# Security and Audits Security is the cornerstone of Re Protocol's design, ensuring participant trust and platform resilience. The protocol combines third-party audits, strict access controls, oracle guardrails, and daily custody/reserve attestations. ### Independent Audits The Re Protocol undergoes regular third-party audits of its smart contracts and infrastructure. * **Certora** — Latest audit, Sept. 26, 2025: [certora.com/reports/re-core](https://www.certora.com/reports/re-core) * **Previous audits (Hacken):** [hacken.io/audits/re-protocol/](https://hacken.io/audits/re-protocol/) ### Access Control and Upgrade Safeguards * **Upgrade pattern:** UUPS upgradeable contracts * **Upgrade authority:** Governance MPC (3-of-5) * **Timelock:** 48-hour timelock on upgrades, no documented bypass path Critical operational roles are separated across dedicated controller wallets: | Role | Controller Address | Control Mechanism | Permissions | | ------------------ | ------------------ | ----------------- | --------------------------------------------------- | | Oracle Config | 0x49BC5A...77247A | MPC 3-of-5 | Configure price feeds for deposit/collateral tokens | | Redemptions Config | 0xEE16bE...c47f8 | MPC 3-of-5 | Set redemption limits and top-up redemption vault | | Access Manager | 0x80a62B...ECAFc | MPC 5-of-8 | Assign/revoke privileged roles | | Custodian Manager | 0x9b6d7f...6eC9 | MPC 3-of-5 | Add/remove collateral custodians | ### Oracle and Reserve Assurance * reUSD/reUSDe price feeds are updated daily. * A daily change guardrail is enforced on reUSD pricing — large moves above the configured threshold are rejected. * Off-chain bank balances are verified daily by The Network Firm and published via Chainlink. * The Network Firm also verifies ownership and balances of protocol custody wallets. ### Emergency Mechanisms * **Pause functionality:** The protocol can immediately halt all transactions during emergencies. * **Recovery wallets:** Each ICL has a designated recovery wallet. Initial ICL: 0xDf6bF2713b5c7CA724E684657280bC407938F447. ### Secure Infrastructure * **MPC wallets** for critical operations prevent single-party control. * **Daily Fireblocks sweeps** move idle capital from each ICL into custody vaults. * **Surplus Note Registry** records notarized agreements and emits NoteDraw/NoteRepay events. * **Full on-chain transparency** — all transactions recorded and independently verifiable. ### Compliance * KYC/AML is required because protocol capital is deployed with a licensed reinsurance partner regulated by the Cayman Islands Monetary Authority (CIMA). * KYC/AML powered by SumSub and Chainalysis. * Continuous monitoring of wallet activities and risk profiles. ### Participant Assurance * Real-time reporting via the [transparency dashboard](https://app.re.xyz/transparency). * The protocol is exploring additional custodial and operational risk insurance partnerships. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.re.xyz/security-and-audits.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.