How Does BOB (Build on Bitcoin) Work?

L2|Risk C|6 mechanisms|5 interactions

BOB (Build on Bitcoin) is a hybrid Layer 2 that bridges Bitcoin and Ethereum ecosystems — it's an Optimism Stack rollup where Bitcoin holders can use their BTC in EVM-compatible DeFi without moving to a separate network. Backed by $23M in funding, BOB offers Bitcoin-native wallets that interact directly with EVM applications. The current BTC bridge uses a federated multisig model (similar to tBTC or WBTC), with a planned upgrade to BitVM-based trust-minimized bridging. BOB has grown to $180M TVL, primarily from BTC liquidity seeking DeFi yield.

TVL

$180M

Sector

L2

Risk Grade

C

Value Grade

C

Core Mechanisms

Rollup > Optimistic

OP Stack rollup with Bitcoin as additional data layer

Standard OP Stack architecture extended for Bitcoin ecosystem compatibility

Bridge > Federated Multisig

Novel

Current tBTC/WBTC bridge with BitVM planned migration

Hybrid approach: federated bridge now, BitVM trust-minimized bridge planned

Bridge > Lock-Mint

Ethereum bridge using standard OP bridge

Standard OP Stack bridge for ETH/ERC-20 assets

Account Abstraction > Passkeys

Novel

Bitcoin-native AA enabling Bitcoin wallet interactions

Allows Bitcoin wallet users to interact with EVM DeFi without key conversion

Execution > EVM

Full EVM compatibility on Bitcoin-secured L2

Standard EVM execution environment on the rollup

Proof > BitVM

Novel

BitVM-based fraud proofs for Bitcoin-anchored security (planned)

Novel use of BitVM for bridging Bitcoin security to EVM rollup — still in research/development

How the Pieces Interact

Federated BTC BridgeEVM DeFi ProtocolsHigh

BTC bridge multisig compromise drains all wrapped BTC used as collateral in BOB DeFi

OP Stack SequencerBitcoin BridgeHigh

Sequencer downtime prevents Bitcoin bridge interactions, locking BTC deposits

BitVM Fraud Proofs (Planned)Current Federated BridgeMedium

Migration from federated to BitVM bridge introduces transition period vulnerability window

Bitcoin AA WalletsEVM ExecutionMedium

Key translation layer between Bitcoin and EVM accounts creates novel phishing surface for wallet drainers

Ethereum SettlementBitcoin AnchoringMedium

Dual blockchain dependency means both Ethereum AND Bitcoin network issues affect BOB simultaneously

What Could Go Wrong

  1. Hybrid Bitcoin-EVM bridge creates dual attack surface across both Bitcoin and Ethereum ecosystems
  2. Novel Bitcoin L2 architecture with untested security assumptions under adversarial conditions
  3. Optimism Stack bridge carries standard 7-day withdrawal delay with centralized sequencer risk
  4. BitVM-based trust-minimized bridge still in development — current bridge relies on multisig federation

Federated BTC Bridge Multisig Compromise

Tail

Trigger: BTC bridge federation multisig keys compromised, enabling attacker to drain all Bitcoin locked in the bridge

  1. 1.Attacker compromises threshold of bridge federation multisig keys Control over all BTC locked in bridge; ability to redirect withdrawals
  2. 2.Bitcoin drained from bridge federation addresses Wrapped BTC on BOB becomes unbacked; WBTC/tBTC price collapses on BOB
  3. 3.BTC collateral in DeFi protocols triggers cascade liquidations on bad debt BOB DeFi ecosystem insolvent; TVL collapses; user losses across all BTC-backed positions
See all 2 collapse scenarios in the full risk report →

Risk Profile at a Glance

Mechanism Novelty9/15
Interaction Severity13/20
Oracle Surface5/10
Documentation Gaps4/10
Track Record5/15
Scale Exposure5/10
Regulatory Risk3/10
Vitality Risk4/10
C

Overall: C (48/100)

Lower score = safer

More on BOB (Build on Bitcoin)

Is BOB (Build on Bitcoin) Safe?

Safety analysis

Is BOB (Build on Bitcoin) a Good Investment?

Value analysis

Full Risk Report

All mechanisms & interactions

Related L2 Explainers

How Does MegaETH Work?CHow Does Fuel Network Work?CHow Does Blast Work?CHow Does Movement Work?CHow Does Manta Network Work?C