Consensus

Armchain uses the Lachesis consensus protocol, an asynchronous Byzantine Fault Tolerant (aBFT) consensus mechanism. In plain terms, this means transactions are finalized instantly with no waiting for multiple block confirmations like on Ethereum, and no risk of the chain reorganizing and reversing your transaction.

This page explains how Lachesis works and why it provides stronger guarantees than most other consensus mechanisms.

What is aBFT?

Asynchronous Byzantine Fault Tolerance is the strongest class of consensus guarantees:

• Asynchronous: No timing assumptions. Consensus proceeds regardless of network delays, message reordering, or partitions.

• Byzantine Fault Tolerant: Tolerates up to 1/3 of validators (by stake weight) being malicious or offline.

• Deterministic Finality: Confirmed transactions are permanently final: no rollbacks, no reorganizations.

Async BFT vs. Synchronous BFT

At a high level, synchronous vs. asynchronous BFT differs in trigger mechanism.

Synchronous / Partially Synchronous BFT

Examples: Cosmos (Tendermint), Ethereum (Gasper/Casper).

These protocols operate on a fixed schedule. Each time slot has a designated leader. If the leader disconnects or responds too slowly, the protocol moves to the next leader.

Asynchronous BFT (Lachesis)

Example: Armchain / Fantom (Lachesis).

There is no clock, no leader, and no rounds. Nodes communicate with neighbors and process events as they arrive.

Comparison Summary

Why isn't everyone using aBFT? Asynchronous algorithms are mathematically harder to implement correctly. They require complex graph theory (finding roots and Atropos in the DAG) compared to "longest chain" or "majority vote" logic. aBFT nodes must also gossip more history (DAG structure) to prove event visibility, which is bandwidth-intensive.

Comparison with Ethereum PoS

How Lachesis Works

High-Level Architecture

Key Concepts

Events

Events are the fundamental units of the DAG. Each event is created by a validator and contains:

• Creator: Validator ID that created the event

• Parents: References to previous events (self-parent + other parents)

• Transactions: User transactions included in the event

• Frame: Consensus round the event belongs to

• Lamport timestamp: Logical clock for ordering

• Epoch: Time period the event belongs to

• Gas power used: Gas consumed by the event's transactions

• Signature: ML-DSA44 signature (3,732 bytes)

Frames

A frame is a consensus round that groups events for processing. Frames are the granularity at which Atropos events are elected.

Roots

A root is a special event that qualifies to participate in the Atropos election:

• Must be forkless-caused by ≥ 2/3 of validator weight from the previous frame

• Each validator can have at most one root per frame

• Roots cast votes in the election process

Forkless cause: An event E becomes a root if it is observed by roots from validators representing ≥ 2/3 of total stake weight from the previous frame. For example, with validators A(30), B(25), C(25), D(20) = 100 total weight, the quorum is (100 × 2/3) + 1 = 67 weight.

Epochs

An epoch is a larger time period containing multiple frames:

• Each epoch has a unique validator set

• Epoch boundaries are determined by:

  • Maximum epoch gas consumed (MaxEpochGas: 1.5B gas)

  • Maximum epoch duration (MaxEpochDuration: 4 hours)

  • Cheaters detected (forces epoch seal)

  • AdvanceEpochs > 0 (administrative trigger)

At epoch boundaries:

1. Validator metrics (uptime, missed blocks, originated fees) are pushed on-chain to the SFC contract

2. Validator rewards become claimable

3. A new validator set may be activated

4. Network rules may be updated

DAG-Based Event Ordering

Unlike traditional blockchains that produce a single linear chain of blocks, Lachesis builds a Directed Acyclic Graph (DAG) of events. Each validator independently creates events that reference previous events from other validators.

Gossip about gossip: When Node A communicates with Node B, Node B adds a reference to Node A's latest event, building a web of causal connections. Virtual voting: By inspecting the DAG structure, nodes determine which events have been observed by which validators. No explicit vote messages are sent.

Atropos Election

The Atropos is a single finalized event selected through weighted voting that serves as a checkpoint and block boundary. There is exactly one Atropos per frame, and there is a 1:1 mapping between Atropos events and blocks.

Election Algorithm

1. Round 1 (Frame F+1 voting on Frame F): Each root R in Frame F+1 votes:

   • YES for candidate C if R observes C (has forkless causality)

   • NO for candidate C if R does NOT observe C

2. Round 2+ (Frame F+2 and beyond): Each root R' aggregates votes from the previous round:

   • Count weighted YES votes and NO votes

   • Vote according to the majority

   • If YES_weight ≥ Quorum OR NO_weight ≥ Quorum → DECIDED

3. Quorum: (TotalWeight × 2/3) + 1

4. Atropos selection: Iterate through validators in deterministic order (by weight descending). The first validator whose candidate event has a decided "YES" vote becomes the Atropos.

Worked Example

Consider 4 validators with stakes: A(30), B(25), C(25), D(20) = 100 total weight, quorum = 67.

Frame F: Candidates: Each validator creates a candidate event:

• a0_0 (5 txs), b0_0 (3 txs), c0_0 (7 txs), d0_0 (2 txs)

Frame F+1: Round 1 Voting: Root events observe candidates:

Vote matrix (YES = ✓, NO = ✗):

Atropos selection: Iterate by weight descending, A(30), B(25), C(25), D(20):

1. A's candidate (a0_0): NOT decided → skip

2. B's candidate (b0_0): DECIDED YES → b0_0 is elected Atropos

This event becomes the checkpoint for Frame F. A new block is created containing all confirmed events from this frame.

When No Atropos is Decided

If not enough events reach quorum in a frame (e.g., too many validators offline but still above 2/3 total weight), voting continues into subsequent rounds. If an Atropos cannot be elected for a frame, that frame's block is skipped.

Block Processing Lifecycle

Event Emission

The Emitter is responsible for creating events at regular intervals, packaging transactions from the mempool.

Emitter configuration:

Consensus Callbacks

When the Lachesis engine decides on an Atropos, it invokes application callbacks using a three-phase model:

1. BeginBlock: Loads block and epoch state, triggers the events module to fetch the confirmed Atropos events.

2. ApplyEvent (called for each confirmed event): Collects events and processes misbehavior proofs (e.g., double signing). Cheaters are penalized after the current epoch ends.

3. EndBlock: Performs the three-phase transaction execution (see below), then persists state and updates the state root.

Three-Phase Transaction Execution

The EndBlock callback executes transactions in three distinct phases:

Phase 1: Pre-Internal Transactions

• Punish cheaters: DeactivateValidator(validatorID, DoublesignBit) for any validators caught double-signing

• If sealing epoch: Push validator metrics to the SFC contract via SealEpoch(metrics):

  • offlineTimes[]: duration each validator was offline

  • offlineBlocks[]: blocks missed by each validator

  • uptimes[]: active time for each validator

  • originatedTxsFee[]: total fees from transactions originated by each validator

Epoch Sealing (if triggered)

Epoch sealing is triggered when any of these conditions are met:

When an epoch is sealed:

• New validators are selected based on NextValidatorProfiles

• ValidatorBlockStates are reset

• Epoch number is incremented

• Network rules are updated if DirtyRules is present

Phase 2: Post-Internal Transactions

• If sealing epoch: SealEpochValidators(nextValidatorIDs), which updates the active validator set on-chain

Phase 3: Event Transactions

• Sort confirmed events by Lamport time

• Apply spillBlockEvents() to exclude events exceeding MaxBlockGas

• Collect all transactions from events

• Execute through the EVM

• Track receipts and gas usage

• Update originated fees per validator

State Persistence

After transaction execution, the block is persisted to storage:

Validators

Validators are the nodes that participate in consensus by creating and signing events.

Validator Requirements

• Staking: Validators must stake ARM tokens (minimum self-stake varies by network)

• Key Type: Validators use ML-DSA44 keys exclusively

• Uptime: Validators earn rewards proportional to their participation

• Max Parents: Each event can reference up to 10 parent events

Validator Key Generation

Validators generate ML-DSA44 key pairs:

This creates a key file in the validator keystore with:

• Private key: 2,560 bytes (ML-DSA44)

• Public key: 1,312 bytes (ML-DSA44)

Validator Rewards System

SFC Contract

The SFC (Special Fee Contract) is the core on-chain governance mechanism deployed at genesis. It manages:

• Validator registration and management

• Stake delegation

• Reward distribution

• Epoch sealing

• Slashing and penalties

The SFC is owned by a single owner address set at genesis (the root of trust). No validator can change this owner address: only the owner itself can transfer ownership.

Reward Calculation

Validator rewards consist of two components:

The greater the stake, the greater the rewards. After each epoch, rewards are recalculated and become claimable by validators and their delegators.

Epoch Sealing

When an epoch ends, the node pushes validator metrics on-chain through the NodeDriver intermediary contract:

Validator metrics collected per epoch:

Forgiveness rule (BlockMissedSlack = 50): If a validator missed ≤ 50 blocks, the miss counts are reset to zero and no penalty applies. This prevents penalizing validators for brief, incidental downtime.

Epoch snapshot (persisted on-chain):

Governance Model

The SFC owner address (set at genesis, root of trust) controls key economic parameters:

Key point: Node operators cannot modify governance parameters. Only the designated owner address can update baseRewardPerSecond, penalty thresholds, and transfer ownership.

Finality Guarantees

What "Instant Finality" Means

When you submit a transaction to Armchain:

1. Transaction enters the mempool

2. Emitter includes it in an event (~110ms tick)

3. Event is gossiped to peers and enters the DAG

4. aBFT consensus elects an Atropos for the frame

5. Three-phase block processing executes the transaction

6. Transaction is final: it will never be reversed

No confirmation waits are needed. A single confirmation on Armchain is equivalent to thousands of confirmations on a proof-of-work chain.

Safety Under Network Partition

Even if the network splits into partitions:

• No conflicting blocks can be finalized

• When the partition heals, consensus resumes from where it left off

• No fork choice rules are needed: there are no forks

Liveness

Lachesis guarantees liveness (the network continues making progress) as long as more than 2/3 of validators (by stake weight) are honest and online.

Gas and Event Economics

Gas Power

Validators have gas power that replenishes over time:

Max Parents

Events in the DAG can reference multiple parent events:

More parent references improve the DAG's connectivity and consensus speed, but consume more bandwidth.

Further Reading

• DAG Structure: Deep dive into the DAG data structure

• EVM Integration: How the EVM runs on top of Lachesis

• Transaction Lifecycle: End-to-end transaction flow

• Running a Validator: Participate in consensus

• Node Types: GC modes, sync modes, and database configuration