{"title":"Add Fireblocks as a whitelister on Aave Arc","status":"Proposed","author":"Idan Ofrat (@idan-fb)","shortDescription":"Proposal to add Fireblocks LLC, a Fireblocks company, as a “whitelister” on the Aave Arc market.","discussions":"https://governance.aave.com/t/add-fireblocks-as-a-whitelister-on-aave-arc/5753","created":"2021-10-02T00:00:00.000Z","preview":"## Simple Summary\n\nFireblocks asks the Aave Governance community to …","basename":"4C7076AA6CC7-AIP-FIREBLOCKS-WHITELISTER-ON-AAVE-ARC","description":"\n\n## Simple Summary\n\nFireblocks asks the Aave Governance community to approve the appointment, adoption, and authorization of Fireblocks LLC, a Fireblocks company, as a “whitelister” on the Aave Arc market.\n\n## Abstract\n\nAave Arc is a “permissioned” version of the software underlying V2 of the Aave protocol that employs an additional smart contract layer to only allow “whitelisted” or “permissioned” users to engage with the protocol.\n\nOnly regulated entities that (a) employ KYC/KYB principles in accordance with FATF guidelines to identify and accept their clients; (b) have robust AML/CFT compliance programs; and (c) are currently in good standing with an active license/registration in the entity’s operating jurisdiction will be accepted as “whitelisters” on Aave Arc.\n\nWe believe that Fireblocks LLC, a Fireblocks company, satisfies all the qualification requirements to be a whitelister. We have performed a detailed analysis and documented it [here](https://governance.aave.com/t/add-fireblocks-as-a-whitelister-on-aave-arc/5753) for the consideration of the Aave Governance community.\n\n## Motivation\n\nDeFi is considered by institutional users to be one of the more complex markets to navigate across security, compliance, and risk perspectives. We are eager to be at the forefront of this transformational opportunity with Aave Arc by extending access to even our most compliance-conscious customers, who have been searching to engage with DeFi in a way that comports with their own internal requirements.\n\nApproval of Fireblocks LLC can potentially also facilitate the integration of other “whitelisters” and institutions into instances of the Aave protocol. This may have multiple benefits, including the creation of sustainable governance practices for Aave Arc whitelisters and whitelister customers, as well as the enablement of benefits to the ecosystem, such as the onboarding of regulated fiat on/off ramps and protocol deployments connected to debit cards, high yield savings accounts and other innovative fintech products.\n\n## Specification\n\n“Whitelisting” is the gatekeeping function performed by whitelisters on users of Aave Arc. The term refers specifically to the process of:\n1. Conducting KYC/KYB checks on the user;\n2. Onboarding the user with appropriate disclosures, terms, and conditions;\n3. Granting specific permissions (e.g., borrow, supply, liquidate) to the Ethereum wallet address(es) provided by the user.\n\nIn addition, Aave Arc whitelisters perform a similar role on Arc as guardians do on Aave V2. Specifically, whitelisters can use a multi-sig veto on governance proposals that add excessive compliance risk on the Aave Arc protocol. For example, existing whitelisters can veto the addition of a privacy coin if such a coin is impermissible in the relevant jurisdiction, or veto the addition of a whitelister that has a poor reputation for compliance.\n\nThe whitelisting is managed via a [PermissionManager](https://etherscan.io/address/0xF4a1F5fEA79C3609514A417425971FadC10eCfBE) contract, in which whitelisters are designated as Permission Admins.  Permission Admins are permitted to add or remove wallets grants to the Aave Arc market by calling `addPermissions()` and `removePermissions()` contract methods, respectively. \n\n## Rationale\n\nThe Aave community voted on the [Snapshot proposal](https://snapshot.org/#/aave.eth/proposal/QmYQEh4vstJADjSK2b8nyK1otFG6R4rh9VHszU5xUEw26S) with Yes 149.2k AAVE (98.33%) and No 2.54k AAVE (1.67%).\n\n## Test Cases\n\nTest cases for an implementation are mandatory for AIPs but can be included with the implementation.\n\n## Implementation\n### Proposal\n\nExecutes the proposal deployed at:\n\n[https://etherscan.io/address/0xA7fC6E204c2069edb0ed5Fed451F419B985eC416#code](https://etherscan.io/address/0xA7fC6E204c2069edb0ed5Fed451F419B985eC416#code)\n\nThe proposal executes the following:\n- Adds [Fireblocks](https://etherscan.io/address/0x686a12A79008246F4dF2f1Ea30d136BD6DE748B4) as Permission Admin by calling addPermissionAdmins` on the [PermissionManager](https://etherscan.io/address/0xF4a1F5fEA79C3609514A417425971FadC10eCfBE) contract.\n\n`IPermissionManager(0xF4a1F5fEA79C3609514A417425971FadC10eCfBE).addPermissionAdmins([0x686a12A79008246F4dF2f1Ea30d136BD6DE748B4]);`\n\n- Unpause the pool by calling setPoolPause on the [LendingPoolConfigurator](https://etherscan.io/address/0x4e1c7865e7BE78A7748724Fa0409e88dc14E67aA) contract.\n\n`ILendingPoolConfigurator(0x4e1c7865e7BE78A7748724Fa0409e88dc14E67aA).setPoolPause(false);`\n\n- Transfers the EmergencyAdmin role of the system to the [ArcTimelock's Veto DAO](https://etherscan.io/address/0x33B09130b035d6D7e57d76fEa0873d9545FA7557).\n\n`provider.setEmergencyAdmin(ARC_TIMELOCK_VETO_DAO_ADDRESS);`\n\n- Transfers ownership of the system to the [ARC Market Multisig](https://etherscan.io/address/0x23c155C1c1ecB18a86921Da29802292f1d282c68) temporarily until handed over to Aave Governance.\n\n`provider.transferOwnership(ARC_MARKET_MULTISIG_ADDRESS);`\n\n### Aave Arc Timelock\n\nAave Arc Timelock gives a guardian address the opportunity to cancel an approved governance action prior to its execution.\nThe timelock implementation can be found [here](https://github.com/aave/arc-timelock).\n\n## Copyright\n\nCopyright and related rights waived via [CC0](https://creativecommons.org/publicdomain/zero/1.0/).\n"}