Solana (SOL) Foundation Launches STRIDE Security Program With 24/7 Threat Monitoring

Solana (SOL) Foundation just committed serious resources to ecosystem security, rolling out STRIDE and the Solana Incident Response Network (SIRN) on April 6. The move brings 24/7 threat monitoring to qualifying DeFi protocols and establishes a rapid-response coalition of security firms—all foundation-funded.

Here’s what actually matters for builders and users: protocols with more than $10 million in total value locked get free active threat monitoring. Hit $100 million TVL? The foundation picks up the tab for formal verification—the mathematical proof-based approach that exhaustively checks every possible execution path in smart contracts.

What STRIDE Actually Does

Led by Asymmetric Research, STRIDE evaluates protocols against eight security pillars, then publishes findings publicly. That transparency piece is significant. Users and investors will actually see how protocols stack up, not just take marketing claims at face value.

The monitoring coverage scales with risk. Protocols securing the most value get the most rigorous protection, designed to flag suspicious activity before it becomes a headline-grabbing exploit.

SIRN: When Things Go Wrong

SIRN handles the “oh shit” moments. The founding members—Asymmetric Research, OtterSec, Neodyme, Squads, and ZeroShadow—share threat intelligence and coordinate responses to active incidents around the clock.

Any Solana protocol can access SIRN, though response priority is tiered by TVL. Makes sense—a $500 million protocol getting drained demands faster mobilization than a $5 million one.

Free Tools Already Available

The announcement builds on existing security infrastructure that many teams aren’t fully utilizing:

Hypernative’s threat detection rolled out in September 2024, offering institutional-grade monitoring that can block malicious transactions before execution. Range Security, onboarded in October 2024, gives teams 100 free API credits monthly for real-time risk alerts. Neodyme’s Riverguard tool simulates attacks on programs at no cost. Sec3 offers X-Ray static analysis plus free 45-minute security consultations.

That’s a substantial toolkit sitting there unused by many smaller teams.

The Caveat

The foundation was explicit: these resources “ensure security, not replace what individual teams must do themselves.” Translation—if your protocol gets exploited because you ignored basic security hygiene, don’t expect sympathy because free tools existed.

For protocols managing significant user funds, rigorous security measures remain mandatory. The foundation is raising the floor, not absolving teams of responsibility.

Projects can request STRIDE assessments through the foundation’s application form. Given the free formal verification for $100M+ protocols alone—typically a six-figure expense—expect the queue to fill quickly.

Image source: Shutterstock