The RektTest: 12 Questions to Guide Basic Principles for Web3 Security


Earlier this year, Circle  joined a group of blockchain security and policy experts from across the industry to identify ways we can work together to help protect our customers and work with developers to prevent hacks and security exploits. 

We’re excited to join Anchorage Digital, Fireblocks, Immuenfi, Ribbit Capital, Solana Foundation and Trail of Bits in support of the RektTest, the first of a series of initiatives aimed at preventing, mitigating, and responding to security exploits on-chain. 

The RektTest is a simple, 12 question tool that blockchain projects and developers can use to assess their vulnerability based on industry best practices. Developers can use it to form an initial assessment and get a gut check on whether their project:

  • Is ready for launch
  • Contains basic safeguards against hackers and scammers
  • Complies with best practices for access control, custody and key management, and safety against other vectors for hacker exploits

The RektTest focuses on the simplest, most universally applicable security controls to help teams assess security posture and measure progress. The more an organization can answer “yes” to these questions, the more they can trust the quality of their operations. This is not a definitive checklist for blockchain security teams, but it’s a way to start an informed discussion about important security controls.

The landscape of blockchain technology is diverse, extending beyond blockchains to include decentralized protocols, wallets, custody systems, and more, each with unique security nuances. The subsequent explanations of the RektTest questions reflect the consensus of best practices agreed to by this group, and are by no means exhaustive or absolute. The intent of the Rekt Test is not to establish rigid benchmarks but to stimulate meaningful conversations about security in the blockchain community. Thus, consider this interpretation as a stepping stone in this critical dialogue.

Learn more about the RektTest.

Back to top