Read more about our Tezos baking service.
Q: Since you have access to the signer, can’t you just sign whatever you want over it and drain the bond from the baker account?
A: Our remote signer only works with keys stored in a Ledger Nano S, and the baking app on. Ledger Tezos baking app will only sign baking and endorsement operations. So while we have full access to the remote signer, we can’t drain the account.
We also support customers setting up their own remote signers, in that case, we will ensure that they filter by transaction type.
Q: The tezos-signer natively supports authentication using a keypair - why not use this and avoid the ssh tunnel?
A: The remote signer setup “just works” from anywhere. Plug it in, and it “phones home” using the secure SSH protocol. All signing requests go through the SSH tunnel.
The second reason is that the remote signer is fully managed by us (OS upgrades, upgrades of the signer software itself) so we need access to more than the signer protocol, namely ssh login and monitoring endpoints. They all go through the tunnel.
Q: Why not run the entire baking operation from the remote signer ? Why use cloud instances ?
A: As Tezos evolves continuously, the requirements of running a full node tend to grow. Also, the size of the blockchain may outgrow storage capabilities of the node.
On the other hand, the remote signer’s requirements are tiny, so rolling out new hardware will be rare. The cloud is able to autoscale so that the baking operations will never be impacted by an increase in computing requirements.
Q: Is there a centralization concern if too many bakers use MIDL.dev ?
A: Having several baking nodes managed by a single entity increases centralization. Specifically, there is risk of us accidentally or maliciously knocking off a large section of the Tezos network. However:
There are a lot of XTZ holders today using custodial solutions for lack of technical ability to bake. These holders switching to a non-custodial service like ours is a decentralization win: users can independently vote for governance proposals and it reduces the size of large custodians’ own stake in the network.