Preamble

SIP - XXX

Title: SIP009/SIP010 Safe Token Transfer

Authors: Mike Cohen, Marvin Janssen

Consideration: Technical

Type: Standard

Status:

Created:

License:

Sign Off:

Additional SIP fields

Layer: traits

Requires: SIP009, SIP010

Replaces: ???

Abstract

A safe token standard for SIP009 and SIP010 is required. We introduce a new SIP that complements the existing standards and adds a new function to each.

Introduction

We need this standard because right now it is unsafe for contract principals to call arbitrary SIP009/SIP010 token transfer functions without reviewing and allowlisting the contracts individually. The trend has been for token contracts to guard their transfer function only by tx-sender, which forces the intermediary contract to use as-contract to change the sender context. This in turn allows a malicious token contract to assume full ownership of many other tokens guarded in the same way.

Screenshot 2022-08-01 at 17.42.51.png

The Solution