The non-profit Solana Foundation has introduced the STRIDE security framework and the SIRN incident response network.
Solana was built for security. As the ecosystem scales, so does our investment in the tools, standards, and support.
— Solana Foundation (@SolanaFndn) April 6, 2026
Today that commitment deepens with a new security program, active monitoring, formal verification for top protocols, and a new crisis response network.
Learn… pic.twitter.com/17M4TgqpsQ
The STRIDE initiative was developed in collaboration with Web3 firm Asymmetric Research and is a "structured program for assessing, monitoring, and enhancing the security measures of Solana projects."
The framework evaluates protocol security across eight areas:
- software security;
- governance and access control;
- oracle risks;
- infrastructure security;
- supply chain security;
- operational security;
- incident monitoring and response;
- log management and forensics.
“Protocols are evaluated independently, and results are published openly. This provides users, investors, and the entire ecosystem with genuine transparency regarding the security of interactions with platforms,” said Asymmetric Research.
STRIDE will continuously monitor operational security and active threats for protocols with a Total Value Locked (TVL) exceeding $10 million that undergo evaluation. All costs will be covered by the foundation.
Projects with a TVL over $100 million will receive funding from the Solana Foundation for formal verification—a mathematical proof-based method that checks all possible states and execution paths of a smart contract, ensuring its correctness.
At the same time, the foundation announced the creation of SIRN, which will bring together security companies for real-time responses to hacking attacks on the Solana network.
Participants will share threat information, coordinate actions, and "contribute to the ongoing development of STRIDE," according to the release.
The Solana Foundation's announcement follows the hack of the DeFi protocol Drift, which resulted in a loss of $280 million, marking one of the largest incidents in the industry's history.
Recall that on April 5, the team from Drift revealed details of the attack, concluding that it was perpetrated by hackers from North Korea.