• Proof of Work systems use computational majority (>50% hash power)
• Proof of Stake systems often require 2/3+ of stake for finality
• Byzantine Agreement protocols require specific mathematical thresholds based on fault tolerance requirements

The key insight across all these systems is that the supermajority threshold must be carefully calculated based on the assumed fault model to provide meaningful security guarantees.

KERI's Approach

KERI implements supermajority consensus through the concept of ample - the minimum required number of participants needed to achieve supermajority guarantees. This is formalized in KAACE (KERI's Agreement Algorithm for Control Establishment), which establishes consensus between witnesses on the key state of a KERI identifier.

According to section 11.4.2.4 of the KERI whitepaper v2.60:

"Satisfaction of this constraint guarantees that at most one sufficient agreement occurs or none at all despite a dishonest controller but where at most F of the witnesses are potentially faulty."

KERI's supermajority implementation differs from traditional approaches in several key ways:

Mathematical Precision

KERI defines the ample constraint through precise mathematical relationships:

• f ≥ 1 if n > 0 (at least one fault must be tolerated if there are participants)
• n ≥ 3f + 1 (Byzantine fault tolerance requirement)
• (n+f+1)/2 ≤ m ≤ n-f (bounds on the supermajority threshold)

These constraints ensure that the supermajority threshold M is both:

• Sufficient to overcome F potential faults
• Achievable given the total participant count N

Dual Application Contexts

KERI applies supermajority thresholds in two critical scenarios:

1. Witness Pools: For witnessed events, the supermajority determines how many witnesses must confirm a key event to establish its validity. This prevents a dishonest controller from creating conflicting event versions that could both appear valid, enabling duplicity detection.

2. Multi-Signature Groups: For multi-sig identifier control, the supermajority sets the signing threshold for group operations. Using the ample threshold prevents accidental lockout - where a group could lose access to their identifier if the signing threshold were set too low.

Accountability Foundation

KERI's supermajority consensus forms the basis for accountability - determining what actions a controller of a KERI identifier can be held legally responsible for. When a supermajority of witnesses confirm an event, the controller becomes accountable for that event's effects, even if they later claim it was unauthorized.

This accountability mechanism is captured in the TOAD (Threshold of Accountable Duplicity) - the threshold number M that the controller declares to accept accountability for an event when any subset M of the N witnesses confirm that event.

Flexible Fault Tolerance

KERI's implementation allows controllers to choose their desired fault tolerance level by selecting:

• N: The total number of witnesses in their witness pool
• F: The number of potentially faulty witnesses they want to tolerate
• M: The resulting supermajority threshold (calculated from N and F)

This flexibility enables different security/performance trade-offs for different use cases:

• High-security identifiers might use larger witness pools (higher N) with higher fault tolerance (higher F)
• Performance-oriented identifiers might use smaller witness pools with lower fault tolerance
• Cost-sensitive applications can balance witness costs against security requirements

Weak vs. Strong Thresholds

The KERI implementation includes a weak parameter that determines whether to minimize or maximize M for a given F:

• Weak mode (weak=True): Finds maximum F and minimizes M - more permissive, easier to reach consensus
• Strong mode (weak=False): Finds maximum F and maximizes M - more restrictive, harder to reach consensus but more secure

This allows fine-tuning of the security/liveness trade-off based on application requirements.

Practical Implications

Security Guarantees

Supermajority thresholds provide concrete security guarantees:

1. Duplicity Prevention: A dishonest controller cannot create two conflicting versions of their KEL that both achieve supermajority confirmation, making duplicity detectable.

2. Fault Tolerance: The system continues to function correctly even when up to F witnesses are compromised, offline, or behaving maliciously.

3. Unambiguous Consensus: Either a supermajority is reached (providing certainty) or no agreement occurs (failing safely).

Use Cases

High-Value Identity Management: Organizations managing critical identities (corporate identities, credential issuers) can use larger witness pools with higher supermajority thresholds to ensure maximum security and accountability.

Delegated Authority: When delegating authority to sub-identifiers, the delegator can require supermajority confirmation from the delegate's witnesses before accepting delegated events, preventing unauthorized delegation.

Multi-Signature Operations: Groups controlling shared identifiers (corporate boards, multi-party agreements) use supermajority thresholds to ensure that key operations require broad consensus while preventing lockout scenarios.

Credential Issuance: QVIs and other credential issuers can use supermajority witness confirmation to ensure that credential issuance events are properly witnessed and accountable.

Trade-offs

Liveness vs. Safety: Higher supermajority thresholds (larger M) provide stronger safety guarantees but may reduce liveness - if too many witnesses are offline, consensus cannot be reached. Lower thresholds improve liveness but reduce fault tolerance.

Cost vs. Security: More witnesses (higher N) enable higher fault tolerance (higher F) but increase operational costs (witness hosting, network communication). Applications must balance security requirements against resource constraints.

Latency vs. Certainty: Waiting for supermajority confirmation introduces latency compared to accepting events immediately. However, this latency provides cryptographic certainty that the event is valid and accountable.

Flexibility vs. Complexity: KERI's flexible supermajority configuration (choosing N, F, weak/strong modes) provides powerful customization but requires understanding the mathematical relationships and security implications.

Best Practices

1. Calculate Ample Correctly: Always use the ample calculation to determine M based on your chosen N and F - never set thresholds arbitrarily.

2. Consider Fault Models: Choose F based on realistic threat models - how many witnesses might realistically be compromised or fail simultaneously?

3. Plan for Growth: When establishing witness pools, consider future growth - adding witnesses later requires rotation events.

4. Monitor Witness Health: Regularly verify that sufficient witnesses are online and responsive to maintain liveness guarantees.

5. Document Accountability: Clearly communicate the TOAD threshold to all parties so accountability expectations are understood.

The supermajority concept in KERI provides a mathematically rigorous foundation for distributed consensus that balances security, accountability, and operational flexibility - enabling trustworthy decentralized identity systems without relying on centralized authorities or global ledgers.

Balance these costs against security requirements when choosing N and F.