Devcon VI

Being a Responsible Multisig Signer (Verify, Don't Trust!)
10-13, 17:00–17:10 (America/Bogota), Talk 4

So you have been trusted with safeguarding a project along with other members of your community, congratulations! But, alas, the first transaction from a developer on the team comes in. How do you proceed? Can you blindly trust the developer? Should you? It's tempting to just see what other multisig members do and roll along, right?

In this talk we'll go over what you can do to verify what a transaction will actually do, and what tools you have at your disposal for this. No coding required!

Santiago joined the Ethereum dev space in 2017. He has worked as Director of Development and Security Reseacher at OpenZeppelin, has contributed to multiple open source projects, and wrote the book "Ethereum for Web Developers". He's also a councilmember for TheGraph.

Prior to web3, he worked for over 10 years on software development, focusing on disease surveillance and disaster response. He was also a TA at University of Buenos Aires, where he got his Masters in Computer Science.