Audits are a key part of the security lifecycle of crypto protocols. Unfortunately, they’re not enough. Range and Oak Security are partnering to extend audits into long-term security monitoring and threat protection, providing a step towards an end-to-end security solution for Cosmos projects.
Performing smart contract and protocol audits are an established best practice before launching a system into production, especially if millions of dollars will be handled and are therefore at risk. However, as we’ve seen in examples like the Euler hack, security incidents are possible even after multiple audits.
There are several reasons why:
The way to mitigate these shortcomings of security audits is customized, in-depth, real-time security monitoring across the full development lifecyle. This approach will:
The answer is to set up an effective customized security real-time monitoring system using a tool like Range. The key word here is the “customized” part. And that’s where this partnership comes in.
Security auditors can get a very deep understanding of a protocol when they perform an audit. They can define invariants that should not be broken and expose dependencies and parameters that could leave the protocol vulnerable. Security auditors are perfectly positioned to define the best way to customize monitoring.
With this partnership, audits evolve from being a static security snapshot on a codebase to a natural extension of long-term security monitoring. The key to building resilient protocols is a secure in-depth approach across the full development lifecycle; design, development, audit, testing, deployment, monitoring and incident response.
Together, Oak Security and Range are working to provide the first end-to-end security coverage in the Cosmos ecosystem. With Oak Security and Range joining forces, Cosmos SDK chains and CosmWasm projects can boost their security with an end-to-end security solution completely adapted to their needs.
Range is the security platform for app-specific blockchains and rollups, with a focus on the Cosmos ecosystem and bridges such as the Inter-Blockchain Communication Protocol (IBC). Range's product suite encompasses tools for monitoring, threat detection and prevention, analytics and forensics, in order to strengthen the security of the interchain and modular ecosystems.