Security

Our Approach to Security

At Interstable, security is not an afterthought; it is a foundational principle guiding every aspect of our platform design, development, and operations. We understand that users entrust us with their assets (once aiUSD is launched), and we take this responsibility with utmost seriousness.

Our multi-layered security strategy includes:

Smart Contract Security:
- Rigorous Audits: All smart contracts underpinning Interstable and aiUSD will undergo multiple comprehensive security audits by reputable, independent third-party cybersecurity firms before any mainnet deployment involving user funds. We are in Talks with Ackee ( LIDO, AAVE, 1INCH, PENDLE).
- Best Practices in Development: Our smart contracts are being developed adhering to the latest security best practices, including the use of well-tested libraries extensive unit and integration testing, and checks for common vulnerabilities.
- Simplicity & Modularity: We aim for clarity and simplicity in our contract design where possible, as complexity can be a source of vulnerabilities. Modular design helps isolate potential issues.
- (Future) Formal Verification: For critical components, we will explore formal verification techniques to mathematically prove contract correctness.
- (Future) Bug Bounty Programs: Post-launch, we plan to implement a comprehensive bug bounty program to incentivize responsible disclosure of potential vulnerabilities by white-hat hackers.
Operational Security:
- Multisignature Controls: All privileged functions within our smart contracts (e.g., upgrades, parameter changes, emergency actions) will be controlled by multisignature (multisig) wallets, requiring approvals from multiple trusted keyholders.
- Timelocks: Critical administrative actions will be subject to timelocks, providing a delay between the proposal of a change and its execution, allowing for community review and reaction.
- Principle of Least Privilege: Access controls will be implemented to ensure that components and addresses only have the minimum permissions necessary for their function.
AI & Data Security:
- While AIxFI primarily analyzes public data, any proprietary aspects of its algorithms and internal data processing will be secured.
- Integrity checks for data feeds from third-party sources to mitigate risks from corrupted or manipulated data.
Proactive Monitoring & Incident Response:
- We will implement robust monitoring for our smart contracts and platform infrastructure to detect anomalous activity.
- A clear incident response plan will be in place to address any security events swiftly and effectively, prioritizing user asset safety.
Transparency:
- All audit reports will be made publicly available.
- The composition and activity of the aiUSD backing portfolio (once launched) will be verifiable on-chain and displayed on our Transparency Dashboard.

Security is an ongoing process of diligence, adaptation, and continuous improvement. We are committed to maintaining the highest security standards to protect the Interstable ecosystem and its users.

PreviousEcosystem NextRisk Disclosures

Last updated 3 days ago

Our Approach to Security

Our multi-layered security strategy includes:

Smart Contract Security:

Rigorous Audits: All smart contracts underpinning Interstable and aiUSD will undergo multiple comprehensive security audits by reputable, independent third-party cybersecurity firms before any mainnet deployment involving user funds. We are in Talks with Ackee ( LIDO, AAVE, 1INCH, PENDLE).
Best Practices in Development: Our smart contracts are being developed adhering to the latest security best practices, including the use of well-tested libraries extensive unit and integration testing, and checks for common vulnerabilities.
Simplicity & Modularity: We aim for clarity and simplicity in our contract design where possible, as complexity can be a source of vulnerabilities. Modular design helps isolate potential issues.
(Future) Formal Verification: For critical components, we will explore formal verification techniques to mathematically prove contract correctness.
(Future) Bug Bounty Programs: Post-launch, we plan to implement a comprehensive bug bounty program to incentivize responsible disclosure of potential vulnerabilities by white-hat hackers.

Operational Security:

Multisignature Controls: All privileged functions within our smart contracts (e.g., upgrades, parameter changes, emergency actions) will be controlled by multisignature (multisig) wallets, requiring approvals from multiple trusted keyholders.
Timelocks: Critical administrative actions will be subject to timelocks, providing a delay between the proposal of a change and its execution, allowing for community review and reaction.
Principle of Least Privilege: Access controls will be implemented to ensure that components and addresses only have the minimum permissions necessary for their function.

AI & Data Security:

While AIxFI primarily analyzes public data, any proprietary aspects of its algorithms and internal data processing will be secured.
Integrity checks for data feeds from third-party sources to mitigate risks from corrupted or manipulated data.

Proactive Monitoring & Incident Response:

We will implement robust monitoring for our smart contracts and platform infrastructure to detect anomalous activity.
A clear incident response plan will be in place to address any security events swiftly and effectively, prioritizing user asset safety.

Transparency:

All audit reports will be made publicly available.
The composition and activity of the aiUSD backing portfolio (once launched) will be verifiable on-chain and displayed on our Transparency Dashboard.

Security is an ongoing process of diligence, adaptation, and continuous improvement. We are committed to maintaining the highest security standards to protect the Interstable ecosystem and its users.