Overview
GuardianSafe is a security extension guard module designed to enhance the multisig security of Safe wallets. Developed by our research team at ParticleCS, It is built upon our Bloxchain Protocol and our State Abstraction technology. This protocol provides a foundational multi-phase, role-based security architecture that underpins GuardianSafe’s enhanced security features.
Motivation and Context
Recent discussions within the Safe community have highlighted critical areas for improvement in Safe wallet security, notably:
-
The risks associated with the unrestricted DELEGATECALL operation
-
The need for configurable time-lock mechanisms for transaction approval
-
Supporting meta-transactions for gas-efficient and delegated transaction management
-
Enhancing multi-factor verification with role-based access control (RBAC)
GuardianSafe is designed to address these concerns by providing a modular security guard that integrates directly with Safe wallets via the ITransactionGuard interface, enforcing rigorous security policies before transaction execution.
Key Functionalities
-
DELEGATECALL Protection
By default, GuardianSafe blocks all DELEGATECALL operations, preventing unauthorized external code execution which could compromise wallet security. Owners may selectively enable DELEGATECALL with enforced delays to mitigate risk. -
Multi-Phase Time-Locked Workflows
Transactions proceed through distinct phases, requiring an initial request and a mandatory time delay before final approval and execution. This approach introduces a temporal security layer permitting external monitoring and intervention. -
Meta-Transaction Support
GuardianSafe facilitates gasless transaction approvals and cancellations through meta-transactions, enabling the broadcaster role to submit signed transactions under controlled conditions. -
Role-Based Access Control
The module implements granular RBAC separating transaction creation, broadcast, and emergency recovery duties into discrete roles with clearly defined permissions, reducing attack surfaces associated with key compromise. -
Transaction Guard Enforcement
Acting as a Safe wallet guard, GuardianSafe validates all transactions, ensuring they adhere to configured security policies, including preventing unauthorized guard modifications.
Community Alignment
GuardianSafe synthesizes and extends multiple community-led initiatives:
-
It operationalizes the Guardrail project’s approach to delegate call protection.
-
Incorporates Safe Harbour’s vision of fully on-chain multisig operations.
-
Integrates time delay capabilities.
-
Integrates multi-factor verification and access control improvements recommended by community analyses.
These integrations ensure GuardianSafe reflects current best practices and addresses evolving security threat models.
Availability
GuardianSafe is currently available for experimental deployment in our sandbox environment:
**https://sandblox.app/contracts/guardian-safe
more information can be found on our official repo:**
The module is open for community testing, feedback, and collaboration.
under open-source license MPL-2.0
Conclusion
GuardianSafe represents a methodical and technically rigorous security enhancement for Safe multisig wallets, leveraging foundational innovations in the Bloxchain Protocol and State Abstraction. It provides a multi-layered, auditable security solution addressing key vectors of risk identified by the Safe community.
We invite discussion, review, and collaboration to further refine and integrate GuardianSafe into the broader Safe ecosystem.
Particle Crypto Security Team