콘텐츠로 이동

Security Model

고지 사항: 이 백서는 영어 버전이 공식 문서입니다. 다른 언어 버전은 참고용입니다。

Defense in Depth

섹션 제목: “Defense in Depth”
┌─────────────────────────────────────────────────────────────────┐
│                   SECURITY LAYERS                               │
├─────────────────────────────────────────────────────────────────┤
│                                                                 │
│  Layer 1: Smart Contract Security                               │
│  ├── Audited code (2+ firms)                                   │
│  ├── Formal verification (critical functions)                  │
│  ├── Test coverage >95%                                        │
│  └── Invariant testing                                         │
│                                                                 │
│  Layer 2: Access Control                                        │
│  ├── Role-based permissions                                    │
│  ├── Multi-sig wallets (3/5, 4/7)                             │
│  ├── Timelock on sensitive operations                          │
│  └── Key ceremony procedures                                   │
│                                                                 │
│  Layer 3: Operational Security                                  │
│  ├── Hardware wallets required                                 │
│  ├── Geographic distribution                                   │
│  ├── Background checks                                         │
│  └── Incident response plan                                    │
│                                                                 │
│  Layer 4: Monitoring & Response                                 │
│  ├── Real-time anomaly detection                               │
│  ├── Bug bounty program                                        │
│  ├── Emergency pause capability                                │
│  └── Insurance coverage                                        │
│                                                                 │
└─────────────────────────────────────────────────────────────────┘

Audit Program

섹션 제목: “Audit Program”

Completed Audits

섹션 제목: “Completed Audits”
AuditorScopeFindingsStatus
[TBD]Core contracts[TBD]Planned
[TBD]Oracle[TBD]Planned

Bug Bounty

섹션 제목: “Bug Bounty”
SeverityReward
CriticalUp to $100,000
HighUp to $25,000
MediumUp to $5,000
LowUp to $1,000

Access Control

섹션 제목: “Access Control”

Role Hierarchy

섹션 제목: “Role Hierarchy”
ADMIN_ROLE (4/7 multi-sig)
├── Can upgrade contracts
├── Can add new underlyings
└── Can modify parameters


PAUSE_ROLE (2/5 multi-sig)
├── Can pause contracts
└── Can resume (with timelock)


ORACLE_ROLE (2/3 committee)
├── Can update prices
└── Can resolve disputes


OPERATOR_ROLE (team)
├── Can execute settlements
└── Can manage LP operations

Emergency Procedures

섹션 제목: “Emergency Procedures”

Pause Protocol

섹션 제목: “Pause Protocol”
Emergency Pause Flow:
├── 1. Threat detected
├── 2. Any PAUSE_ROLE holder triggers pause
├── 3. All trading halted immediately
├── 4. Team notified (PagerDuty)
├── 5. War room assembled
├── 6. Investigation begins
└── 7. Resume requires 2/3 PAUSE_ROLE + 24h cooldown

Incident Response

섹션 제목: “Incident Response”
PhaseTimelineActions
Detection0-15 minAlert, assess, pause if needed
Containment15-60 minIsolate threat, secure assets
Investigation1-24 hoursRoot cause analysis
Recovery1-7 daysFix, audit, resume
Post-mortem7 daysReport, improvements

Insurance

섹션 제목: “Insurance”
CoverageAmountProvider
Smart contract exploit$5MNexus Mutual
Custodian failure$10MTraditional
D&O$5MTraditional

Next Steps

섹션 제목: “Next Steps”