EigenDA is the data availability service built on EigenLayer’s restaking protocol, described in EigenLabs’ 2023 technical documentation. EigenDA enables Ethereum rollups to post transaction data to a decentralized DA layer secured by Ethereum validators who have opted in via restaking — providing DA at significantly lower cost than posting data directly to Ethereum L1 calldatas or blobs, while retaining Ethereum’s economic security.

The service uses KZG polynomial commitments and erasure coding to provide cryptographic guarantees that data posted to DA is available and verifiable by any rollup node.

> Technical Reference: Available at docs.eigenlayer.xyz/eigenda/overview.

---

Context: The Data Availability Problem

When a rollup processes transactions off-chain and posts proofs/state roots to Ethereum, it must also make the underlying transaction data available so that:

1. Anyone can reconstruct the rollup state from scratch
2. Rollup verifiers can detect fraud (for optimistic rollups) or verify ZK proofs (for ZK rollups)

Options for DA (tradeoffs):

Option	Cost	Security
Ethereum calldata	High	Ethereum-level
Ethereum blobs (EIP-4844)	Medium	Ethereum-level (temporary)
Celestia	Low	Celestia validator set
EigenDA	Low–Medium	Ethereum restaked ETH

EigenDA’s proposition: Ethereum restakers (already staking ETH for Ethereum validator duties) opt-in as EigenDA operators, providing DA nodes secured by the same ETH already at stake.

---

EigenDA Architecture

Disperser:

• A service (run by EigenLabs initially, designed to be decentralized) that receives blob data from rollups
• Encodes the blob using Reed-Solomon erasure coding into chunks
• Computes a KZG commitment over the blob polynomial
• Distributes chunks to DA operators with associated KZG proofs

DA Operators (via EigenLayer):

• Restaked validators who have opted into EigenDA as an AVS (Actively Validated Service)
• Each operator stores their chunk(s) and signs a message confirming receipt
• Signatures are aggregated into a BLS multisignature

On-chain Commitment:

• The BLS multisignature from 2/3+ of operators by stake is posted to the EigenDA contract on Ethereum
• The KZG commitment is included — anyone can verify that any individual chunk matches the committed polynomial without downloading the full blob

---

KZG Commitments for DA

KZG polynomial commitments are used to enable random chunk sampling:

Given blob data D, EigenDA treats it as a polynomial p(x) where p(i) = the i-th symbol of D:

1. The KZG commitment C = [p(τ)]G (where τ is a secret from the Powers of Tau ceremony, never known)
2. Each chunk corresponds to an evaluation p(i) along with its KZG proof
3. Any verifier can check that chunk i is correct by verifying the KZG proof against the commitment C

Light node data availability sampling: A light node can probabilistically verify data availability by sampling random chunks and checking their KZG proofs — it does not need to download the full blob.

---

Comparison: EigenDA vs. Celestia vs. Ethereum Blobs

Property	Ethereum Blobs (EIP-4844)	Celestia	EigenDA
Security	Ethereum consensus	Celestia validator set	ETH restaked (EigenLayer)
Cost (2024)	Medium	Low	Low
Throughput	~1 MB/s target	~8 MB/s	~10 MB/s target
DA sampling	None (full blobs)	DAS with NMT	KZG chunk proofs
Trust assumption	Ethereum validators	Celestia validators	Ethereum restakers

---

AVS Design and Slashing

EigenDA is an Actively Validated Service (AVS) on EigenLayer:

• Operators who sign false availability certificates (claiming a blob was distributed when it wasn’t) can be slashed — losing a portion of their restaked ETH
• Slashing conditions are verified by the EigenDA smart contract on Ethereum
• The slash amount must exceed any economic gain from lying, maintaining honest behavior incentives

---

Reality Check

EigenDA launched on testnet in 2023 and mainnet in 2024, with several rollups (Mantle, Celo’s OP Stack migration, others) as early adopters.

Caveats:

• Disperser centralization: The disperser (which distributes chunks to operators) is currently centralized at EigenLabs. A malicious disperser could withhold data. Decentralizing the disperser is a known roadmap item.
• Staking concentration: If a small number of validators control the majority of restaked ETH opted into EigenDA, they could collude to validate false DA certificates.
• Complexity layered on EigenLayer: EigenDA security depends on multiple layers: Ethereum PoS security, EigenLayer restaking security, and EigenDA’s own slashing conditions. These compose in non-obvious ways.

---

Legacy

EigenDA pioneered the restaking-secured DA model, demonstrating that EigenLayer’s restaked ETH could underwrite independent services beyond Ethereum consensus. The KZG-based chunked DA design is an alternative to Celestia’s DAS+NMT approach, offering Ethereum-secured DA. EigenDA’s role as a DA provider for Mantle and other OP Stack chains demonstrated early production demand.

---

Related Terms

• EigenLayer Whitepaper
• Celestia Whitepaper
• Data Availability
• KZG Commitment
• EIP-4844 Whitepaper

---

Research

• Kannan, S., Li, X., et al. (2023). EigenDA: Scalable, Secure, Data Availability. EigenLabs Technical Documentation.

— Primary technical reference. Covers disperser design, operator set, KZG commitment protocol, and slashing conditions.

• Kate, A., Zaverucha, G., & Goldberg, I. (2010). Constant-Size Commitments to Polynomials and Their Applications. ASIACRYPT 2010.

— KZG polynomial commitment paper; the cryptographic primitive underlying EigenDA’s chunk verification.

• Al-Bassam, M., Sonnino, A., & Buterin, V. (2018). Fraud and Data Availability Proofs: Maximising Light Client Security and Scaling Blockchains with Dishonest Majorities. arXiv:1809.09044.

— Foundational DA sampling paper; provides theoretical basis for the light-client data availability verification that EigenDA’s KZG approach targets.