Overview
Ensure integrity across games, payouts, and campaign execution using cryptographic proofs and on-chain transparency.Implementation Status
Not all security measures are live today. The following breakdown clarifies what is currently active and what is planned.Live
| Measure | Description |
|---|---|
| Switchboard VRF lottery | Verifiable Random Function for all lottery and draw-based events |
| PDA escrow | Program Derived Address accounts hold funds during game resolution |
| Merkle distributions | Efficient weekly reward claims with on-chain proof verification |
| Ed25519 VAP signatures | Verified Action Proofs sign each game action to prevent tampering |
| Anti-spam rate limiting | Request throttling and reputation scoring to prevent abuse |
Planned
| Measure | Target |
|---|---|
| Full on-chain game state verification | Move complete game state proofs on-chain for trustless verification |
| cNFT audit trails | Compressed NFTs as immutable records of game outcomes and payouts |
| Decentralized dispute resolution | Community-driven arbitration for contested results |
Planned features are part of the progressive decentralization roadmap. Timelines will be announced as development milestones are reached.
Randomness & Game Resolution
- Switchboard VRF for lottery and draw-based events
- Commit-reveal where appropriate (pre-committed hashes, later reveals)
- Timestamped event logs and deterministic resolution rules
Verifying VRF Lottery Fairness
Users can independently verify that lottery outcomes were generated fairly using on-chain VRF proofs:Locate the Transaction
Find the lottery settlement transaction on a Solana block explorer (e.g., Solscan, Solana Explorer) using the transaction signature published after the draw.
Inspect the VRF Account
The transaction references a Switchboard VRF account. Open this account to view the randomness request and the resulting proof.
Payouts & Escrow
- PDA escrow accounts hold funds during resolution
- Merkle root distributions enable efficient claims and verification
- Public receipts with winner lists and amounts
Safeguards & Controls
- Anti-manipulation: bet caps, rate limits, reputation scoring
- Circuit breakers for abnormal conditions and upgrades
- Multi-signature controls for sensitive operations
Audits & Monitoring
- Independent security reviews (see sw4p’s 5 audit results for completed assessments)
- Continuous monitoring and anomaly detection
- Public reporting and transparency dashboards
Incident Response
- Triage, disclosure, remediation timelines
- Community updates and postmortems
Cross-Links
- Raffles: 555 Arcade
- Programs: Monetization Contract
- Tokenomics: Fee Distribution