Haven1
  • Get started
    • 🧑‍🚀Welcome Havenauts!
    • 📄Haven1 Litepaper
    • 🧮H1 Tokenomics
  • Foundations of Haven1
    • 📐Architecture & network design
    • 🔐Network-level security
    • 📚Haven1 Core protocols
    • 💱Best in class liquidity
    • 👮Network Guardians: Firewall on Haven1
    • 🌉hBridge: Intro to Haven1 Bridge
  • Learn
    • 💵What does Haven1 solve?
    • 💡Haven1: Use Cases
    • 📚Understanding GoQuorum
    • 🔤Haven1 Blockchain basics
    • 🛂KYC policies on Haven1 blockchain
    • Security at Haven1
    • 🔓What is esH1?
    • ⚖️Dispute resolution mechanism
    • 🛣️Haven1 Roadmap
    • 🖥️Haven1 is EVM compatible
  • Products
    • 🔃hSwap - Spot DEX on Haven1
    • 📍hsETH on Haven1
    • Earn on Haven1
    • 🛡️2FA Wallet Shield
    • 🧊Haven1 block explorer
    • 🏛️Governance & veH1
    • 🆔hPassport - Key to Haven1
      • Advantages of having ID verification at a network level
      • Understanding the ID Verification Process
    • 💼Vesting esH1 - Converting esH1 to H1
    • 📍Staking H1 & esH1 - Earning rewards on your H1 holdings
      • Flexible Staking
      • Locked Staking
  • hPerpetuals - Perps DEX on Haven1
  • Haven1 Guides
    • 🔗Quick links
    • ✅Haven1 onboarding Guide
      • 🪪KYC Guide
      • Business KYC(KYB) Guide
    • Adding multiple wallets to a hPassport
    • 🌉Simple Bridging Guide on Haven1 network
    • 🏠Haven1 Portal - Your Gateway into Haven1
    • 🔑2FA Set up Guide
    • 🤑Haven1 Airdrop: Claim Process and Strategies
    • Claim Process Walkthrough on Team Finance
    • 📄Contract Addresses
  • Build
    • 📖Getting started
    • 🌐Haven1 Network information
    • 🍦Novel developer benefits on Haven1
    • 📑High level guide for secure deployment
    • ⚙️Detailed deployment Guide
    • 🧰Developer tools
      • 👛Haven1 Gnosis Safe wallet
      • 🛠️Haven1 SDK
        • 🔌@haven1/sdk-api-client
          • Class: Haven1SDK
          • Class: AuthModule
          • Class: SdkModule
        • ⛓️@haven1/blockchain-sdk
          • Contracts
        • 🧰@haven1/wagmi-sdk
          • Constant Module
            • Variable: haven1Devnet
            • Variable: haven1Testnet
            • Variable: H1
          • Contract Module
            • ProofOfIdentity
            • ProofOfIdentityV2
            • NativeAppFee
          • Utility Module
            • bigIntMax
            • formatBigint
            • bigintFromDecimals
          • Hook Module
            • useWatch
            • useBalance
            • useApproveERC20
            • useContractWrite
        • ⚛️@haven1/react-sdk
          • useHaven1SDK
          • useAuth
          • useIdentity
          • useNotifications
          • useOTP
          • useSignIn
        • 📜Use cases & Examples
          • Adding the Notification Component to Your React UI
          • Check Proof of Identity (POI) Status
      • Oracles on Haven1
      • Subgraph on Haven1
      • Haven1 block explorer
      • Web3 libraries and tools
    • Development frameworks
    • 🔐Using hPassport in Your dApps
      • Integrating hPassport into Your dApp
      • Implementing Identity Checks in Smart Contracts
        • Country codes
      • Sample Application - Country ID
      • Sample Application - Composable verification level
      • Sample Application - User type
      • Repository Information
    • ⛽Application fees
      • FeeContract.sol
      • Example FeeContract Interactions
      • Case Studies
    • 👷Builders grants program
  • Additional resources
    • 📚Haven1 terminology
  • Quick Links
    • Website
    • Twitter
    • Blog
    • Telegram
    • Customer Support
Powered by GitBook
On this page
  • 1. Specific Contract Requirements
  • 2. Audit Requirements
  • 3. Developer ID Verification
  1. Build

High level guide for secure deployment

Best practices for deploying secure and robust smart contracts on Haven1.

Haven1 aims to be the most secure blockchain in the industry. Our mission is to provide a platform where third-party protocols can thrive in a secure, efficient, and trustworthy environment.

This guide outlines the essential requirements and best practices for developers seeking to deploy their protocols on the Haven1 network. Adherence to these standards is crucial for maintaining the network's integrity and delivering a superior user experience.

1. Specific Contract Requirements

Haven1 imposes several contractual requirements to bolster network security:

Integration with Haven1 Fee Library:

  • Mandatory integration with the Haven1 Fee Library standardizes fee handling, enhancing transparency and consistency for users.

  • This integration reduces the complexity of the development process by abstracting the intricacies of fee management.

Contract Pausability:

  • Smart contracts must include a pausability feature to address emergencies effectively.

  • This feature ensures the safeguarding of user assets and allows developers to rectify issues without compromising the contract's integrity.

Role-Based Access Control (RBAC):

  • RBAC is essential for secure management within smart contracts, limiting critical functions like token minting and vote casting to authorized entities.

  • Developers must implement precise role assignments and permissions, ensuring only authorized accounts can execute specific contract functions.

Deployment Control to Haven1 Association:

  • To safeguard the integrity of the Haven1 network against potentially adverse contracts, deployment privileges are is reserved by the Haven1 Association. Development teams are required to provide access to their code for review, facilitating secure and accurate deployment onto the network. While GitHub is commonly utilized for this purpose, alternative methods of code sharing are also acceptable.

  • This measure guarantees that all contracts meet Haven1’s strict security criteria for quality assurance and have passed necessary audits and reviews.

  • It is imperative to emphasize that developers retain ownership and attribution for their code, with the Haven1 Association solely ensuring compliance with network standards.

2. Audit Requirements

  • Protocols intending to launch on Haven1 must have two comprehensive security audits from our reputable audit partners. The Haven1 team is dedicated to assisting developers in establishing connections with these trusted auditors in the Web3 space.

  • The purpose of these compulsory audits is to ascertain the resilience of applications against vulnerabilities, ensuring compliance with the highest industry standards. This thorough auditing not only reinforces the security of the Haven1 network but also instills confidence in the applications deployed.

Data analysis has shown that protocols undergoing three audits, especially when the bytecode remains identical, exhibit a significantly reduced vulnerability risk — nearly 99% lower. This underscores our commitment to the utmost security and dependability of the Haven1 platform.

3. Developer ID Verification

  • To bolster the security and integrity of the Haven1 network, developers must undergo comprehensive KYC/KYB procedures.

  • This verification process ensures that all developers are thoroughly vetted and adhere to regulatory standards, thereby fostering a trusted and transparent ecosystem within the Haven1 network.

Haven1 is committed to fostering a secure and innovative blockchain ecosystem. By adhering to the guidelines and requirements outlined in this document, developers can contribute to this vision, ensuring their protocols integrate seamlessly with Haven1’s infrastructure. We look forward to seeing your contributions to the Haven1 network and are here to support you through every step of the deployment process. Together, we can build a safer and more reliable blockchain future.

PreviousNovel developer benefits on Haven1NextDetailed deployment Guide

Last updated 2 months ago

For a more detailed guide, you should check out link

📑
this