The Solana Foundation has unveiled STRIDE, a comprehensive security initiative developed in partnership with Web3 security firm Asymmetric Research, as part of a sweeping effort to protect decentralized finance protocols across the Solana ecosystem.
The announcement, made on April 6, comes just five days after Drift Protocol, the largest perpetuals exchange on Solana, suffered a $280 million exploit carried out by a North Korean state-affiliated group following a six-month social engineering campaign.
STRIDE Introduces Tiered Security for Solana Protocols
STRIDE, which stands for Solana Trust, Resilience and Infrastructure for DeFi Enterprises, replaces the traditional model of one-off audits with continuous, foundation-funded protection scaled to each protocol’s risk profile. The program evaluates protocols across eight security pillars, including operational security, access controls, multisig configurations, and governance vulnerabilities.
All Solana DeFi protocols are eligible to apply, with every participant receiving an independent evaluation and a published report. Protocols holding more than $10 million in total value locked qualify for foundation-funded 24/7 operational security support and real-time threat monitoring.
For the largest protocols, those managing more than $100 million in TVL, the Solana Foundation will fund formal verification, a mathematical method that checks every possible execution path in a smart contract to guarantee correctness.
Incident Response Network Targets Real-Time Coordination
Alongside STRIDE, the foundation introduced the Solana Incident Response Network (SIRN), a coalition of security firms designed to coordinate real-time responses to active threats. Founding members include OtterSec, Neodyme, Squads, and ZeroShadow, in addition to Asymmetric Research.
“Members will share threat intelligence, coordinate responses to active incidents, and contribute to the ongoing evolution of the STRIDE framework,” the foundation said in its official statement. The network is available to all Solana protocols, but will be prioritized by total value locked.
Projects like Squads Multisig, Kamino, and Jupiter Lend have already set high internal security standards, with ten or more audits across some protocols. STRIDE is designed to extend comparable protections to teams that lack the resources to independently fund that level of coverage.
Drift Exploit Exposes Limits of On-Chain Defenses
The Drift Protocol exploit, which drained funds in just 12 minutes on April 1, used a technique involving “durable nonces”, a legitimate Solana transaction feature, to pre-sign administrative transfers weeks before executing them, bypassing the protocol’s multisig security. The attack exploited compromised contributor devices obtained through social engineering rather than any bug in Drift’s code.
STRIDE’s formal verification and on-chain monitoring would not have caught this particular attack, as the transactions were valid by design and indistinguishable from legitimate administrative actions until they were used to drain the vaults. The incident underscored that human-targeted social engineering remains a critical vulnerability.
Data from DefiLlama shows that over $168 million was stolen from 34 DeFi protocols in Q1 2026, a figure that has fallen significantly from the $1.58 billion recorded during the same period in 2025. However, the persistence of attacks continues to highlight structural risks in decentralized finance.
The Solana Foundation also participates in the Crypto Defenders Alliance for cross-industry fraud prevention. STRIDE adds a Solana-specific layer on top of those broader efforts, as the foundation warned that “adversaries are rapidly innovating.”
