콘텐츠로 이동

Security Model

고지 사항: 이 백서는 영어 버전이 공식 문서입니다. 다른 언어 버전은 참고용입니다。


┌─────────────────────────────────────────────────────────────────┐
│ SECURITY LAYERS │
├─────────────────────────────────────────────────────────────────┤
│ │
│ Layer 1: Smart Contract Security │
│ ├── Audited code (2+ firms) │
│ ├── Formal verification (critical functions) │
│ ├── Test coverage >95% │
│ └── Invariant testing │
│ │
│ Layer 2: Access Control │
│ ├── Role-based permissions │
│ ├── Multi-sig wallets (3/5, 4/7) │
│ ├── Timelock on sensitive operations │
│ └── Key ceremony procedures │
│ │
│ Layer 3: Operational Security │
│ ├── Hardware wallets required │
│ ├── Geographic distribution │
│ ├── Background checks │
│ └── Incident response plan │
│ │
│ Layer 4: Monitoring & Response │
│ ├── Real-time anomaly detection │
│ ├── Bug bounty program │
│ ├── Emergency pause capability │
│ └── Insurance coverage │
│ │
└─────────────────────────────────────────────────────────────────┘

AuditorScopeFindingsStatus
[TBD]Core contracts[TBD]Planned
[TBD]Oracle[TBD]Planned
SeverityReward
CriticalUp to $100,000
HighUp to $25,000
MediumUp to $5,000
LowUp to $1,000

ADMIN_ROLE (4/7 multi-sig)
├── Can upgrade contracts
├── Can add new underlyings
└── Can modify parameters
PAUSE_ROLE (2/5 multi-sig)
├── Can pause contracts
└── Can resume (with timelock)
ORACLE_ROLE (2/3 committee)
├── Can update prices
└── Can resolve disputes
OPERATOR_ROLE (team)
├── Can execute settlements
└── Can manage LP operations

Emergency Pause Flow:
├── 1. Threat detected
├── 2. Any PAUSE_ROLE holder triggers pause
├── 3. All trading halted immediately
├── 4. Team notified (PagerDuty)
├── 5. War room assembled
├── 6. Investigation begins
└── 7. Resume requires 2/3 PAUSE_ROLE + 24h cooldown
PhaseTimelineActions
Detection0-15 minAlert, assess, pause if needed
Containment15-60 minIsolate threat, secure assets
Investigation1-24 hoursRoot cause analysis
Recovery1-7 daysFix, audit, resume
Post-mortem7 daysReport, improvements

CoverageAmountProvider
Smart contract exploit$5MNexus Mutual
Custodian failure$10MTraditional
D&O$5MTraditional