During the recent Devconnect conference in Buenos Aires, a pivotal event titled "Trillion Dollar Security Day" convened approximately eighty leading security practitioners from across the Ethereum ecosystem. Organized by the Ethereum Foundation in collaboration with Secureum TrustX, the summit was dedicated to a critical objective: meticulously assessing and strategizing how to ensure the robust security of an Ethereum economy projected to reach a trillion-dollar valuation. This intensive, in-person gathering provided a unique platform for experts representing diverse areas of the Ethereum security landscape—including Infrastructure, Interoperability, Layer 1 & 2, Onchain, Offchain, Privacy, and Wallets—to engage in deep dives, identify common vulnerabilities, and chart concrete paths forward. The outcomes of this concentrated effort are directly feeding into the Ethereum Foundation’s ongoing "One Trillion Dollar Security" (1TS) initiative, a long-term vision aimed at fortifying the network’s resilience and trustworthiness.
The impetus behind Trillion Dollar Security Day was the recognition that as Ethereum’s economic footprint expands exponentially, so too does the magnitude of potential security risks. The existing decentralized nature of Ethereum, while its greatest strength, also presents complex security challenges that require a holistic, multi-layered approach. Traditional security models, often siloed, are insufficient for the interconnected and rapidly evolving digital asset economy. This event sought to bridge those divides, fostering a shared understanding of the security posture across the entire protocol stack and encouraging collaborative problem-solving. By bringing together those actively building and securing different segments of Ethereum, the organizers aimed to foster a more cohesive and effective security strategy, essential for attracting and retaining institutional capital and mainstream adoption.
The day’s agenda was structured to encourage focused, cross-pollinating discussions. Participants were divided into breakout sessions aligned with their specific areas of expertise. Within these specialized groups, they were tasked with evaluating the current state of security, identifying existing vulnerabilities and operational challenges, and prioritizing areas where immediate and significant effort is most critically needed. The overarching goal was to move beyond theoretical discussions to tangible, actionable outcomes. The subsequent synthesis of findings from these various layers aimed to reveal overarching patterns, dependencies, and potential cascading risks that could impact the entire ecosystem. This approach acknowledged that a vulnerability in one layer can have profound implications for others, underscoring the interconnectedness of the Ethereum security fabric.
Cross-Layer Observations: A Holistic Security Snapshot
Across the seven distinct security layers examined, several recurring themes emerged, painting a comprehensive picture of the challenges and opportunities facing Ethereum’s security at scale. These common threads highlight the need for coordinated efforts and a unified vision for the future.
| Layer | Key Issues | Identified Immediate Next Steps |
|---|---|---|
| Layer 1 & 2 | Quantum risk, weak L1/L2 coordination, cloud dependence, compressed testing | Expand EPF onboarding, create L2 liaisons, improve EIP versioning & ownership |
| Wallets | Blind signing, paywalled security, low coordination | Form an Open Signing Alliance, neutral/on-chain EIP-7730 registry, wallet dashboards |
| Onchain | "Audited" ≠ secure, weak IR, OpSec failures | Fund OSS security tooling, create DeFi security visibility, promote SEAL |
| Interop | Unsafe trust assumptions, UX favors speed over safety | Interop trust ratings, clearer disclosures, improve canonical bridge UX |
| Infrastructure | Frontend hacks, RPC centralization, DNS SPOFs | Verifiable frontends, infra transparency dashboards, light-client wallets |
| Offchain | Misaligned incentives, Web2 attack-surface blind spots | Security frameworks, certifications, public-goods staffing models |
| Privacy | UX/cost barriers, RPC tracking, lack of ZK hardware support | Light-client data over P2P RPC, investment in private wallet UX, ZK hardware signer research |
The detailed discussions within each layer provided a granular understanding of specific challenges, while the cross-layer synthesis revealed systemic issues that require broader ecosystem attention.
Layer 1 & 2: The Coordination Conundrum
The foundational layers of Ethereum, Layer 1 and Layer 2 solutions, benefit from a robust architecture characterized by its multi-client nature, a commitment to specification-driven development, and a cautious approach to protocol changes. This inherent design contributes significantly to the network’s security. However, participants in the Trillion Dollar Security Day identified several critical vulnerabilities. A primary concern is the insufficient coordination between Layer 1 and Layer 2 solutions, leading to potential disconnects and security gaps. Furthermore, compressed testing timelines for new upgrades and an over-reliance on centralized cloud infrastructure were flagged as significant risks, potentially increasing the attack surface and reducing network resilience. The specter of supply-chain attacks, where malicious code is introduced into the software development process, also looms large.
Specific challenges highlighted include limited community and Layer 2 developer participation in crucial coordination forums like All Core Devs calls. The capacity of client teams to thoroughly review evolving Ethereum Improvement Proposals (EIPs) early in their lifecycle also remains a bottleneck. Persistent concerns regarding the security and resilience of L1-L2 bridging solutions and the centralization of Remote Procedure Call (RPC) endpoints were also emphasized.
To address these issues, several concrete next steps were proposed. Expanding the Ethereum Protocol Fellowship (EPF) program was seen as vital for increasing developer capacity and security expertise. Establishing clearer roles for Layer 2 liaisons within the coordination process could improve communication and integration. Enhancing EIP versioning and clarifying ownership expectations for different proposals would streamline development and accountability. Crucially, strengthening moderation and accessibility within coordination forums is necessary to foster more inclusive and effective discussions.
Wallets: Bridging the User Security Chasm
The wallet layer, the primary interface for most users interacting with the Ethereum ecosystem, presented its own set of pressing security concerns. While progress has been made in signing standards like EIP-7730 and in improving wallet discoverability, significant hurdles remain. A key issue is the continued reliance on "blind signing" by many hardware wallets, a practice where users approve transactions without fully understanding their implications. This practice, while offering some technical advantages, can be exploited by malicious smart contracts. Furthermore, participation in shared security discussions and collaborative efforts within the wallet ecosystem remains notably limited.
The competitive nature of the wallet market was identified as a structural barrier to open collaboration, with teams understandably hesitant to share proprietary information or adopt standardized security practices that might not offer a competitive edge. This fragmentation, coupled with an over-reliance on the Ethereum Foundation to drive necessary coordination, creates a complex challenge.
A significant proposal emerging from the discussions was the formation of an "Open Signing Alliance." This initiative aims to anchor wallet security standards in Ethereum’s core values of openness, neutrality, and the "walkaway test"—the principle that users should be able to understand and reject a transaction before committing to it. Additional priorities include hosting the EIP-7730 registry in a neutral, or ideally on-chain, context to ensure its accessibility and immutability. Funding for wallet-focused security dashboards was also deemed essential to enhance transparency and build greater legitimacy for wallet security practices among users.
Onchain Security: The Gap Between Audits and True Security
The onchain security landscape, while benefiting from a growing pool of skilled researchers and improved tooling such as Foundry, still faces significant challenges in translating sophisticated technical analysis into genuine, widespread security. The common perception that an "audited" smart contract is inherently "secure" remains a persistent misconception. Participants highlighted that a substantial portion of recent financial losses in the DeFi space stems not from novel smart-contract exploits, but from operational security failures—a category that often includes social engineering, compromised private keys, and poor incident response.
The increasing complexity of DeFi protocols, coupled with limited invariant monitoring and a general lack of thorough economic audits (which assess the economic incentives and potential exploits within a system), further compounds these risks. While the emergence of initiatives like SEAL911 (an incident response network) signifies progress in establishing better incident response mechanisms, the overall visibility into DeFi security posture remains insufficient.
Immediate next steps identified by the onchain security group include securing sustained funding for open-source security tooling, such as fuzzers, static analyzers, and dynamic analysis tools, which are critical for proactive vulnerability discovery. The development of improved visibility into the security posture of DeFi applications, potentially through a "L2BEAT-like" approach that aggregates and presents security data, was also strongly advocated. Broader adoption of SEAL frameworks and standardized checklists for various classes of smart contracts was also proposed as a means to elevate the baseline security practices across the ecosystem.
Interoperability: Making Trust Assumptions Explicit
As the Ethereum ecosystem matures, interoperability solutions—the technologies that allow different blockchains to communicate and transfer assets—have become increasingly vital. Users now benefit from a wide array of interoperability options, offering faster and lower-cost transactions. However, this proliferation of solutions has also introduced new risks. A significant concern raised was that many interoperability protocols rely on poorly communicated or implicit trust assumptions. This can lead users to mistakenly equate "fast and cheap" cross-chain transfers with genuine safety.
Many non-canonical bridges, those not built with the highest security standards or formal verification, have been shown to fail basic security tests like the "walkaway test." Furthermore, the risk often persists even after an asset has been bridged, due to the complexities of wrapped assets and downstream dependencies on the receiving chain.
To mitigate these risks, several actions were proposed. The development of explicit "interop trust ratings" was suggested, which would clearly articulate the underlying trust assumptions and verification models employed by different cross-chain solutions. Stronger expectations for clear and transparent trust disclosures by cross-chain aggregators were also emphasized. Efforts to improve the speed and cost-effectiveness of canonical bridges—those considered more secure and formally verified—were seen as a way to reduce the reliance on less secure alternatives. A follow-up workshop dedicated specifically to interoperability security was also proposed to delve deeper into these complex issues.
Privacy: UX and Infrastructure as Key Bottlenecks
The conversation around privacy in Ethereum has shifted significantly, with a growing consensus that privacy is not merely an optional feature but an increasingly normal and necessary component of the network’s future. Significant advancements in zero-knowledge proof research and a growing interest from institutional players signal a positive trajectory. However, substantial barriers remain, primarily revolving around user experience (UX), cost, and fundamental infrastructure limitations.
Key challenges identified include the pervasive issue of RPC-based tracking, where centralized RPC providers can potentially monitor user activity. Difficulties surrounding the secure and private storage and recovery of sensitive data were also highlighted. A notable absence is the lack of developers focusing specifically on creating intuitive and private wallet UX, making it challenging for mainstream users to adopt privacy-preserving tools. Furthermore, the absence of hardware support for privacy-enhancing cryptographic operations, such as zero-knowledge proofs, remains a significant impediment.
Suggested next steps include advocating for greater utilization of light-client data transmitted over peer-to-peer (P2P) networks, which can reduce reliance on potentially untrusted centralized RPC providers. Significant investment in improving private wallet UX is also crucial. Research into ZK-capable hardware signers, similar to existing hardware wallets but with enhanced privacy capabilities, was deemed essential. Engagement with regulators to seek clearer guidance for the development and adoption of permissionless privacy technologies was also proposed as a necessary step towards mainstream adoption.
Infrastructure & Offchain Security: The Unseen Attack Surface
The discussions on infrastructure and offchain security revealed a critical underappreciation of these often-overlooked areas, which collectively form an "invisible attack surface." Frontend compromises, DNS hijacks, the centralization of RPC endpoints, and software supply-chain attacks were repeatedly cited as significant and underappreciated risks. Participants also noted a lack of sustainable economic models for the non-profit organizations that provide essential security public goods to the ecosystem.
A fundamental challenge lies in the artificial separation often drawn between "Web2" and "Web3" security, leading to a failure to apply established security best practices from traditional web development to the blockchain space. Limited accountability for failures that occur offchain, and a pervasive tendency to prioritize speed and convenience over robust security, were also identified as systemic issues. The inability to easily run Ethereum nodes over anonymity networks like Tor was also highlighted as a privacy and security concern for decentralized infrastructure.
Proposed next steps include the development of verifiable frontend prototypes to ensure users are interacting with legitimate and uncompromised interfaces. Increasing transparency around the health and operational status of RPC endpoints and other critical infrastructure components is also crucial. Advancing the development and adoption of comprehensive security frameworks and certifications for infrastructure providers was recommended. Finally, creating structured collaboration models where private companies actively contribute dedicated time and resources to the development and maintenance of security public goods was seen as essential for long-term sustainability.
Event Reflections: A Call for Deeper Collaboration
The feedback from participants on Trillion Dollar Security Day was overwhelmingly positive, with high ratings for the quality of discussions and the relevance of the topics addressed. The value of in-person, cross-layer exchanges was consistently highlighted, emphasizing the unique benefits of direct, face-to-face interaction in fostering shared understanding and building momentum. While the content was deemed excellent, participants also suggested areas for logistical improvement, including optimizing group sizes for more intimate discussions and creating more structured opportunities for networking.
A strong demand for future initiatives focused on applied security standards, the development of shared tooling, and practical "how-to" guidance for implementation was evident. This indicates a clear desire within the community to move beyond theoretical discussions and into tangible, actionable security practices.
What Comes Next: Sustaining Momentum for a Trillion-Dollar Future
The Trillion Dollar Security gathering in Buenos Aires served as a powerful demonstration of the value derived from bringing security practitioners together in person. These focused, face-to-face discussions proved instrumental in accelerating alignment on critical standards, essential tooling, and practical solutions—an outcome that is often challenging to achieve through asynchronous communication alone.
The event also underscored the critical importance of maintaining a continuously updated, shared understanding of Ethereum’s security posture. As the ecosystem continues its rapid evolution, staying ahead of emerging risks requires a proactive and iterative approach. This involves regularly reassessing what security measures are effective, where existing assumptions may no longer hold true, and which areas demand renewed attention to support an economy valued at a trillion dollars and beyond.
The insights gleaned from this Buenos Aires summit will continue to inform the Ethereum Foundation’s ongoing One Trillion Dollar Security efforts. These findings will be integrated with existing workstreams across the broader ecosystem. The near-term focus remains firmly on supporting the practical execution of security strategies, fostering the adoption of open and neutral security standards, and strengthening the foundational elements necessary to ensure Ethereum’s security and integrity at an unprecedented scale. The commitment to this ongoing dialogue and action is paramount as Ethereum continues its trajectory towards becoming a cornerstone of the global digital economy.
