Summary of Proposal
The Web3 Security Community Hub is a collaborative platform for security researchers to share knowledge, participate in competitions, and explore job opportunities. Over four days, attendees will engage in panels, workshops, and a high-stakes hacking competition to enhance the security of Web3 protocols.
Motivation and Rationale
Enhancing Attendee Experience:
The Web3 Security Community Hub offers a unique, interactive experience for attendees to engage deeply with Web3 security. It provides hands-on opportunities to learn from experts, participate in real-world hacking competitions, and network with peers and industry leaders. This hub creates a focused environment for learning, collaboration, and professional growth.
Complementing the Main Programme at Devcon:
While Devcon covers a broad range of topics, the Web3 Security Community Hub zeroes in on the critical area of Web3 security. This specialized focus complements the main programme by providing an in-depth exploration of security challenges and solutions, which are essential for the growth and trustworthiness of Web3 technologies.
Significance of the Topic:
Web3 security is crucial as the adoption of decentralized technologies grows. Security breaches can have devastating impacts, making robust security measures imperative. The community hub format fosters a collaborative atmosphere where researchers can dive deep into security issues, share insights, and develop innovative solutions. This hands-on, community-driven approach is more effective than a traditional talk or workshop.
Implementation
The space with 32 sq m with about 20-25 chairs for people to sit.
Team
Akhil - Founder of Defenders Den
Defenders Den: Web3 security community
Alex - Founder of Opensense
Opensense: Web3 security community
PLAN (Down Below):
Day 1: Web3 Security Community Hub Kickoff
Morning to Afternoon
- 9:00 AM - 9:30 AM: Welcome and Introductions
- Brief overview of the community’s purpose and goals.
- Introduction of participants.
Discussion on below topics within security researchers:
- 9:30 AM - 10:30 AM: Job Opportunities and Salaries in Web3 Security
- Discussion on career paths, roles, and compensation.
- Q&A session.
- 10:45 AM - 11:45 AM: Auditing Platforms and Beyond
- Overview of existing platforms (e.g., OpenZeppelin, CertiK).
- Discussion on alternative approaches (formal verification, manual reviews).
- 12:00 PM - 1:00 PM: Seal Organization and Best Practices
- Guest speaker from a Seal organization.
- Case studies and success stories.
- 1:00 PM - 2:00 PM: Lunch Break
Afternoon to Evening
- 2:00 PM - 3:00 PM: Web3 Newsletters and Bug-Finding Tools
- Recommended newsletters.
- Popular bug-finding tools (Mythril, Slither, Echidna).
- 3:15 PM - 4:15 PM: Layer 2 Security Challenges
- Deep dive into Layer 2 solutions.
- Security considerations.
- 4:30 PM - 5:30 PM: Preventing Reentrancy Attacks
- Code examples and best practices.
Day 2 & Day 3: Team Bug-Hunting Sessions
- 9:00 AM - 12:00 PM: Team Formation and Protocol Assignments
- Divide participants into teams (5 members each).
- Assign specific web3 protocols to each team.
- 1:00 PM - 4:00 PM: Bug Exploration and Knowledge Sharing
- Teams explore their assigned protocols.
- Researchers share bug-finding techniques.
Day 4: Networking and Private Auditing Opportunities
- 10:00 AM - 11:30 AM: Networking Session
- Icebreakers and informal discussions.
- Exchange contact information.
- 11:45 AM - 1:00 PM: Private Auditing Opportunities
- Experienced auditors guide participants.
- Real-world auditing scenarios.
- 2PM - 4:00 PM => Explore the event
I approached a auditing platform. They have problem with number of people finding bugs in that contest. [They want more people to participate (>>>> 25 people)]
Updated with the perfect plan - [with the same auditing competition in a different way (shadow audit within the teams)].