Key Takeaways
- The Solana Foundation has launched STRIDE, a program designed to independently monitor and evaluate the security of DeFi protocols.
- Protocols with over $10M in TVL receive funded security support, while those above $100M get access to advanced formal verification.
- The new Solana Incident Response Network (SIRN) creates a unified front of security researchers to tackle active threats.
In an era where decentralized finance continues to face sophisticated attacks, the Solana Foundation is taking a heavy-handed approach to ecosystem safety. In collaboration with Asymmetric Research, the foundation has unveiled a series of initiatives aimed at moving security from a reactive “after-the-fact” mindset to a proactive, continuous evaluation model.
While Solana has achieved massive growth in total value locked (TVL), the Foundation is making it clear that scaling must be matched by a rigorous commitment to code integrity and threat mitigation.
Monitoring and evaluating security through the STRIDE program
The flagship of this effort is STRIDE (Solana Trust, Resilience and Infrastructure for DeFi Enterprises). Unlike traditional audits which are often static snapshots in time, STRIDE is a structured program for ongoing monitoring.
Asymmetric Research will utilize its own security framework to independently grade projects, with the results being made public. This transparency is intended to give investors a clear metric for risk. To incentivize participation, the Foundation is footing the bill for operational security support and threat monitoring for any protocol exceeding $10 million in TVL that passes the evaluation.
For the “heavyweights”—protocols with over $100 million—the Foundation is providing formal verification tools to mathematically prove the safety of their smart contracts.
Building the Solana Incident Response Network (SIRN)
Complementing STRIDE is the launch of the Solana Incident Response Network (SIRN). This membership-based collective includes founding participants like OtterSec and Neodyme, creating a “911 system” for the blockchain.
SIRN is designed to prioritize help based on a protocol’s TVL, ensuring that the most systemic risks to the ecosystem are addressed first during an active exploit.
However, the Foundation was quick to include a “reality check” in its announcement: these tools are meant to augment, not replace, the responsibility of individual development teams. Security is a shared burden, and the STRIDE program is the infrastructure meant to support those who take that burden seriously.
Final Thoughts
The launch of STRIDE and SIRN demonstrates that Solana is maturing into an enterprise-grade network. By funding these high-level security services, the Foundation is effectively subsidizing the safety of every user in the ecosystem.
Frequently Asked Questions
Is STRIDE mandatory for all Solana projects?
No, but it is highly encouraged, and the public nature of the results acts as a strong incentive for transparency.
What is formal verification?
It is a process of using mathematical proofs to ensure a smart contract performs exactly as intended without bugs or vulnerabilities.
Can any project join SIRN?
SIRN is available to all Solana protocols, but resources and response times are prioritized for those with higher TVL.
