The non-profit Solana Foundation has unveiled the security framework STRIDE and the incident response network SIRN.
Solana was built for security. As the ecosystem scales, so does our investment in the tools, standards, and support.
Today that commitment deepens with a new security program, active monitoring, formal verification for top protocols, and a new crisis response network.
Learn… pic.twitter.com/17M4TgqpsQ
— Solana Foundation (@SolanaFndn) April 6, 2026
The STRIDE initiative, developed in collaboration with the Web3 firm Asymmetric Research, is described as a “structured program for assessing, monitoring, and enhancing the security measures of Solana projects.”
The framework evaluates protocol security across eight areas:
- software security;
- governance and access control;
- oracle risks;
- infrastructure security;
- supply chain security;
- operational security;
- incident monitoring and response;
- log management and forensics.
“Protocols are independently assessed, and the results are published openly. This ensures genuine transparency for users, investors, and the entire ecosystem regarding the security of interactions with platforms,” stated Asymmetric Research.
STRIDE will continuously monitor operational security and active threats for protocols with a TVL exceeding $10 million that undergo assessment. All expenses will be covered by the foundation.
Projects with figures over $100 million will receive funding from the Solana Foundation for formal verification—a proof-based mathematical method. It checks all possible states and execution paths of a smart contract, ensuring its correctness.
Simultaneously, the foundation announced the creation of SIRN, which will unite security companies for real-time response to hacking attacks on the Solana network.
Participants will exchange threat information, coordinate actions, and “contribute to the ongoing development of STRIDE,” according to the release.
The new announcement from Solana Foundation follows the hack of the DeFi protocol Drift involving $280 million. The incident was one of the largest in the industry’s history.
Earlier, on April 5, the team disclosed details of the attack. Developers concluded that North Korean hackers were behind it.