Inferensys

Glossary

Data Availability Sampling

A technique allowing light nodes to probabilistically verify that block data is available for download without downloading the entire block, critical for blockchain scalability.
Data scientist building training data pipeline on laptop, data preprocessing visible, technical workspace.
BLOCKCHAIN SCALABILITY PRIMITIVE

What is Data Availability Sampling?

Data Availability Sampling is a cryptographic technique enabling light nodes to probabilistically verify that all data for a block has been published without downloading the entire block, a critical mechanism for scaling blockchain throughput.

Data Availability Sampling (DAS) is a mechanism where a light client downloads small, random chunks of a block's data to achieve high statistical confidence that the entire dataset is available on the network. Rather than requiring every node to download megabytes of data, DAS leverages erasure coding to expand the data and then samples multiple random fragments. If a sufficient number of sampled chunks are retrievable, the node can assert with near-certainty that the full block can be reconstructed by honest participants, preventing data withholding attacks.

This technique is foundational to architectures like danksharding, where block producers publish large data blobs that are not permanently stored by the consensus layer. DAS ensures that even resource-constrained validators and light clients can independently verify data publication without trusting a centralized committee. By decoupling data verification from data download, DAS enables blockchain networks to scale transaction throughput linearly with the number of nodes, maintaining decentralization while supporting high-bandwidth rollup settlement layers.

PROBABILISTIC VERIFICATION

Key Features of Data Availability Sampling

Data Availability Sampling (DAS) is the cryptographic mechanism that allows light nodes to verify that all block data has been published without downloading it entirely. By requesting random chunks and validating erasure-coded proofs, DAS ensures scalability while maintaining the trustless security guarantees of the base layer.

01

Erasure Coding Redundancy

Before sampling begins, the original block data is erasure coded—expanded using Reed-Solomon codes so that the data can be reconstructed from any sufficient subset of chunks.

  • Mechanism: A block of k chunks is expanded to 2k chunks, doubling the data size but requiring only any k chunks for reconstruction.
  • Purpose: This redundancy ensures that even if a malicious producer withholds up to 50% of the chunks, honest nodes can still reconstruct the full block.
  • Example: In Ethereum's danksharding roadmap, each blob of data is erasure coded across the network, allowing light nodes to sample random chunks with high confidence that the full data is available.
2x
Data Expansion Factor
50%
Max Tolerable Withholding
02

Probabilistic Sampling Strategy

Light nodes do not download the full block. Instead, they request a small, randomly selected set of chunks from the network. Each successful retrieval increases the statistical probability that the entire block is available.

  • The Math: If a block producer withholds 50% of chunks, a node requesting just 30 random chunks has a 1 - (0.5^30)99.9999999% probability of detecting the withholding.
  • Efficiency: A node can achieve near-certainty about data availability by downloading less than 1% of the total block data.
  • Key Insight: The probability of undetected withholding decays exponentially with each additional sample, making the system arbitrarily secure with minimal overhead.
< 1%
Data Downloaded per Node
99.9999999%
Detection Probability (30 samples)
03

KZG Polynomial Commitments

DAS relies on KZG commitments (Kate-Zaverucha-Goldberg) to verify that each sampled chunk is a valid piece of the original erasure-coded polynomial. This prevents a block producer from generating fake chunks that pass verification.

  • How It Works: The block data is interpolated as a polynomial. The KZG commitment is a single, constant-size elliptic curve point that binds the producer to that specific polynomial.
  • Verification: For any chunk, the producer provides a short evaluation proof that the chunk lies on the committed polynomial. Nodes verify this proof in constant time without knowing the full polynomial.
  • Ethereum Context: EIP-4844 (proto-danksharding) uses KZG commitments for blob transactions, enabling efficient DAS verification on the consensus layer.
48 bytes
Commitment Size
O(1)
Verification Complexity
04

Distributed Sampling via Gossip

Sampling requests are propagated through a peer-to-peer gossip network, ensuring that no single node bears the burden of serving all chunks and that the system remains resilient to targeted censorship.

  • Request Distribution: Each light node sends sampling requests to different peers in the network. Peers only need to store and serve a subset of chunks.
  • Sybil Resistance: Because requests are randomly distributed, an attacker controlling a fraction of nodes cannot censor specific chunks without being statistically detected.
  • Reconstruction Incentive: If enough samples succeed, full nodes can reconstruct the block. If sampling fails consistently, the block is rejected by the network consensus, slashing the producer.
O(√n)
Per-Node Bandwidth
n
Total Network Nodes
05

Data Availability Committee (DAC)

In some architectures, a Data Availability Committee is a permissioned set of trusted nodes that collectively attest to data availability using multi-signature schemes, trading decentralization for lower latency.

  • Validium Model: Unlike ZK-Rollups that post data on-chain, Validiums use a DAC to store data off-chain. The DAC signs an attestation that data is available, which is verified by the L1 smart contract.
  • Trust Assumption: Security relies on an honest-majority assumption within the committee. If a threshold of members collude to withhold data, funds could be frozen.
  • Contrast with DAS: Pure DAS is trustless and permissionless; DACs introduce a known trust boundary but offer faster finality and lower costs for enterprise applications.
N-of-M
Signature Threshold
Off-Chain
Data Storage Location
06

Fraud Proofs for Incorrect Coding

Even with valid KZG proofs, a malicious block producer could erasure-code the data incorrectly—committing to a polynomial that does not match the original data. Fraud proofs allow honest nodes to challenge and reject such blocks.

  • Detection: A full node that downloads the entire block can verify that the erasure coding was performed correctly. If not, it generates a compact fraud proof.
  • Propagation: This proof is gossiped to light nodes, which can verify it efficiently and reject the invalid block without re-downloading everything.
  • Economic Security: The block producer's staked collateral is slashed upon a successful fraud proof, creating a strong disincentive against generating invalid erasure-coded data.
O(1)
Fraud Proof Size
Instant
Rejection Finality
DATA AVAILABILITY SAMPLING

Frequently Asked Questions

Explore the core concepts behind Data Availability Sampling (DAS), the foundational cryptographic technique that enables blockchain networks to scale securely without requiring every node to download massive blocks of data.

Data Availability Sampling (DAS) is a probabilistic verification technique that allows light nodes to confirm that all data for a block has been published without downloading the entire block. The mechanism works by having block producers first erasure-code the block data—typically using Reed-Solomon codes—extending the original data with parity shares. The producer then commits to the data using a KZG polynomial commitment or a Merkle tree structure. Light nodes perform multiple rounds of random sampling, requesting small, randomly selected chunks of the extended data. Each successful retrieval increases the statistical probability that the full data is available. If a malicious producer withholds even a small fraction of the block, the erasure coding ensures that the missing portion can be reconstructed from any sufficient subset of the available shares. This allows the network to achieve extremely high confidence—often exceeding 99.9%—that data is fully available while requiring nodes to download only a tiny fraction of the total block size.

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.