tim-clancy.eth

That's easy; Ethereum. Anything that is a standalone network not Ethereum or fully-proven by Ethereum is an alt-L1. Anything that is fully-proven is an L2. The term L2 is at times aspirational; per our friends at L2Beat being watchdogs. This implies the existence of alt-L2s but I shudder at the thought.

Yeah nothing matters because we've only got 2PC and the attestor can always forge proof of payment but I meant we could remove the seller's trust in the faithful downstream evaluation of an otherwise-correct proof; that logic could be proven onchain instead of running offchain. We could get to a point where it would really mean that the only way to screw a seller would be to actually forge a proof. Bigger fish to fry I suppose.

We might be talking past each other. The attestation gets posted onchain but it sounds like the current check is confirming it came from the trusted attestor. What I'm saying is that with zkTLS, the seller should not actually need to trust the attestor because a smart contract should be able to do all of the attestor's verification work by confirming correctness of the zkTLS details directly (or a zkVM consumes the zkTLS data and generates a proof).

Yeah of course, I just mean that once the buyer/attestor finished the 2PC I thought the zkTLS output was being verified onchain, either directly or via wrapping in a zkVM first or something. You can never shake the liveness problem but you could enforce soundness for the seller's end and only release their funds with an actual proof. This seems strictly better than the TEE assumptions.