search

Trust Model

To help you decide if Tscrow is right for you, here is a breakdown of our Trust Model.

hashtag
What You Do NOT Need to Trust (Trustless)

Component
Explanation

Custody of Funds

WE DO NOT HOLD YOUR FUNDS. Funds are in a smart contract that even we cannot withdraw from arbitrarily.

Deployment Params

You can verify on-chain that the Vault was created for the correct amount, buyer, and seller.

Logic Changes

The Vault code is immutable. It cannot be "upgraded"

Solvency

Since every deal is separate, there is no "run on the bank". Your Vault holds your funds.

Withdrawal Safety

Funds can only be sent to the withdrawal addresses - Funds cannot be sent to a a 3rd wallet

Address Prediction

You don't have to trust the bot to give you the "correct" address, you can verify it yourself using the factory contract.

circle-info

“Prediction” does not mean guessing or chance. With CREATE2, the contract address is mathematically predetermined before deployment.

hashtag
What You MUST Trust (Trusted)

Component
Explanation

Dispute Resolution

(High Trust) You trust the Human Admin to make a fair decision if a dispute typically arises.

Bot Availability

You trust the Telegram Bot to be online to facilitate the easiest interaction. Note: You can technically interact directly with the contract if the bot is down, but it's harder.

Front-End Integrity

You trust the Bot to display the correct Vault Address. Always verify the first few characters if the amount is large.

hashtag
Current Limitations (Beta)

  • Centralized Admin: As stated, the admin keyholder is the ultimate judge for disputes.

  • No Multi-Sig Yet: The admin capability is currently held by the project team. We plan to move to a Multi-Sig for added security.

  • EVM Interaction: You need a Web3 wallet (like MetaMask or TrustWallet) to sign transactions if you want to bypass the bot or for advanced usage.

PreviousDisputes and AdminNextSmart Contract Transparency

Last updated