Why will the modular security layer of GoPlus Network bring a new situation to the security of Web3?

2024-05-14 06:30:35 Views

Early in the morning, I saw @GoPlusSecurity planning to build a modular unified user security layer. As a former Crypto security veteran, my unfulfilled security vision has been reignited. The most important direction for security in Crypto has always been too "service"-driven, always in the awkward situation of "hastily responding beforehand, regretting afterwards," how can we break this pattern? Will a modular security unified network be the best solution? Next, let me share my thoughts:

1) Security issues are always only valued after incidents occur, which is what we often refer to as a "security awareness" issue. It cannot be improved through short-term appeals and shouts, but is destined to gradually transform into a sense of alertness only after being stung by hacking attacks and phishing incidents time and time again.

Moreover, "security incidents" will only decrease as the industry matures, but they will not disappear. Therefore, security as a "service" will always be needed, but it will always be passively needed, which is not conducive to security companies improving their position in the Crypto ecosystem;

2) Modularization has become a common development path in the Crypto field, whether it's a middleware network, layer2, or some independently split DA modules, Execution modules, Settlement modules, and the anticipated Security security layer module, all are gradually becoming key modules that constitute the main elements of Crypto.

In the future, the consensus layer, settlement layer, execution layer, DA layer that originally constituted the chain will be independently encapsulated in a modular way, with high interoperability, embedded into the architecture systems of various blockchains. The security module layer will also become an essential or must-have plug-and-play additional capability for each chain;

3) As the industry as a whole matures, pure B-end hacking incidents are decreasing, which is directly related to the continuous security protection efforts of the entire industry's developers and the industry code progress driven by the DeFi black forest, but the decrease in B-end security incidents does not mean that the overall security threat will disappear, as a large number of phishing attacks have become a new round of security hotspots. Therefore, a security module layer oriented towards the C-end and providing users with "unconscious" security protection must bravely shoulder its mission;

4) Why emphasize "unconscious"? Because with technological advancement and industry maturity, complex problems must be abstracted to the backend infra layer to be solved, and the gap perceived by front-end users must become smaller and smaller. Based on modular construction of chain security components, involving timely blocking of dangerous suspicious transactions, pre-chain transaction path simulation, front-end Alert warnings before signing, updating of chain-related Oracle information such as phishing websites, KYC anti-money laundering compliance supervision, etc.

In theory, it's simple, but in practice, it's not easy to thoroughly leverage the value of modular security layers, as it involves compatibility with various chains, different consensuses, and matching with rudimentary Wallets, Dex protocols in different environments;

5) If security remains at the "service" layer, an inevitable reality is the emergence of countless plugins, various tools, and even different security solutions for developers, ordinary users, traders, institutional users, etc. As a result, the competition between security companies is fierce, and ordinary users do not have a tangible sense of improvement in security levels.

The security industry also needs a unified security module layer to continuously provide security warnings and enhance user experience for C-end users, while being highly compatible with B-end developers and infrastructures such as chains, wallets, protocols, etc. In the long run, the security awareness and protection efforts of C-end and B-end can be consistently improved.

In conclusion, security attacks and defenses will always be a difficult problem in the Crypto field because money is too close, and there will always be hacker organizations lurking in the dark, scanning for weak security environments to attack.

Essentially, both hacker attacks and security defenses are cost confrontations, with the goal of increasing the cost of hacker attacks for protection. Fragmented security services are like guerrilla warfare, while a unified front-line defense of a consistent security chain ecosystem and modular security layers, in my opinion, is currently the best solution to enhance Crypto security levels.

  Disclaimer: Includes third-party opinions. No financial advice. See Risk Warning.
  
Title:Why will the modular security layer of GoPlus Network bring a new situation to the security of Web3? - Markets
Address:https://www.j56.xyz/markets/7170.html

You may also like

Related Articles