Multisig

Every code upgrade and treasury transaction must be approved by 3/4 multisig. This is enforced through a multisignature contract which only allows code upgrades when 3 out of 4 signers have signed the upgrade with their cold storage wallet.

Hardware wallets

All contributors use hardware wallets for any protocol updates.

2FA

All accounts managed by contributors are secured by two factor authentication using an authenticator app, reducing the likelihood of access being granted to a malicious actor via methods such as sim-swapping.

Audits

Our auditors have also checked for centralization risks when auditing . This means that potential backdoors, deliberate exploit opportunities and other risks are reported by the auditor with or without the contributor's approval.

For more information on audits and to find the full list of audits performed on the Echelon codebase see the next page.