LogoLogo
TwitterDiscordGitHubMedium
  • Introduction
    • About Tetu
    • Links
      • DeFi Integrations
    • Team
  • Protocol
    • Products
    • Tokenomics
    • Governance
      • Past governance proposals
    • Tetu FAQ
  • Tetu v1
    • Yield Farming
      • Strategies
        • Simple rewards farming
        • Single Asset Autocompound
        • Multi Strategy v2
          • AMB v1
        • tetuQi
        • tetuBAL
        • Tetu Boosted Pools
        • tetuMESH
      • SmartVault
      • Tetu Zap Solution
      • Strategy Splitter
      • Vault Shares
      • HardWorks
      • Reward Boosting System
  • Tetu v2
    • Introduction
    • veTETU
      • Utility
    • Delta-neutral strategies
    • Voting System
    • TetuVault V2
    • Security
    • Learning Station
  • PAWNSHOP
    • Introduction & Features
  • Technical
    • Updates
      • Tetu.io contracts update 1.1.0
      • Tetu.io contracts update 1.2.0
      • Tetu.io contracts update 1.3.0
      • Tetu.io contracts update 1.4.0
      • Tetu.io contracts update 1.5.0
      • Tetu.io contracts update 1.6.0
      • Tetu.io contracts update 1.7.0
    • Addresses
    • Security Overview
      • Tetu EOA Protection
      • Multi Sig
      • Time Lock
      • Pausing
      • Guides
      • Bug Bounty Program
      • Audits
  • Second Stage
  • Tetu' Second Stage
    • Investment Fund
  • Archive
  • Old Sections
    • Profit Sharing Pool xTETU
      • Protocol Owned Liquidity
    • Diamond Vault dxTETU
    • Fantom Addresses
    • Folding Strategies
    • LP incentives
    • xtetuQI
    • TetuSwap
      • Fees
    • APR calculation
Powered by GitBook
On this page
  • Level 1 - Strict access
  • Level 2 - Governance actions
  • Level 3 - HardWorkers and Reward distributors actions

Was this helpful?

Export as PDF
  1. Technical
  2. Security Overview

Tetu EOA Protection

Tetu has a central governance contract - Controller under control of MultiSig Wallet with public signers.

However, for reducing EOA effect we implement different levels of access to our contracts.

Level 1 - Strict access

We have 48h time lock for any actions on this layer.

Protection logic implemented in a special contract - Announcer

Announcer contains scheduling for time-locked operations.

For each function announce call twice forbidden.

Function types under time-lock control:

  • Any contract address changes in Controller

  • Any ratio changes (currently Profit Sharing and Fund ratios)

  • Any token movements from contracts to MultiSig Wallet

  • TETU mint operation

  • Proxy contract upgrades

  • Strategy change for a vault

The only controller has access to this type of function and can call it only after the time-lock period.

Level 2 - Governance actions

On this layer, we will not use time-lock for the reason of not critical functionality or urgent actions.

Controller or Governance can call it immediately:

Bookkeeper

  • Remove vaults or strategies from the registered lists

Controller

  • Add/remove Reward Distributor addresses

  • Add/remove HardWorker addresses

  • Add/remove from Whitelist

  • Register Vault/Strategy

FeeRewardForwarder

  • Set conversation path for rewards

Strategy

  • Emergency exit from external project and pause investing

  • Continue investing

  • Move money from strategy to vault

  • Invest money from strategy to external project

MintHelper

Only MintHelper has access to our TETU token contract and this address is unchangeable.

  • Setup Dev Funds addresses and ratios for next mints

SmartVault

  • Change activity status

    Deactivated vault can't do HardWork and accept Deposits. Withdraw allowed.

  • Call DoHardWork

  • Add/Remove reward tokens

  • Rebalance vault (withdraw all from strategy to vault and invest again)

  • Withdraw all from strategy to Vault

LiquidityBalancer

  • Move tokens from LiquidityBalancer to Controller contract

  • Set target Price/TVL

  • Set Router

  • Set Targets' Update ratios

NotifyHelper

  • Disperse weekly emission

  • Move tokens from NotifyHelper to Controller

PayrollClerk

  • Add worker or change the worker wallet address

  • Change any worker settings except worked hours

  • Pay salary

  • Set Price Calculator address

  • Move tokens from PayrollClerk to Controller

PriceCalculator

  • Change any settings

Level 3 - HardWorkers and Reward distributors actions

Any actions allowed for HardWorker/Distributor also allowed for Controller and Governance

Allowed:

  • DoHardWork for HardWorker

  • Call LiquidityBalancer for HardWorker

  • Disperse rewards for vaults for Reward Distributor

PreviousSecurity OverviewNextMulti Sig

Last updated 3 years ago

Was this helpful?