Safety & Security at Stride
We understand the importance of staying true to the core principles of liquid staking and providing a simple, secure platform for our users.
AUDITS
Stride has completed 10 audits from multiple industry leaders in blockchain security.
INFORMAL SYSTEMS
Informal's IBC experts have audited Stride a total of 7 times over the span of Stride's existence, covering all of its features and security measures.
OAK SECURITY
Oak Security has taken a close look at Stride's infrastructure two times now, covering its core functionality and ICA oracle contracts.
CERTIK
Back when Stride launched in 2022, the blockchain security experts at Certik have audited the architecture of the MVP for security.
ECONOMIC SECURITY
Stride is secured by the Cosmos Hub
As an ICS consumer chain, the Stride blockchain enjoys the same level of economic security as Cosmos Hub - [Loading...] dollars.
SAFETY FEATURES
Stride’s top priority is security.
it always has been and always will be.
Minimalistic design
Stride’s minimalist design means it has a small attack surface, fewer moving parts, fewer edge cases to consider. No features that aren’t core to liquid staking. Rather, do liquid staking simply and safely, do it right.
Rate limiting
On top of fail safes, in the event of an attack there would be another safety feature known as rate limiting that kicks into effect. This limits network traffic, putting a cap on the amount of funds that may be withdrawn from the network.
For example, a 5% rate limit might limit the amount of funds eligible to be withdrawn within a 24-hour period to only 5%.
Safety invariants
Invariant checks occur at each block (soon at every TX), verifying data integrity. Should an exploit occur, fail safes are triggered, limiting the impact. For example, an infinity mint attack would be detected and mitigated, with fail safes preventing funds from being withdrawn.
State monitoring
Stride is continuously monitored to ensure that all runs smoothly. This includes tracking how the data is changing and ensuring that key functions, such as user delegations and the reinvestment of rewards, are in order. Should anything out of the ordinary occur, an alert is triggered that will be addressed promptly.
BOUNTY PROGRAM
We value transparency and community involvement.
We have established a bug bounty program offering a substantial $1M bounty, one of the largest in the industry. As Stride grows, so does its commitment to ensuring your safety.
TESTING
Our rigorous testing pipeline includes local and network testing, software upgrade checks, and custom infrastructure that verifies state changes.
Interchain Integration tests
Stride’s testing framework simulates multiple blockchains connected via IBC, and passes packets between those blockchains to test all core Stride logic: liquid staking, unbonding, reinvestments, and more. No code changes are made until all integration tests pass.
Simulating 10K+ simultaneous users
Stride's custom “Firehose” testing framework simulates 10K+ users interacting with the protocol simultaneously. They liquid stake and unbond across all of Stride’s supported zones. Every user’s balance is then checked for accuracy.
High unit testing coverage
Every time a contributor proposes change to the Stride codebase, over 100+ unit tests verify the core protocol logic remains robust. This line of defense tests granularly, at a line-by-line level, aiming to traverse every single codepath in the Stride codebase.
Safe software updates
Full state verification and local simulation for software upgrades, including testing software upgrades locally on mainnet state with “localstride” and using custom infrastructure to compare state before and after an upgrade, independently verifying that all state changes are expected.
NOTE
It's important to note that while we prioritize safety, we cannot overlook the inherent risks associated with DeFi. Stride is not responsible for the potential risks you may encounter, and none of the information we provide should be considered legal advice. Despite our best efforts, no system is entirely immune to risks.
None of the above should be considered legal advice, and there is always a risk associated with any investment, including the potential loss of funds.