Okay, hi everybody. I hope that I'm being heard loud and clear. Do of course give me a sign if there's an issue with the sound.
Yeah, and I'm very I'm very happy to welcome you all here joining these Twitter spaces If you do allow a couple of more minutes for more listeners to join in We'll be then starting the spaces really soon. So let's wait a couple more minutes. I see all
All the speakers are already with us. Porta sending you an invitation to speak. And then we'll have all three on stage. And in a couple of more minutes, we will then start these very, very interesting spaces. Thank you very much. And speak soon.
or new joiner just a quick mention we will be starting the spaces in a couple of minutes just waiting for more people to join and sending out alerts basically to our community members to join in soon.
Okay, I think we can start. I see that more members already joined our spaces, so welcome. Just a quick intro. My name is Monica. Today I'm going to moderate these spaces and I believe most of you already know the purpose, the angle of
of the spaces. Yesterday we had a very, very cool announcement, a double one actually, which showed off how we have added support to the avalanche chain on our smart contract monitoring tool, Aidejas. Welcome, avalanche. I see that you are also here in this space with us. So welcome.
And we also have a new client who has joined our security ecosystem and also has become the very first one to start off with AEGIS on the avalanche chain. So that is Nareer's Finance and today we have both of these with us.
And we also have the Los Lisi and Yoviga with us today. And we're going to discuss a couple of questions, of course, regarding security, the horse of ours that we are very much working on. And that's our field that we have the saying in our
our country that is our horse that we ride. So security is our topic and main field that we're working in. I'm going to be just a moderator today and gentlemen, I have a list of questions for you. But of course, I would like to kick off from some introductions so that our community members
who are in this space and are listening to us or will be listening to the recording, would know who is with us today. So maybe we could kick off with Avalanche with Nadim. Could you introduce yourself and of course the area of work that you're doing in Avalanche? Yeah, of course. Testing my mic, hopefully it's working.
Yes, so I'm the team I'm part of the business development team here at Avalab where I primarily focus on Z5 but also covered ecosystem more generally so that I think we vertical such as tooling infrastructure security been here for about two years now but really most of what we do is part of
of BT on a day-to-day basis is trying to support anyone who's either building on top of Avalonge or just interested in Avalonge or just offering services or infrastructure to the ecosystem. Of course, great to be here and for anyone listening, feel free to reach out if you think we can help you in any way.
Thank you so much, wonderful introduction. Porta, can I also have an introduction of yours about you and their finance?
Hello, hello, I hope you hear me, my name is Porta and well I'm in crypto for 2017, let's say, and from mining to trading and all that stuff and I'm in Nidius finance for the beginning, well one and a half year and what
What is Needless Finance? Needless Finance got two applications. One is landing in borrowing, so people can land crypto and borrow, depends what they need. And another application is our NXUSD stablecoin. In this application people can play some collateral in
crypto and borrow any xusd so kind of good thing I mean this kind of interesting thing and we call it that we have the fastest way from DeFi to the store because you know if you find yourself in the store and you want to buy something for $1,000 and you don't have
dollars at the moment. You can take your mobile phone, jump on Needless Finance, deposit for example some Avax and Borowenix USD and jump to send it to WIREX to our partners which have Visa and Mastercard and you can buy this thing and when you
borrow you can repay the loan whenever you want on the amount how much you want so we got some kind of cool feature and of course everything is can happen in one minute because we are on avalanche blockchain which is very fast so that's kind of one of the the greatest feature and of course
needless finance got fantastic features and we are very how to say not concern but we like to have big security in needless finance that's kind of very important to us that our users have peace of mind with their assets and that's why we are also
So, okay, that's it for me at the moment. Thank you, Porta. I'm very happy that we actually joined the crypto space in the very same year. I too have entered it in 2017. And also thank you so much for such an elaborate introduction. We're very happy to have you as the end just client and
first one on Avalanche of course. And without further ado, of course, we have Vegan Thus, the CEO of Loslis, Hi Vegan They, and could you do an intro as well? Hey Monica, I'm a reporter here in the team at the Hello, all the listeners. So yeah, I am a CEO of Loslis,
actually been in the crypto space as well from 2017 and then 2021 we found it lost us. So super excited to have such a good our speakers here and I truly believe we will have a good that Twitter space today.
Thank you very happy to have you all three gentlemen on board for efficiency purposes guys. We are going to try and fit all of this into 30 minutes because I saw in many Twitter spaces that after that time span we are starting to get less and less attention. People are starting to
to leave. So we are going to have a very productive discussion in a quite short span of time. And of course, let these beautiful gentlemen go back to their work and do their tasks that they are achieving here in crypto. So like I said, I have a couple of questions for you.
Feel free to jump in if you hear something from the other speaker that resonates with you and and just supplement his answer. But let's kick off then like I said today's direction is of course security. That's where we're here for. That's also what we're celebrating and that's why we have
have a lunch and nervous finance with us today. So my very first question to you and anybody who wants to start to kick off your answer or I will just pick a volunteer on my own, but many agree that one of the main narratives today in our industry is definitely
security, that's what we're working with. But we get this feeling that it's a narrative only, it's only this feeling. So why do you think that is the case or maybe you actually would disagree with that? Maybe your experiences, they are different. Who would maybe would like to start on this?
I could start but it would be really interesting to hear from Porto and Riem what they opinion.
Partish I'll we kick off and then yeah, yeah sure sure well. Yeah, yeah, I can I can say something about it. It is let's say I would say it's kind of at the moment more narrative. Can people talking about it and everybody talk about the security but maybe at the moment
But that's maybe just kind of my experience. We don't see that much activity in a field in the whole that DeFi space. So everybody talks about lots of security, but still we got lots of hacks and lots of things which are we can say not good. So
I would say that more protocols would use you to improve their security, just like we did in NIRUS finance. We think that security is very, very important. One of the most important things in
in a defy that people when the positive assets, they have secured assets that they can sleep peacefully. I don't think what if this happens, what if that happens? I think still that's kind of too much.
talking not enough working that's kind of that's kind of my opinion I would like to add here to part of that in general this is why I'm trying to talk less maybe but if I can say that but totally I agree on
that on that aspect that still it is kind of very big buzz about security. It is still very big buzz about security in depth 2 and security is very promising in the string depth 2 as well. So talking about depth 3 and security, definitely a lot of companies
creating companies and building some products as we do as well and we finally see that I just has very big potential here in order to help and so on. But what I want to say that in general, one way or another way,
security, security in the battery will be very strong, but right now a lot of people of the projects they are looking for the right direction, the right product fit, how to help the smart because everyone is trying
betting on one feature or another feature and so on. But I'm pretty sure that very soon it will be more clarity here. And especially maybe some sort of rules and regulations, it will be more clarity on how you can shape a security of a device, products and so on.
Yeah, definitely agree with it with both of you here, but I guess to add to that like why it might only feel like a narrative I just think that like good security for the most part is it's gonna be invisible You don't get the medal for doing things right, but then if you get exploited or anything goes wrong then that's news
So I think there's there's kind of a bias there where you really only hear about by security examples But it's really hard to figure out who's actually doing it right and it's not like most people would understand or really most people would know the difference between like just a noted that might be a robust stamp of approval which has been a
standard for way too long in this space or actual teams that are adopting the new tools that we have today that weren't really available a few years ago. Stuff like ages that really allows you to monitor your smart contracts and take a much more proactive approach to security. Like I know I know a few teams
that literally had to build this themselves before this was available where they would like, even if they had no security background, they would need to like try and build monitoring tools and I that would take a lot of the time. So it's always nice to see kind of new software that's dedicated to this that is easy to implement.
I totally agree with all of the comments said they're very straightforward and pinpoint these specific issues that we currently haven't feel. So I'm happy that the opinion on the matter matches and actually kicking off from where Nadim started about
about how security was still is not really that much available yet that software is becoming or platforms and tools are becoming more available these days, but projects which are in the space already for quite
sometimes they had to build their own solutions. I'm actually very keen to know what Avalanche and Nurse Finance are doing towards security. I mean we know from yesterday's announcement that Nurse Finance already applied, so very congratulations on that and protecting your smart contract.
But I'm sure that there are probably more protective measures that go further than that or maybe something in the plans. So maybe you could elaborate to our listeners here today or what is behind the curtains if it's possible of course.
Should they start again? Well, basically, I would agree with what Nadim said before us. So you don't get any metal if everything is alright and everything works fine and you know, that's kind of normal. Everything's working and that's okay. But if you get hacked, well,
Then you kind of bed bed thing, you know, that's a bad situation and the progress bad security is bad everything is bad. So yeah, okay, that's kind of true. So what we got we got ages now is we kind of very happy with it and we
put our security to higher level than before. So what we are using also, well we are using the audits, well most of the protocols doing that. But we are really taking care of the auditing every move, what
what we have in New Year's finals. So if we got any change, if we got anything, we have a new audit. So it's, you know, what happens? I don't know what the name of the protocol exactly is, but they made some kind of change. They didn't made the audit and they got some kind of hole and they
they were hacked. So that's kind of one thing which is for sure we are doing and we are very, you know, watching that we are doing very carefully. So the other things, what the tech guy, so I'm kind of marketing guy and marketing community manager, so I'm
I'm not going with other kind of details, what the other things we are doing, but that with the audits, that's kind of, and now with the ages, that's kind of to the most important thing, what really carefully doing and really want to have, you know, on the top level.
Thank you so much. I'm very happy to hear that you have the security approach, not every project protocol can tell about this because the usual case that we actually experience is that most projects they do and audit in the very beginning basically put a checkmark
in their list and that's about it. So hearing that after each and every change that happens, an audit is immediately ordered and completed, that's actually a very very it's a relief to my ears. Thank you for that. Nadim, please I saw that you're muted yourself.
Yes, I guess to answer this from a nav lab's viewpoint. Yes, you know internally we do take security seriously of course like bug bounty is monitoring multiple audits for all products, but I think it's probably more informative to answer this kind of gear towards the ecosystem and like frankly
For us, we can't necessarily enforce security strictly within the ecosystem. It's a permissionless blockchain after all, so anyone can deploy regardless of whether or not they're using security best practices. But of course, like when we work with teams, we try to make sure they're really focused.
as easy as possible for them to actually do these kinds of stuff like monitoring, transaction scanning, trying to scan for exploits, and also getting audits. We try to connect them with the right partners and of course have as many integrated launches possible so they have different options available as well.
A question just quickly popped up into my mind. Since avalanches and entire chain, could I ask if there are any initiatives or maybe some kind of supporting programs, motivational programs for those that are building on avalanche to somehow increase
security in what they're building or provide solutions for the entire ecosystem. Like you said, are there any kinds of things of that kind or am I just going around the bush? Yeah, I wouldn't say there's like an official initiative around security so it's more
more kind of the informal work that we try to do behind the scenes where we do help teams as much as possible with implementing those best practices. Of course, like some of our partners, including AGS, will try to help as well, just kind of helping those teams onboard with the right tools, helping them kind of understand what security actually
and of course in some cases also be able to provide discounts or campaigns with the ecosystem which is always nice to see. But I think we have been a little more neutral when it comes to security because at the end of the day it's not really our position to kind of do this for the entire ecosystem. It's really just our position to facilitate that as much as possible.
understood. Thank you so much for the answer. And then I'm moving a little bit of the focus towards lossless since I believe that just as we've on the said in these spaces a bit earlier, currently what the community is also seeing is less talking more
building. So maybe you know that our team has been working tirelessly to provide the entire crypto space with asset protection and we think that there is a difference in what the space deserves regarding cybersecurity. So maybe you could summarize a bit what we
achieved so far. But today and maybe there are some forecasts like a plan of what's to come? Sure, sure. So I would say that looking, you know, into the past of lostness, how we started and where we are at the moment, I could say that in general,
We have plenty of different ideas related to security, how it can work, how it can help in other markets and so on and so forth. We rejected, we dumped a lot of ideas to trash can and so on.
But still we decided to launch this protocol which is still working and managed to save more than 1 million US dollars. We have other products like wall protection, token minter and few other.
Recently we saw that the most promising one is still iages because it can help you know this about any like full integrations at the moment and so on but also that we see the clear path how it can evolve and how we can help in the
future with the whole no incident responses and so on so far. So I'm super excited about the eGES and that in my opinion it has very good product market fit and we just need more clients, more getting more feedback and just to build
around feedback from the clients. But yeah, also we recently released Rapp Tokens which is really interesting, interesting product as well and we hope that we can see more action
there as well. But as I said before, the most focused right now is on the edges because we can see the most value here and especially we see that everyone in the future will track, will monitor the assets
They will set a lot of rules, triggers, and try to automate their security precautions. So this is the part of what we want to achieve. And in the future, we want to give the full suite of security related products for that three projects.
fantastic. Thank you for the summary. I'll just jump in quickly to add a few features that are going to come. I think that people saw in our feed that a couple of the features have already been announced. For example, we're going to have mempool monitoring available quite soon. There's going to be a panic
For instance, IEGIS is not just for companies, it's also for users. The funding button is going to be one of the most useful features, I believe, since you're going to be able to set up a backup wallet and in case the one that you're monitoring is being drained, IEGIS will inform you.
You will be able to initiate a transfer of your funds to the back up wallet quite quick. Also, there's going to be the hotler package as we called it. So for those who are lossless token holders, security features are going to open up on IHS and there's going to be a threshold, of course, of the amount that you have to hold.
Once you have that, ii just is going to be your best friend also Like we gonna set feedback is one of the useful things right now for us. So if you're not an ii dis user You go to aegis.lossless.io and create a free account. It doesn't cost anything you can monitor once more
contract and give us some feedback if of course you have the time and that would be super helpful for us. Of course moving forward I have one more specific question for you guys and we can kick off from Nadine this time not Porta but it's
more a question about the future, the forecast. Maybe you have some kind of a vision for our space regarding security and respectively from where you're working from your point of view. So from the project side and also from an entire chain side. So maybe Nadine, you could start. What do you see for security in the future?
Yeah, of course. I think it's always hard to forecast anything, but I do think that we're seeing a shift and more active security monitoring as opposed to just one of our audits. That's for many reasons. Even the audits buy themselves. They're pretty hectic for teams to keep getting, whereas many more scalable.
architecture I think is going to be very important for the space to grow where like you can't really necessarily do everything manually forever. I guess another thing is also that we're seeing more and more patterns when it comes to different exploits in this space like quite literally there's been studies about this and like most of them really follow the same part
pattern to think like the flash loan attacks or even like those LP manipulation exploits. And there's literally no reason why those should still happen because like stuff like ages is like you're already able to actually find them before they happen. And so I think you know those are probably going to start disappearing as the software and technology around security gets better in this space.
Thank you. What about Porta? Maybe, or Porta do you want to come last? Yeah, I can go last this time. Okay, we're gonna go on. Yeah, so I can repeat myself that in general, like secure this base.
It is very hot right now and then there are a lot of projects trying to create a new strategy how to protect everyone and so on and so forth but I strongly believe that right now there are a lot of projects by people what is
the best tools in order to be safe and defy and not defy, but in general and free. So definitely I could say that in one or two year time frame we will see what is kind of the most important tool
the most important, like the verticals from the security space. Definitely, all right, we see that. All that's very important. Monitoring is important, but what else is important and what is the most efficient? So we will see in practice for a minute.
Thank you for the answer and parts of course. Okay, thanks. Well, we said already that security is very, very, very important and I'm glad and we are glad that there is companies like Aegis which works on a security thing. So we kind of cover
this art part and you cover your part and together we can make more safer environment for everybody. So I'm sure that in the future you will create some new products, new tools, new things which can help us and other projects also.
the blockchains. So, the only thing I can say, keep up the good work and create some kind of new projects, new things which we can use to have better security in our nearest finance. So, I'm sure that will happen in some time and we are here to take the new stuff and use it.
Fantastic. Thank you. Just my two cents to add for this last question. I think that lots of where security is heading stands on education since our users are of the space.
should be aware of the threats that are lurking here. Security is not supposed to be your concern only when you're being hacked or where your wallet became drained or if you don't know how to assess potential threats when you're supporting some kind of a protocol financially. So I think that lots of it
of where security is going lies quite solidly with education and how we're going to since we're going for like a quicker and higher adoption I think that we should also the projects which are building in this space, we should also invest in this area too.
But that's just my two cents. I'm just a moderator today. So guys, thank you so much for these answers. I wanted to ask of course on the very end since time is short. Do you have any kind of message that you would like to leave this today's audience or those who are going to listen to the recording today?
vegan they do have maybe anything to add on top and to summarize the spaces. Yeah, I just know maybe one time for science and you know, everyone and retailers and projects have to be very cautious in this market and to make sure that you know
they take all the required measurements of security there and to be protected here because one mistake and you done and you lost a lot of money. So the price, the cost of the failure
of the mistake is extremely huge in the creeps of space and the creeps space. So that's why I know strongly recommend to start using tools like Iages and to follow us and to follow to keep up the vow of
products and we are really excited about that future and what kind of features we are going through release, especially towards to very dealers as well and for B2B sector as well. So we have to thank very much. Thank you Nadia, important anything to add?
I mean, P2 always just said honestly, but yeah, of course, I recommend everyone to at least check out ages after this and you know, have any questions about Avalon or doing anything on Avalon. Please feel free to reach out. Thanks a lot for having me, of course.
I would say that we are really happy to be first to implement the AIG on an average blockchain and for sure we will take some new tools when you will have it and of course cybersecurity and security is very important and I would say that people should
choose the projects which have bigger security than less security. So that's kind of our way of thinking and working. So that's why we are going with you guys, with our ages, and we are thinking that we are doing pretty, pretty, pretty good job. Thanks everybody for listening us.
and see you next time. Hope it will be soon. Yes, thank you very much gentlemen for joining us today for spending your time with us and to those who are listening to us or to the recording. Thank you as well for joining in and listening to these guys share their insights on where
security is going in the industry. Just some key takeaways is that the responsibility lies with the users, so we need to work on providing those security measures both for companies and for retail users altogether. And what you can do is try and understand
If the protocol that you're supporting is safe, if the security measures are in place, if you are a project or a team member from a project, you can definitely ensure that the security standards are high and that you're building a strong community, which is trustworthy and trusts you to, and you can do that with ages.
have to do is go to aegis.lastlas.io and get your free tier there and try monitoring smart contracts for yourself. Feedback is very welcome or if not, then you definitely can become a secured user and you can know what's happening with the protocols that you're supporting and following.
So thank you so much for today. We are definitely going to have more Twitter spaces. Thank you for spending your time with us and we'll see you soon in the future events. Thank you guys and I'll speak soon with you again in the next spaces. Thanks everyone. Bye. Thank you. Bye bye. Bye bye. Thanks. Bye bye bye.