Findx hosts Chapter 5 of Interoperable Podcast on Web3 security, featuring Everett Hildenbrandt from Runtime Verification and Mark from Hana Wallet discussing formal verification, wallet security, oracle vulnerabilities, and lessons from a recent DeFi incident on Stellar.
In this episode of Interoperable Podcast, Findx explores Web3 security with two industry experts. Everett Hildenbrandt from Runtime Verification explains formal verification as mathematically modeling and proving software correctness, emphasizing the importance of understanding threat models and system design before auditing. Mark from Hana Wallet discusses security from a UX perspective, focusing on protecting users from themselves through native experiences and informed decision-making. The conversation covers a recent price manipulation incident involving Stellar Classic DEX and Blend lending protocol, demonstrating how individual audits miss cross-protocol vulnerabilities. Both speakers stress the need for specification-driven development, ongoing risk monitoring, and the emerging role of AI in security. They address challenges for mainstream adoption, including the lack of recourse in DeFi compared to traditional finance, and discuss how insurance and native wallet experiences can bridge this gap.
