flexible enough to be
compliant with law and regulation; being able to prove when fraud is attempted or performed;
As DeFi and cryptocurrency markets grow, eventually they will have to become regulated in order
to protect consumers. When a market is regulated, it provides confidence to that market to help it
grow by virtue of the protections that regulation affords. Starting from a basis of accountability
will assist in that process. If the blockchain community continues to focus exclusively on
unregulated assets, those completely separated from the existing financial system, then the true
potential and scope of distributed ledger technology will forever be curtailed and stunted.
The role of regulation and legal systems is to enforce the rights and obligations detailed in real
world contracts in order to protect everyone’s interests. The regulator protects market
participants from abuses of power which are themselves arguably due, in part, to market
inefficiencies and information asymmetry. In so doing, however, regulated inefficiencies are
introduced in order to ensure protection.
This regulated inefficiency could be drastically reduced by standardising and programming the
regulated assets and their associated rights and obligations through the use of smart contracts.
However, it is important to note that much of the work of legal contracts is in navigating the grey
areas of subjectivity and negotiation. Whilst this approach is undeniably imperfect, it is essential
for the appropriate and adequate protection of rights defined in contract.
The goal of DLT, specifically smart contracts, should not be to replace the need for legal
infrastructure. Rather we should look to augment lawyers and contracts with technology to
automate the performance of specific rights and obligations within contracts that are able to be
programmed and therefore automated.
With DLT, it is possible to design and build compliance into our agreements by implementing
‘rules as code’ where we can perform a single audit of the code and agreements and have
confidence that they will execute as designed, leaning on appropriate legal recourse where
necessary.
In summary, embedding DLT into existing financial relationships will dramatically improve the
efficiency and transparency of assets, and the markets in which they are traded. It will also bring
the real world benefits of true accountability and enforceability to the digitised assets we choose
to put on the blockchain.
We are building a fairer and more efficient financial system that is more transparent and inclusive.
We believe that this means empowering everyone with fairer access to financial services and
infrastructure. Redbelly is not a blockchain for institutions. We are empowering everyday people
with access to institutional tools at incredibly low cost in order to level the playing field by
eliminating information asymmetry. In order to build this future, we must start from a place of
accountability.
Known participants
All participants on The Redbelly Network are identified through our network of off-chain digital
identity providers. Prospective network participants must prove their identity in order to onboard
onto the network and create an account. This allows network participants to use their real world
identity as their blockchain identity. Our zkSnark based solution allows users to prove their
identity without revealing any personal or sensitive information to the verifier. Additionally,
because the authorisation is performed on a per transaction basis, the user has full control to
accept or reject any specific authorisation request.
Known costs
In order to facilitate high value real world financial relationships, transaction costs need to be
known beforehand in order to give confidence and certainty to users and businesses. Thus, gas
fees paid in the native Redbelly Coin are kept stable against fiat currency (USD) terms, despite
possible price volatility of Redbelly Coin. For any given transaction on The Redbelly Network, the
transaction costs will depend only on the complexity of the operations that need to be
performed, which can easily be calculated ahead of time, and the fixed fee component.
Known relationships
Redbelly is designed to natively support the deployment of Ricardian contracts where a hash of
the full legal agreement is referenced in a smart contract’s code to irrefutably link the real world
relationship (legal contract) with the execution of a subset of its rights and obligations (the
smart contract). Templates of high value financial relationships will aid in the ease of deployment.
Our Ricardian contracts benefit from the automation, efficiency and transparency of smart
contracts but also provide real world compliance and enforceability. In addition to the Ricardian
contract templates, tools will be built to aid the development of novel relationships and
programmed dependencies between existing relationships in a concept we call ‘value webs’.
Networking
The Redbelly Network currently utilises grpc to communicate between nodes. However, we have
observed that network conditions become the bottleneck at high levels of throughput. This is
primarily due to two reasons:
We will seek to minimise bandwidth requirements by further optimising the protocol in the future.
Introduction of technologies such as multipoint generic routing encapsulation (mGRE) will allow
for secured multicast transmission of block information, rather than multiple peer-to-peer
unicast streams. This will reduce the number of network transmission flows by each node to one
or two flows, rather than the flow per peer that is currently required.
Blockchain Architecture
The Redbelly Network is a public, permissionless blockchain. Anyone can run either a consensus
or a storage (SEVM) node, but they must have created an account on the network and have the
minimum resources required to spin up the relevant node. The decoupling of consensus and
storage roles allows for better tuning of resource provisioning as well as security and resilience
optimisation.
Additionally, once the mainnet is live and scaled up, there will be a minimum of 200 nodes
participating at any given time to help mitigate the possibility of centralisation and increase the
security and performance of the network. The pool of consensus nodes that are actively
participating in consensus will be dynamically reconfigured on a periodic basis to further
increase the security and performance of the network.
DBFT
The Redbelly Blockchain builds upon the Democratic Byzantine Fault Tolerance (DBFT)
consensus protocol [4] to achieve unprecedented performance. DBFT was jointly developed by
the University of Sydney and CSIRO’s Data 61 with funding from the Australian government.
DBFT is able to achieve a peak throughput of more than 660,000 transactions per second when
deployed on 300 nodes. Later performance tests on 1000 nodes at a global scale demonstrated
an average transaction latency of 3 seconds [4].
In addition, there are often bugs in blockchain protocols that affect their security [8]. In order to
mitigate the risks of errors while designing a complex consensus protocol, we ran the protocol
through a process of formal verification [5]. We recently demonstrated through a
machine-checked proof that our consensus algorithm is correct. This was done with the use of
parameterised model checking: our consensus protocol is proved correct for any set of n
participants and any number f of tolerated failures.
Furthermore, most consensus algorithms rely on having a ‘correct’ leader or coordinator node in
order to terminate. However, DBFT can terminate even when any coordinator is faulty, rendering
it leaderless. In essence, Redbelly allows processes to complete asynchronous rounds as soon as
they receive a particular threshold of messages rather than having to wait for a message from a
coordinator that may be delayed. The implication of this is that as the number of network
participants grows, the transaction throughput increases.
Superblock Optimisation
In classical blockchains, participants solve consensus by having different participants engage in
‘fierce’ competition: proposing their own block and trying to impose it on the system. If they
succeed, then all other participants lose: only their block is the one appended at the next
available index of the chain. This is a waste of resources as only 1 participant succeeds and n-1
fail.
Sharded Verification
In addition to the superblock optimisation described above, Redbelly also implements sharded
verification. Unlike existing blockchains whose nodes typically are required to verify the same
transactions, sharded verification allows us to spit the computational load across different
verifiers. Each transaction signature is verified by at least t+1 and at most 2t+1 verifiers (where t
is the maximum number of faults). Both the superblock optimisation and sharded verification
further enhance the scalability of The Redbelly Network. For more information on the
implementation of sharded verification, see [7].
For example, smart contract bridges can be deployed to facilitate the transfer of value between
any two chains with Turing complete smart contracting languages. Alternatively, a higher order
protocol can be used if one of the chains does not support smart contracts.
Role Decoupling
The Redbelly Network distinguishes the two main tasks to be executed by its nodes. One task is
to run the DBFT consensus algorithm and the other is to validate and execute transactions.
Redbelly separates the role of executing each task with consensus nodes responsible for
executing DBFT consensus and SEVM nodes responsible for validating and executing
transactions. As the consensus nodes and SEVM nodes communicate through gRPC, they can
easily be loaded on two distinct physical machines or VMs or kept on the same machine in two
separate processes. This gives us great flexibility in dynamically scaling the network.
Validation Reduction
In contrast to Ethereum, the nodes running the SEVM do not have to validate each individual
transaction twice. In Ethereum, for example, each transaction is propagated to the whole
network, every miner validates the transaction upon reception and once it is included in a block,
the transaction is revalidated by every validator before being executed.
To minimise the wasting of resources, the SEVM nodes do not propagate a transaction to other
nodes after it is validated. Instead, a node validates a transaction upon receiving it to propose it
to the consensus but does not propagate it to all nodes. The node proposes a block with the
validated transaction for consensus and the SEVM nodes validates it when consensus is reached
about the superblock to be appended. In other words, in Redbelly, each transaction is validated
n+1 times where n is the number of SEVM nodes in the system (once by the proposer node and
once by all SEVM nodes in the system). This is in contrast to Ethereum where each transaction is
validated 2n times. As n increases towards infinity, Ethereum validates transactions twice as
much as Redbelly.
Transaction Fees
As in Ethereum, gas is the unit of work that is performed for each distinct computational
operation in the SEVM. The amount of gas required to perform a specific operation is defined
according to a predefined fee schedule where each operation has a different, fixed, gas cost.
Redbelly has the distinct advantage of high performance, meaning the network can handle a
large number of transactions. So, in order to provide transaction cost certainty to users the gas
price will remain fixed. Thus, on Redbelly, the total fees for a given transaction are the fixed gas
Sharding
The primary goal of sharding is to increase the scalability of the network. The Redbelly Network
allows participants to open dedicated shards on which shard participants can transact with even
greater performance without revealing the details of their transactions to the rest of the
network. Each shard can be thought of as its own blockchain backed by the security of the main
chain (the beacon chain).
The nodes of each shard process only their transactions, enabling greater throughput across the
entirety of the network by reducing congestion and bottlenecks. Not only does opening a shard
allow a user, business, or use case to access greater performance, it also adds privacy benefits
for shard participants. The details of a shard’s transactions are completely hidden from the
beacon chain as only the shard initiation deposits are present on the main chain.
The Redbelly Network’s sharding functionality will be available as a consumable service, allowing
anyone to spin up a shard easily and efficiently. The sharding service will also be highly
configurable, giving greater flexibility for a wide range of complex use case needs that will
inevitably arise.
ID Connect
Redbelly’s innovative identity gateway allows users to create a secure off-chain identity that can
be verified for on-chain authentication purposes. It consists of three main components; a
Redbelly compliant identity app installed on the user’s mobile device, an identity smart contract
(one per user), and a zkSnark circuit that all interact with each other to confirm the user’s
identity, without needing to reveal sensitive personal information to the requesting party.
The user has full control over which third parties are authorised to access their information. It is
locked behind multiple factors of authentication on their device that can include:
Identity Registration
Identity registration is performed when the user is creating their Redbelly account on the
Redbelly Identity app. The application communicates with a marketplace of digital identity
providers, one of which will perform identity checks on the user. Once this is done successfully, a
set of zkSnark artefacts are generated including a zkSnark circuit, a verification key, a proving
key and the deployment of the identity smart contract. In addition, a secret is generated and
stored in the secure enclave of the user’s device behind biometric methods of authentication.
Identity Recovery
The loss of private keys is one of the biggest user experience challenges facing many
blockchains. To mitigate this challenge, Redbelly generates a recovery key at user registration
specifically for the purpose of account recovery. The recovery key is sharded amongst several
delegates chosen by the user. These delegates serve as guardians for the user should they lose
access to the device on which they registered their identity. If the user’s device is lost, they will
perform account recovery through the Redbelly compliant Identity app on a new device. This
process requires them to re-register their identity through an identity provider on the digital
identity marketplace. The recovery key is then recombined from the delegates and the user’s
identity smart contract is upgraded.
Multi-User Accounts
Once a user has registered as an individual on the platform, they are able to add additional roles
to their identity, including creating a multi-user account to which other registered users can be
added. Multi-user accounts are useful for representing legal entities such as companies and
trusts where multiple individuals are required to authorise the actions of the entity. This is crucial
in order to enable real world financial relationships on The Redbelly Network which in many cases
involve these kinds of legal entities represented by multiple individuals.
Pay Connect
The Redbelly Network will support settlement in the native Redbelly Coin. However, many use
cases will require settlement in fiat currency. Thus, Redbelly has a global payment gateway, Pay
Connect, built directly into the protocol as a global payment smart contract that allows anyone
to program payment obligations in fiat currency through a smart contract. Any dApp on the
network can thus initialise payment flows on off-chain fiat payment rails, assuming that the
relevant user authorises the transaction.
The payment gateway leverages fast fiat payment rails, such as the New Payments Platform
(NPP), to power smart contract triggered instant transfers of fiat currency between bank
accounts. Initially, the payment gateway will support the NPP, with other payment rails such as
SWIFT, Visa, and Mastercard to be integrated in the future.
Ricardian Contracts
Given The Redbelly Network’s focus on marrying the benefits of DLT with the accountability of
legal infrastructure, there needs to be a mechanism that links any deployed instance of a smart
contract with a specific legal contract. The Redbelly Network achieves this through native
support of Ricardian contracts and a platform based mechanism for creating new instances of
standardised Ricardian contract templates.
We define Ricardian contracts as a combination of a smart contract and a written legal contract.
The two are linked together by a one way function that generates a hash of the written legal
agreement that is included in the smart contract code at deployment. This binds the smart
contract, and any actions of that smart contract, directly to the legal agreement. The two should
not be thought of as separate, the smart contract code should be considered an augmentation
to the legal agreement. In effect, the smart contract is the mechanism by which a subset of the
rights and obligations defined by the legal agreement are performed. In this sense, The Redbelly
Network provides a non-repudiation and notary service for legal agreements.
Products
To aid in the adoption of The Redbelly Network, we will develop several key products whose
primary purpose is to make it as easy as possible to access, use, and benefit from our
transformational technology. These products will initially focus on: creating and deploying
Ricardian contracts on chain (Compose), independently viewing and verifying contract execution
(Aperture), and interacting with deployed contracts (Wallet).
Supporting Components
Oracles
Leveraging our standardised Oracle Node Infrastructure, prospective Web2.0 API providers will
be able to cheaply and easily deploy their own on-chain infrastructure that connects directly to
their existing API. Once on-chain, the oracle is able to be called by smart contracts deployed on
the network to inform the execution of smart contract functions that depend on off-chain data
in an approach based on API3’s Airnode [3].
The decision of which data source to use as an oracle is made by the relevant parties at the time
the legal agreement is entered into. Both parties agree ahead of time that a specific data source
will be used to inform the execution of the contract terms. The standardised oracle node
infrastructure, once deployed by the oracle service provider, serves to inform those smart
contracts with off-chain data as needed.
RBN dAppstore
The Redbelly Network dAppstore serves as the single place from which to find an aggregated
view of all the dApps that have been built on top of, or ported to The Redbelly Network. It gives
users a single portal into the possibilities of participating in the network and also provides users
with confidence in the dApps that are listed there.
Voting: network upgrades The facilitation of community input to major upgrades to the
network
Voting: network reconfiguration The facilitation of the core network security function of
reconfiguring the set of validator nodes from time to time
(both consensus and EVM nodes)
Shard initiation & management The act of locking up native coins in order to create a shard
Sharding on the network. Each participant in the shard needs to
contribute to this deposit
Network effect acquisition Incentives paid to early use cases based on the value they
bring to the network (e.g. # users, # transactions, #
contracts), paid in native coins from a dedicated incentive
allocation
Node incentives & rewards Incentives and rewards paid to node hosts because of the
Incentives & essential service they provide to the network, paid in native
Rewards coins from a dedicated allocation
Oracle provision Incentives paid to oracle providers for providing real world
data input to the network, paid in native coins from a
dedicated allocation
Product Adoption Incentive Incentive paid to early users of the product, paid in native
coins from a dedicated incentive allocation
In addition, the table below describes how each of the key entities will use the coin to interact
with the system through the key activities described above.
Consensus Node Staking ● Native coins are deposited ‘at stake’ as a disincentive for bad
behaviour
● Native coins are rewarded to stakers as an incentive for
providing this critical service
SEVM Node Staking ● Native coins are deposited ‘at stake’ as a disincentive for bad
behaviour
● Native coins are rewarded to stakers as an incentive for
providing this critical service
Gas SEVM providers receive a portion of gas fees, paid in native coins,
as compensation for providing the SEVM service
Oracle Provider Staking ● Native coins are deposited ‘at stake’ as a disincentive for bad
behaviour
○ Bad behaviour includes bugs that provide wrong data,
uptime/downtime thresholds
● Native coins are rewarded to stakers as an incentive for
providing this critical service
Shard Participant Shard Initiation Native coins are locked/deposited by each participant in order to
initiate a shard. These coins are locked from being used elsewhere
on the network whilst the shard remains active
Governance Member/ Governance Voting Holders of Native coins will be able to vote on governance
Delegate decisions that require a community vote. If coins are staked then
the voting weight compounds
Use Case Incentive Native coins are rewarded to early use cases on the platform from
a dedicated incentive allocation as an incentive to bring as much
network effect on to the platform as early as possible
Product User (Use case) Incentive Adopters of the Redbelly Network products are rewarded an
incentive, paid in Native Coins (or a rebate on the cost of the
product) for being an early adopter of the Redbelly Network
product suite
Rewards & Network Effect Acquisition & 10% Incentives & rewards allocated to entities that
Incentives Product Adoption Incentives 1 billion bring significant network effect to the Redbelly
Network in terms of users, contracts, transaction
throughput, interactions, etc. Additional
incentives allocated to entities that adopt the
Redbelly Network product suite
Ecosystem Protocol R&D, Capital Markets & 3% Funds allocated to technical innovation and R&D,
Support Innovation Fund 300 million as well as capital market innovation activities in
the broader Redbelly Network ecosystem.
Research and Social Good 2% Funds allocated to activities that promote and
Program 200 million maximise social good both within the broader
Redbelly Network ecosystem and in the world by
leveraging Redbelly Network technology
Entity Redbelly Network Governance DAO 3% Funds allocated to the Redbelly Network
Allocation 300 million Governance DAO to fund and help facilitate its
governance activities
Daily vesting will complete on the last respective day of the “Last Month” column detailed below.
In the previous example of the Private Sale tokens, all tokens will be vested by the 15th day of the
same calendar month 18 months after the public listing event.
For the avoidance of doubt, the Public Sale allocation is not constrained by any vesting
conditions.
Note, these are subject to potential changes before the mainnet release. Note that the
ecosystem support, rewards and incentives, and reserve allocations are not subject to a token
release schedule.
Release Schedule
1 It is a condition of release that a Team token holder is either actively employed by the Redbelly group of companies, or is engaged by Redbelly to perform services.
Redbelly Network Pty Ltd is a private company registered in Australia whose sole purpose is to
focus on layer-1 development of the Redbelly Protocol and enabling the widespread adoption of
Redbelly blockchain technology in the real world. The Foundation and company collaborate from
time to time on innovative projects and initiatives to accelerate and maximise the value to the
wider Redbelly ecosystem.
Whilst The Redbelly Network is in its bootstrapping phase, governance functions (excluding
treasury management) will be performed by Redbelly Network Pty Ltd until such time as The
Redbelly Network Governance DAO has been developed and the governance transition plan, as
detailed in the roadmap, has been completed.
The main responsibilities of network governance are listed in the table below.
Responsibility Description
[1] Civit, Gilbert, Gramoli. Polygraph: Accountable Byzantine Agreement. Proceedings of the 41st
IEEE International Conference on Distributed Computing Systems. July 2021, DC, USA.
https://ieeexplore.ieee.org/document/9546489
[2] Fischer Lynch, Paterson, Impossibility of distributed consensus with one faulty process.
Journal of the ACM, 32(2), 1985.
[4] Crain, Gramoli, Larrea, Raynal. DBFT, Proceedings of the 17th IEEE International Symposium
on Network Computing and Applications 2018.
http://redbellyrw.cluster021.hosting.ovh.net/pubs/DBFT-preprint.pdf
[6] Ekparinya et al. The Attack of the Clones against Proof-of-Authority. Proceedings of the
Network and Distributed Systems Security Symposium, Internet Society, Feb 2020
[7] Crain, Natoli, Gramoli. Red Belly: A Secure, Fair and Scalable Open Blockchain. Proceedings of
the 42nd IEEE Symposium on Security and Privacy S&P 2021.
https://drive.google.com/drive/u/0/folders/1_Dz5r8EvJvR_I1xIem9QutK6n_wzz7lw
[8] Natoli, Gramoli. The Balance Attack or Why Forkable Blockchains Are Ill-Suited for Consortium.
Proceedings of the 47th IEEE/IFIP International Conference on Dependable Systems and
Networks. p.579-590, 2017