ERC-5646: Token State Fingerprint

Unambiguous token state identifier

Metadata

Status: FinalStandards Track: ERCCreated: 2022-09-11

Authors

Naim Ashhab (@ashhanai)

Requires

EIP-165

Links

GitHub page Discussion on Ethereum Magicians

Abstract

This specification defines the minimum interface required to unambiguously identify the state of a mutable token without knowledge of implementation details.

Motivation

Currently, protocols need to know about tokens' state properties to create the unambiguous identifier. Unfortunately, this leads to an obvious bottleneck in which protocols need to support every new token specifically.

Specification

The key words "MUST", "MUST NOT", "SHOULD", "SHOULD NOT", and "MAY" in this document are to be interpreted as described in RFC 2119.

getStateFingerprint MUST return a different value when the token state changes.
getStateFingerprint MUST NOT return a different value when the token state remains the same.
getStateFingerprint MUST include all state properties that might change during the token lifecycle (are not immutable).
getStateFingerprint MAY include computed values, such as values based on a current timestamp (e.g., expiration, maturity).
getStateFingerprint MAY include token metadata URI.
supportsInterface(0xf5112315) MUST return true.

Rationale

Protocols can use state fingerprints as a part of a token identifier and support mutable tokens without knowing any state implementation details.

State fingerprints don't have to factor in state properties that are immutable, because they can be safely identified by a token id.

This standard is not for use cases where token state property knowledge is required, as these cases cannot escape the bottleneck problem described earlier.

Backwards Compatibility

This EIP is not introducing any backward incompatibilities.

Reference Implementation

Security Considerations

Token state fingerprints from two different contracts may collide. Because of that, they should be compared only in the context of one token contract.

If the getStateFingerprint implementation does not include all parameters that could change the token state, a token owner would be able to change the token state without changing the token fingerprint. It could break the trustless assumptions of several protocols, which create, e.g., buy offers for tokens. The token owner would be able to change the state of the token before accepting an offer.

Copyright