diff --git a/applications/Web3_Security_DAO.md b/applications/Web3_Security_DAO.md new file mode 100644 index 00000000000..e8e6fd9e0ed --- /dev/null +++ b/applications/Web3_Security_DAO.md @@ -0,0 +1,235 @@ +# Web3 Security DAO (W3SD) + +- **Team Name:** NewFriend +- **Payment Details:** + - **DOT**: 12EYjzq2HHrRJQit8WRcGvDXKSD43zpythtWJW8ymmGouy8K + - **Payment**: We hope that 100% of it is DOT. +- **[Level](https://github.com/w3f/Grants-Program/tree/master#level_slider-levels):** 3 + +## Project Overview :page_facing_up: + +### Overview + +In April 2023, we launched the [**USDT Blacklist**](https://www.usdtblacklist.com/) project to help Web3 users identify high-risk addresses and avoid on-chain risks. + +Now, we plan to build a decentralized Web3 security community. Through the DAO community's philosophy of fairness, transparency, and autonomy, engage more individuals, companies, and organizations to build and maintain the world's most reliable Web3 risk data source. Enable every user to contribute to the security of the Web3 ecosystem. + +### Project Details + +1. **Background for the Project** + +Blockchain transactions, while promoting transparency and decentralization, introduce inherent risks like fraud, hacks, and illicit activities. The irreversible nature of these transactions and the pseudonymous identities on the blockchain pose challenges in effectively mitigating these risks. With the blockchain ecosystem expanding, there is a heightened demand for tools and systems to bolster security and safeguard users. + +![Total.png](https://statics-hg32f.usdtblacklist.com/Total.png) + +To address these challenges, **USDT Blacklist** was conceived to provide a centralized solution for risk identification and mitigation, ensuring a secure environment for all participants. Central to its operation is the collection of risk data from diverse sources, including blockchain analytics, external intelligence sources, and community feedback. Automated threat assessments are complemented by human oversight to ensure precision and confidence. + +Services are disseminated through multiple channels, striking a balance between security, transparency, and user accessibility. This approach blends technological innovation with judicious decision-making to fortify the ecosystem. By proactively managing risks, **USDT Blacklist** enhances the safety and reliability of the ecosystem, nurturing trust and sustainable growth within the blockchain domain. + +![ubl.png](https://statics-hg32f.usdtblacklist.com/ubl.png) + +1. **Advancing Decentralization** + +After over a year of centralized operations, we realized that relying exclusively on our team is insufficient to comprehensively address the governance of on-chain risks. To involve more individuals in safeguarding Web3 security and to achieve transparent and equitable risk management, we decided to transition to a decentralized governance model via a Decentralized Autonomous Organization (DAO). + +Through the Web3 Security DAO (W3SD), our goal is to establish a global Web3 security community where individuals, companies, and organizations can become part of the governance structure. Together, we will develop and maintain the world's most reliable Web3 risk data source, empowering every user to contribute to the security of the Web3 ecosystem. + +![DAO.png](https://statics-hg32f.usdtblacklist.com/DAO.png) + +**2.1 Governance** + +**Benefits of DAO Governance** + +- **Democratized Decision-Making:** All DAO members can propose and vote, enabling collective wisdom to drive decisions. +- **Transparency and Credibility:** Governance records are stored on-chain, making processes traceable and tamper-proof. +- **Efficiency and Automation:** Smart contracts automatically execute voting outcomes, reducing manual intervention and delays. +- **Inclusivity:** Anyone meeting minimum requirements can join as a DAO member and participate in governance. +- **Incentive Mechanism:** Token-based rewards encourage greater participation, boosting community activity and data quality. + +**Principles of DAO Governance** + +- **On-Chain Proposals:** DAO members can submit proposals, such as marking an address as high-risk. +- **Voting Mechanism:** Once a proposal is submitted, eligible DAO members vote to support or oppose it. +- **Smart Contract Execution:** After voting concludes, smart contracts execute the decision, updating risk records and distributing rewards accordingly. + +![new-process.png](https://statics-hg32f.usdtblacklist.com/flow-2.png) + +By embracing DAO governance, the community shifts from passive recipients of centralized services to active creators and managers of risk data. + +**2.2. Web3 Voting** + +- **Enhanced Security:** Cryptographic techniques and consensus mechanisms protect the integrity of voting results. +- **Transparency:** All proposals, votes, and results are publicly accessible, eliminating opaque operations. +- **High Efficiency:** Smart contracts automate execution, reducing costs and time. +- **Real-Time Updates:** Proposals and voting outcomes can be updated in realtime, accelerating decision-making. +- **Fairness:** Token holdings and participation balance voting power, ensuring democratic governance. +- **Global Accessibility:** On-chain voting removes geographic barriers, fostering worldwide participation and collaboration. + +Through decentralized governance and incentive models, W3SD unites Web3 users globally to build a secure, transparent, and trustworthy on-chain ecosystem. + +**Incentive Rules** + +- If a proposal passes, both the proposer and supportive voters receive rewards. +- If a proposal fails, only supportive voters are rewarded, discouraging frivolous proposals. + +**2.3 Governance Tokens** + +- **Voting Weight:** Each token represents one vote. Members holding more tokens have greater influence, aligning rights with responsibilities. +- **Incentive Mechanism:** Tokens serve as rewards to encourage active participation in proposals, voting, and data submission. +- **Economic Sustainability:** Token distribution and consumption (e.g., governance fees) ensure the long-term viability of the community. +- **Access Control:** Holding tokens is a prerequisite for governance participation, fostering a community of engaged and contributing members. + + ![token.png](https://statics-hg32f.usdtblacklist.com/token.png) + + +**Advantages of Governance Tokens** + +- **Fairness:** Token holdings determine voting weight, preventing governance monopolization. +- **Value Creation:** Token circulation and appreciation are directly tied to community growth. +- **Resource Allocation:** Token-based rewards attract developers, data contributors, and security researchers. + +### Ecosystem Fit + +- Where and how does your project fit into the ecosystem? + - Bitcoin, Polkadot, SOL risk address analyzing and querying +- Who is your target audience (parachain/dapp/wallet/UI developers, designers, your own user base, some dapp's userbase, yourself)? + - Blockchain developers + - Other Web3 Security institutes + - Exchanges + - Crypto Wallets +- What need(s) does your project meet? + - Monitor and analyze key data such as account activity to filter out high-risk wallet addresses, help Web3 AML(Anti-Money Laundering) ecosystem be better +- How did you identify these needs? Please provide evidence in the form of (scientific) articles, forum discussions, case studies, or raw data. + - From other institutes and ecosystem news: [2024 Mid-year Blockchain Security and AML Report](https://www.slowmist.com/report/first-half-of-the-2024-report(EN).pdf) +- Are there any other projects similar to yours in the Substrate / Polkadot / Kusama ecosystem? + - No +- Are there any projects similar to yours in related ecosystems? + - No + +## Team :busts_in_silhouette: + +### Team members + +- Owen (Team leader / Product Owner) +- Zack Huang (CTO) +- Andy Cui (Engineer Leader) +- Rex Li (UI/UX Design Leader) +- Vikanong He (Front-end Engineer) +- Mickey Yang (CCO) + +### Contact + +- **Contact Name:** Owen +- **Contact Email:** [hello@w3sd.org](mailto:hello@w3sd.org) +- **Website:** [https://w3sd.org](https://w3sd.org/) + +### Legal Structure + +- **Registered Address:** Room 1512, 15th Floor, Lucky Center, 165-171 Wan Chai Road, Hong Kong +- **Registered Legal Entity:** NewFriend International (HK) Limited + +### Team's experience + +- **Owen** - Web3 practitioner, co-founders of the USDT Blacklist project. Continue to pay attention to and promote the development of Web3/ blockchain. +- **Zack Huang** - Former Huobi architect, co-founders of USDT BlackList project, started working in Web3/ blockchain industry in 2016. In 2018, Participated in the smart contract and architecture work of the blockchain project "[PandaEarth](https://cryptoslate.com/products/panda-earth/)" as the CTO. Rich experience of blockchain and architecture development/management. +- **Andy Cui** - Seasoned software engineer with 10+ years of experience in software development, architecture, and team leadership. Specialized in blockchain technologies with a focus on security. Serving as co-founders, architects, and main maintainers of USDT Blacklist. +- **Rex Li** - Former Tencent UI/UX designer, started focusing on Web3/ blockchain product and interaction design in 2017. +- **Vikanong He** - Over 7 years of advanced WEB3 development experience, combined with a key role as a core developer of W3SD, contributing to groundbreaking advancements in decentralized technology. +- **Mickey Yang** - Years of working experience in risk control department of financial institute, senior anti-money-laundering expert. + +### Team Code Repos + +- https://github.com/Web3-Security-DAO + +### **GitHub accounts of team members** + +- https://github.com/GrFrHuang Zack Huang +- https://github.com/ah-its-andy Andy Cui +- https://github.com/EsuoTime Vikanong He + +### Team LinkedIn Profiles (if available) + +## Development Status :open_book: + +We are currently designing a voting and reward mechanism for every proposal in the community community, hoping to design a simple and effective process to serve the governance of the community. We realized that the Polkadot network had clear vision and potential, we going to depend Polkadot ecosystem or relative tools to help us build Web3 Security Community. + +## Development Roadmap :nut_and_bolt: + +### Overview + +- **Total Estimated Duration:** 12 months +- **Full-Time Equivalent (FTE):** 5 FTE +- **Total Costs:** 200,000 USD +- **DOT %:** 100 % + +### Milestone 1 — Complete DAO Community & Data Growth + +- **Estimated duration:** 6 months +- **FTE:** 5 +- **Costs:** 80,000 USD + +| Number | Deliverable | Specification | +| --- | --- | --- | +| **0a.** | License | Apache 2.0 | +| **0b.** | Documentation | We'll provide examples and documentation on how to join Web3 Security DAO and also provide a video tutorial. | +| 1. | Release DAO dashboard | Release the Web3 Security DAO members’ dashboard. | +| 2. | Publish reward mechanism | Publish DAO’s Token reward mechanism. | +| 3. | Release smart contracts | Release DAO governance smart contracts. | +| 4. | Promote DAO development | Build to be most active Web3 Security community and activate member passion. | +| 5. | Support popular chains | Support popular cryptocurrency address (BTC, DOT, SOL, etc.). | +| 6. | Data growth | Reach out 500,000+ records at least. | + +### Milestone 2 — Cooperation & AML + +- **Estimated Duration:** 6 month +- **FTE:** 5 +- **Costs:** 120,000 USD + +| Number | Deliverable | Specification | +| --- | --- | --- | +| **0a.** | License | Apache 2.0 | +| **0b.** | Documentation | We'll provide examples and documentation on how to use risk address data. We'll also provide a video tutorial. | +| 1. | Risk domain data source | Support risk domain blacklist query. | +| 2. | More risk records | > 10,000,000 risk address records. | +| 3. | Global most reliable risk data source and Web3 security community | Build the global most reliable data source and Web3 security community. | +| 4. | Cooperation & AML | Deeply cooperate with Exchanges/Crypto Wallets to create AML ecosystem. | + +## Future Plans + +To build the global most reliable risk data source and Web3 security community through decentralized autonomous organizations and community collaboration, ensuring on-chain security for every user and promoting the sustainable growth of Web3. + +- **Become the Global Standard for Web3 Security:** Establish a trusted framework for risk governance in the Web3 ecosystem through transparency. +- **Build a Global Security Community:** Engage individuals, enterprises, and organizations to collectively protect the on-chain ecosystem. +- **Foster On-Chain Transparency:** Use DAO governance and decentralized technologies to eliminate information asymmetry, enhancing safety and reliability in on-chain activities. +- **Incentivize Innovation and Collaboration:** Encourage developers and researchers in Web3 security to innovate, driving technological progress and ecosystem prosperity. + +We firmly believe that with the collective effort of users worldwide, Web3 Security DAO (W3SD) will become cornerstones of Web3 security, making the Web3 world safer and more trustworthy! + +## Referral Program (optional) :moneybag: + +## Additional Information :heavy_plus_sign: + +**How did you hear about the Grants Program?** + +Web3 Foundation Website + +**USDT Blacklist history** + +- **2023 Q2** + - [USDT BlackList](https://www.usdtblacklist.com/) project beta version been launched. +- **2023 Q3** + - Joined the [Crypto Defenders Alliance (CDA)](https://cryptodefendersalliance.com/) and shared data bidirectionally with CDA. +- **2023 Q4** + - USDT BlackList released a [Chrome browser extension](https://chromewebstore.google.com/detail/usdt-blacklist-risk-level/fmlfdnkldokiieddhibmmkdgphhbjgdg). + - USDT BlackList got Featured badge from Google Chrome store. +- **2024 Q1** + - USDT BlackList project released the official version. + - Opened risk data [API](https://docs.usdtblacklist.com/). +- **2024 Q2** + - [Telegram Bot](https://t.me/USDTBlackList_bot) been launched, providing a faster query entry. +- **2024 Q3** + - Established strategic cooperation with [OnChainAML](https://www.onchainaml.com/). + - Completed data ETL (Extract, Transform, Load) for improving data quality. +- **2024 Q4** + - Launch a Decentralized Autonomous Organization architecture Program. + - Seek other external cooperation opportunities.