xFeed: Blockchain Oracle Integrity
XorIDA splits oracle data across independent providers with threshold reconstruction and reputation scoring. A single manipulated price feed cannot drain a protocol -- threshold consensus is required.
The Problem
Blockchain oracles are single points of failure for DeFi. A single manipulated price feed can drain entire protocols. Oracle manipulation has caused hundreds of millions in losses through flash loan attacks and feed corruption.
DeFi protocols depend on oracles to bring off-chain data (prices, events, weather) onto the blockchain. When a protocol trusts a single oracle source, that source becomes the highest-value attack target in the entire system. Flash loan attacks manipulate oracle prices within a single transaction to drain lending protocols.
Current oracle solutions aggregate multiple sources but do so transparently -- the aggregation logic is visible on-chain and can be gamed. Weighted median oracles can be manipulated by corrupting a critical mass of visible sources. There is no mechanism ensuring that individual source data remains private until threshold aggregation produces the final value.
The Old Way
The PRIVATE.ME Solution
xFeed splits oracle data across independent providers using XorIDA. Threshold reconstruction prevents single-source manipulation. Reputation scoring weights providers based on historical accuracy.
Oracle data is submitted through splitFeed(), which splits the data value into N shares distributed across independent oracle providers. Each provider submits only their share. The aggregateOracle() function collects K-of-N shares, verifies HMAC integrity, and reconstructs the aggregate value. No individual provider's contribution is visible until threshold aggregation.
A built-in reputation system tracks provider accuracy over time. Providers whose shares consistently reconstruct to values that deviate from the consensus are penalized. This creates economic incentives for honest oracle provision while using XorIDA's information-theoretic guarantees to prevent preview of individual submissions.
The New Way
How It Works
Oracle data flows through a three-stage pipeline: independent submission, threshold aggregation with HMAC verification, and reputation-weighted consensus output.
Use Cases
Token prices aggregated from independent providers with threshold consensus. Flash loan attacks cannot manipulate below-threshold providers.
Price OracleOn-chain events from one chain relayed to another via distributed oracle providers. Threshold consensus prevents false event reporting.
InteroperabilityWeather and event data for parametric insurance policies. Threshold oracle prevents single-source manipulation of payout triggers.
ParametricGame scores and event outcomes from independent providers. Threshold reconstruction prevents single-source score manipulation.
Verifiable FeedsIntegration
import { splitFeed, aggregateOracle } from '@private.me/oraclesplit'; // Split oracle data across 5 providers (3-of-5 threshold) const shares = await splitFeed( { pair: 'ETH/USD', price: 3842.50, timestamp: Date.now() }, providers, { n: 5, k: 3 } ); // Aggregate oracle data with reputation-weighted consensus const result = await aggregateOracle('ETH/USD', { minProviders: 3, maxDeviation: 0.01 // 1% max deviation threshold }); console.log(result.price); // 3842.50 -- consensus value
Security Properties
| Property | Mechanism | Guarantee |
|---|---|---|
| Feed Confidentiality | XorIDA K-of-N threshold | Information-theoretic |
| Manipulation Resistance | Threshold consensus | Below-threshold corruption fails |
| Front-Running Prevention | Unintelligible shares | No individual preview |
| Provider Accountability | Reputation scoring | Economic penalties for dishonesty |
| Quantum Resistance | GF(2) operations, no keys | Unconditional security |
Verifiable Data Protection
Every operation in this ACI produces a verifiable audit trail via xProve. HMAC-chained integrity proofs let auditors confirm that data was split, stored, and reconstructed correctly — without accessing the data itself.
Read the xProve white paper →
Ready to deploy xFeed?
Talk to Ren, our AI sales engineer, or book a live demo with our team.
Ship Proofs, Not Source
xFeed generates cryptographic proofs of correct execution without exposing proprietary algorithms. Verify integrity using zero-knowledge proofs — no source code required.
- Tier 1 HMAC (~0.7KB)
- Tier 2 Commit-Reveal (~0.5KB)
- Tier 3 IT-MAC (~0.3KB)
- Tier 4 KKW ZK (~0.4KB)
Use Cases
Deployment Options
SaaS Recommended
Fully managed infrastructure. Call our REST API, we handle scaling, updates, and operations.
- Zero infrastructure setup
- Automatic updates
- 99.9% uptime SLA
- Enterprise SLA available
SDK Integration
Embed directly in your application. Runs in your codebase with full programmatic control.
npm install @private.me/xfeed- TypeScript/JavaScript SDK
- Full source access
- Enterprise support available
On-Premise Upon Request
Enterprise CLI for compliance, air-gap, or data residency requirements.
- Complete data sovereignty
- Air-gap capable deployment
- Custom SLA + dedicated support
- Professional services included
Enterprise On-Premise Deployment
While xFeed is primarily delivered as SaaS or SDK, we build dedicated on-premise infrastructure for customers with:
- Regulatory mandates — HIPAA, SOX, FedRAMP, CMMC requiring self-hosted processing
- Air-gapped environments — SCIF, classified networks, offline operations
- Data residency requirements — EU GDPR, China data laws, government mandates
- Custom integration needs — Embed in proprietary platforms, specialized workflows
Includes: Enterprise CLI, Docker/Kubernetes orchestration, RBAC, audit logging, and dedicated support.