This is based on my (very limited) understanding of the ARK Bitcoin L2 protocol. So naturally there will be mistakes and I want to apologize for them upfront. My hope is that instead of blaming you can come up with some good PRs to improve the document. (This also exploits a psychological fact: rather than answering questions, people are more vocal when somebody is wrong on the internet :p)
Goals are that this becomes factually correct but on the other hand also as simple as possible so a newcomer can easily understand what is going on.
Analogies usually make things easier to understand so I'm starting this way, but perhaps we will need to change that in the future.
ARK is like an amusement park. An ARK service provider (ASP) is the actual amusement park down the road. There can be many instances of them but since one doesn't need to interact with the other ones we will focus only on one. The only ride offered is a "lightning train". More on this later. But before you can use it you need to buy chips (vTXOs).
So people come to the entrance and every 5 seconds they put money (BTC) on the table (offer some bitcoin UTXOs) and get chips (vTXOs). Or rather people also bring their own plastic, park just adds a stamp and makes the chips valid (convenant construction so the on-chain footprint is minimal). There is a green chip worth 1000 sats, a blue one worth 10k sats and so on. The cashier has no clue who got which particular blue chip, he just knows that the same amount of chips were approved as there was money (actually even bit less since there is a service fee). Each time a new round of chips were "sold" cashier runs to the bank and puts the money into a time-locked safe (a bitcoin transaction is created). This way the amusement park cannot touch the money for 4 weeks.
Chips have an expiration time. Think of it like the park changing all the stamps. But the neat part is that during the validity of the chips user A can directly trade them with user B. It still works like bitcoin transactions, so A doesn't directly give B the chips but instead creates another vTXO which has an input from the previous vTXO (and thereby destroying the old vTXO). However this is all off-chain.
Only when the amusement park is non-cooperative and you still have valid chips you can get money (BTC) back but this is costly. You need to run to your local court (bitcoin blockchain) with the picture of the entrance (pool transaction id) and history of coin changing hands. Then the court says ok seems the park was FDIC insured afterall, go on place your chips into this locker then you can create a new transaction.
Else there is no way to convert chips back to money again. You might be wondering what to do to prevent a chip from expiring. Well you again come to the entrance and instead of money offer the old chip. Remember this is a local thing, nobody else accepts those chips (beside people trusting the ASP). So if also the cashier plays dumb you can take it to the court (like explained in the previous paragraph). Usually that will not be the case and amusement park will honor the face value of the chip (that was once rubber stamped by them).
Problem is just the "official requirement" that all chips must be backed by real-money (which comes from the fact vTXO cannot be used as an UTXO input for a new transaction). So if you put a blue chip on the table amusement park will come up with real 10k sats and put them into the box with the other money collected. So in essence park provides liquidity. They know that after the 4 weeks all the chips will be worthless and the bank safe time-lock will expire so they can get back the loaned money. And the service fee compensates them for their time. Afterall also the collected money is locked. Exchanging old chips for newer ones does not accure a service fee (but you alredy paid once for the initial exchange). TODO: is this correct?! There is still the possibility of user cheating and double spending the vTXO but in that case park has to involve the court.
Now we learned that people come to this amusement park only for the side-effects i.e., to get cool easily tradable chips. But instead of trading with each other they can also use the chips to pay for the "lightning train". This basically means park is paying your lightning invoice in off-chain exchange for your chips (in a similar way as if this was a custodial lightning service provider just without the need to fully trust the ASP).
The ARK tradeoff is basically that ASPs do lots of bitcoin transactions (with some upper bound independent of usage), but all users can transact without the need to hit the blockchain (unless there is some cheating). So eventhough there are a lot of transactions it is still O(1). According to Stacker.News thread ~15k vB is commited to mempool every 10 minutes (which limits number of ASPs to around 256).
The only time users need to utilize the bitcoin blockchain is to acquire vTXOs but even that will be a batch transaction with multiple users (which like a coinjoin ensures anonymity). The other way is to acquire chips (vTXO inputs to your newly created vTXO) on the secondary market (possibly even directly for fiat). TODO: or by lifting an UTXO in a trustless way? I suppose lifting is the pool transaction already.
This is nicely explained already in https://www.arkpill.me/deep-dive. What I did not understand however was if you had a hypothetical OP_CHECKTXIDFROMUTXOSETVERIFY
it would work with any transaction ID. The "connector hack" works just
for special transactions. The transactions are special in a sense that they contain an additional output that another transaction can use as input. It is just 450 sats so it is above dust limit. I suppose anyone could spend that but it does not make sense since the reward is minimal in comparison to transaction fee to actually sweep the funds. By commiting to this input your tx can be put on-chain only if the connected one already exists (and thus form the "txlock").
How does the ASP make sure a user doesn't DoS it? In a sense that user A doesn't transfer his vTXO to A' and then to A'' and so on. ASP always needs to "cough up" a new ("real") UTXO for a transfer to happen so 1 BTC vTXO could soon mean a lot of BTC locked on the ASP side.
The missing point I did not understand was that despite designed to save blockspace transfers on Ark are not totally free from an end-user perspective. There is always a cost attached and it could even be dynamically adjusted depending on how much capital ASP has to spare. So it's still asymmetrical (ASP uses more bitcoin than user), but at least user can't execute the attack free of charge. This brings the next question how does the user refresh their vTXO before expiration then. Or are his sats dimishing this way despite doing transactions. The trick here is that from the vTXO (that is not published) it is not evident how old it is. But ASP of course knows the age since he had to construct the covenants. So it is trivial for the ASP to offer a discount or more likely even free transfer some short period before old vTXO expires. In that time window you either refresh the vTXO by transfering it to yourself or to somebody else (and those two are not distinguishable). But that is all an implementation detail of ASP (not a problem that needs to be dealt on Ark protocol).