As the eBTC's contracts go into audit and the system's shape is finilized, it is time to think about the potential vulnerabilities and incidents that it can be exposed to after deployment. For this reason, Trust Security was engaged to performed an assessment of what these potential incidents could be and they came back with a report with their findings and a recommendation for an incident response plan.
A formal incident response plan should be put together, documented and shared with the team. In addition, any necessary monitoring and alerts must be put in place in accordance to the plan (Guardrail) - this may require for the final version of the contracts to be deployed but should be scoped out and perhaps tested with the testnet deployment.
dapp-whisperer
commented
1 year ago
As the eBTC's contracts go into audit and the system's shape is finilized, it is time to think about the potential vulnerabilities and incidents that it can be exposed to after deployment. For this reason, Trust Security was engaged to performed an assessment of what these potential incidents could be and they came back with a report with their findings and a recommendation for an incident response plan.
A formal incident response plan should be put together, documented and shared with the team. In addition, any necessary monitoring and alerts must be put in place in accordance to the plan (Guardrail) - this may require for the final version of the contracts to be deployed but should be scoped out and perhaps tested with the testnet deployment.
Supplementary_Report_Draft.pdf