Ethereum is essentially the most safe blockchain ecosystem. That is the results of 10 years of progress and iteration throughout each degree of Ethereum’s expertise stack, from pockets UX to developer tooling to consensus protocol safety.
However being essentially the most safe platform within the crypto ecosystem isn’t sufficient. Ethereum’s ambition is much larger: to be civilization-scale infrastructure that securely underpins the web and world financial system, surpassing the security and trustworthiness of the world’s legacy programs.
At present we’re saying the Trillion Greenback Safety initiative, an ecosystem-wide effort to improve Ethereum’s safety to assist deliver the world onchain.
Reaching “Trillion Greenback safety” means a world the place:
- Billions of people are every snug storing greater than $1000 onchain, collectively amounting to trillions of {dollars} secured on Ethereum.
- Corporations, establishments or governments are snug storing greater than 1 trillion {dollars} of worth inside a single contract or software.
What’s going to the 1TS undertaking do?
This initiative has three elements:
(1) Mapping the panorama of safety strengths and assault vectors throughout each area and layer of Ethereum’s expertise stack. We’ll collect enter from throughout the ecosystem and synthesize this right into a safety overview report that can assist us determine focus areas.
This mapping will span a variety of domains, together with: UX (blind signing, frontend safety), pockets safety (firmware points, provide chain assaults), sensible contract safety (developer tooling, commonplace libraries), infrastructure (cloud safety, dependency administration), consensus and protocol safety (DOS dangers, stake centralization), web infra (DNS degree censorship), and extra.
(2) Executing on enhancements in focus areas recognized in the course of the mapping overview. We’ll work intently with the ecosystem to implement near-term excessive precedence fixes and allocate investments for long term enchancment tasks.
(3) Speaking extra successfully about Ethereum’s safety. Customers of all types ought to have the ability to perceive, make the most of, and profit from Ethereum’s sturdy safety basis. Anybody ought to have the ability to consider Ethereum’s safety requirements and evaluate these in opposition to different blockchains and legacy programs.
Who will contribute to this undertaking?
On the Ethereum Basis, the undertaking will likely be pushed by Fredrik Svantes (Protocol Safety Lead) and Josh Stark (EF administration workforce) because the preliminary co-chairs of the undertaking.
They are going to be supported by three ecosystem stewards who will assist information the undertaking and supply enter and recommendation.
samczsun
samczsun is the founding father of the Safety Alliance (SEAL) and works with main technologists and researchers to safe the way forward for crypto. He acquired his begin in crypto by means of responsibly disclosing dozens of important vulnerabilities throughout varied protocols and publishing technical writeups. He’s additionally a safety advisor at Paradigm.
Mehdi Zerouali
Mehdi is a co-founder & director of Sigma Prime, a number one blockchain safety and analysis firm. Mehdi has been within the offensive data safety trade for over 15 years and has carried out tons of of safety assessments focusing on important infrastructure and purposes. With Sigma Prime, Mehdi leads a workforce of safety engineers devoted to the Blockchain house, serving to distinguished tasks safe their decentralized protocols.
Zach Obront
Zach is a co-founder of Etherealize, the place he’s constructing merchandise to maneuver world monetary infrastructure onto Ethereum. He spearheaded the preliminary construct of OP Succinct, the primary full ZK validity proof model of the OP stack. Zach has been working in web3 safety since 2022, main audit contests, engaged on non-public audits, and uncovering important bugs to assist safe the ecosystem.
We would like your assist!
Attaining Trillion Greenback Safety is simply potential with the help of the broad Ethereum ecosystem.
We would like your perspective and enter on the place Ethereum’s safety wants to enhance. Whether or not you might be a person person or a safety auditing agency, we wish to hear from you!
If you happen to or your group is involved in contributing enter, please achieve this by means of this form the place we’re accumulating responses to assist inform our work.
In case you are involved in sharing additional data, we’re eager to have extra in-depth discussions with stakeholders throughout the ecosystem. You possibly can attain us at trilliondollarsecurity@ethereum.org
Replace: Following this weblog’s publication, a Security Challenges Overview report was released as part of the Trillion Dollar Security Initiative.
