모든 DeFi 프로토콜은 다음을 갖춰야 합니다:
1. 입금 및 출금, 그리고 경우에 따라 기타 내부 운영에 대한 회로 차단기
2. 모든 변경 사항에 대한 시간 제한
3. 의정서를 즉시 중단시킬 수 있는 안전보장이사회

보험 같은 건 필요 없어. 우린 기본부터 제대로 해야 해. 이 분야가 아직 보조바퀴 없이 운전하기엔 너무 이르다고.

제발 부탁드립니다. 사용자 경험(UX)을 조금 희생하더라도 큰 마음의 평화를 얻을 수 있습니다. 최악의 UX는 사용자의 돈을 잃는 것입니다.

저는 이 분야의 보안 상태에 극도로 실망했습니다.

일반적으로 감사는 프로토콜과 구현이 사양과 일치하는지 여부에 중점을 둡니다. 그러나 대부분의 공격은 이러한 부분이 아니라 쿼럼, 키 관리 시스템, 배포 프로세스, 그리고 팀의 보안 관리 상태와 같은 곳에서 발생합니다.

프로토콜 감사는 필수적이지만, 그 범위가 턱없이 부족하며 (경험이 부족한) 팀과 외부 사용자 모두에게 잘못된 자신감을 심어줍니다.

이 경우 해결책이 무엇인지는 잘 모르겠습니다. 팀들이 분명히 더 잘해야 하고, 감사관들도 감사 범위를 넓혀야 할 것 같습니다. 그렇지 않고서야 팀이 보기 좋은 집을 짓고도 현관문과 창문 다섯 개를 활짝 열어놓는 짓을 하지 않았다고 어떻게 믿을 수 있겠습니까?

https://x.com/hasufl/status/2039616666162565380

Telegram

All DeFi protocols must have the following:

1. Circuit breakers for deposits and withdrawals, and in some cases, other internal operations

2. Time limits for all changes

3. A security board capable of immediately halting the protocol

We don't need insurance. We need to get the basics right. It is still too early for this field to drive without training wheels.

Please, I beg you. You can gain great peace of mind even if you sacrifice a little User Experience (UX). The worst UX is losing a user's money.

I am extremely disappointed with the state of security in this field.

Generally, audits focus on whether protocols and implementations align with specifications. However, most attacks occur not in these areas, but in places like quorums, key management systems, deployment processes, and the security management status of the team.

Protocol audits are essential, but their scope is woefully inadequate and instills false confidence in both (inexperienced) teams and external users.

I am not sure what the solution is in this case. Teams clearly need to do better, and auditors need to broaden their audit scope. Otherwise, how could you believe that Tim didn't build a nice-looking house and leave the front door and five windows wide open?

https://x.com/hasufl/status/2039616666162565380

The most visible bitcoin buyers in the world are buying at near-record pace. It is not enough.
A CryptoQuant weekly report showed overall 30-day apparent demand at negative 63,000 $BTC as of late Marc...

Five data sources say the same thing about bitcoin market. It's thinning from the inside

I. It suddenly started charging money, but you probably didn't even notice.

You might have seen pages like these:

- "Probability of Trump winning the 2024 election: 51.3%"

- "Probability of the Fed cutting interest rates in March: 68.7%"

- "LPL Spring Split Finals, BLG's odds of winning: 1.39"

This isn't a betting website, nor is it media commentary; it's a special entity in the Web3 world—a prediction market.

Simply put, it's a mechanism where you "vote" with real money: you believe something will...

Polymarket, the world's largest prediction market, has started charging fees! Behind this lies a sobering struggle over regulation, survival, and timing.

Source: Synced

Just now, a historic "closed-door" event occurred in the AI community.

Anthropic has officially banned access to OpenClaw using its own subscription plan!!!

Boris Cherny, the creator of Claude Code, announced: Starting at 3 PM EST on April 4th (3 AM Beijing time on April 5th), Claude will block all third-party tools; access to these tools will only be available through additional subscription plans or APIs.

[OpenClaw] This means that thousands of users who rely on OpenClaw for improvements...