[Temp Check] DeFiSafety Quality Certificate
Author: Rex Hygate
Date: 2024-04-10
Summary
This forum post is a request for 15K of funding for a DeFiSafety quality certificate for AAVE V3 and AAVE V2. This is an annual amount. We made this request last year and it was granted via a grant. This year when we talked to the grant team they stated it would be better funded by the DAO as the grant team does not want to fund regular costs.
The DeFiSafety Quality Certificate acts as a badge of quality for users who do not understand a list of smart contract audits. We ask that the certificate logo is added to the security page of the AAVE documents and for context of liquidity providers.
Motivation - Why should AAVE support DeFiSafety?
Our goal is to give users of DeFi a badge of quality they can understand, audit and trust. A list of audits means nothing to most users . In order for good protocols to gain the trust of a larger audience, a clear and understandable badge of quality is required. We want an equivalent to ISO 27001 or SOC2 but for DeFi.
The DeFiSafety Quality Certificate this request funds is that badge. The certificate itself is the gold badge evident on the recent reports for AAVE V3 (AAVE V3 - detailed report | DeFiSafety) and AAVE V2 (AAVE V2 - detailed report | DeFiSafety) and our reviews page(https://www.defisafety.com/app). It indicates quality and refers to a human readable, auditable report with references. We know that a high DeFiSafety score does not guarantee there will be no security events. But it does provide assurance that the protocol is following best practices and has auditable transparency.
In addition to the financial funding requested here, there are other steps where the AAVE community could significantly help. The first is simple. Please support us by placing the DeFiSafety quality certificate logo on the security page of the AAVE Gitbook. We understand this is an AVARA decision and we are working on that conversation. Any support representatives of the DAO can give would assist.
Also, any connections with liquidity providers would be appreciated. If quality certificates are going to become popular, liquidity providers will drive acceptance. For many DeFi protocols will not fund a quality certificate without a clear financial incentive. If a liquidity provider requires a DeFiSafety quality certificate before depositing funds in a DeFi protocol, then this is the incentive the DeFi protocol needs. It also greatly assists the liquidity provider by giving a minimum benchmark in quality and transparency of DeFi protocols.
Specification
Inclusion of the DeFiSafety Quality Certificate logo [html avaiable upon request] on the AAVE docs Security and Audits page and/or on the website.
Duration & Proposed Budget
15k single milestone
Duration of certificate: one year from payment of milestone
Useful Links
Thank-you for your attention and I am available for any questions or comments.