A DAO's resilience level is determined by the framework, which evaluates the risk of its core governance protections — the weakest one defines the stage.
STAGE 0 [HIGH RISK]
STAGE 1 [MEDIUM RISK]
STAGE 2 [LOW RISK]
pending Criteria
2 fixes to reach Stage 1
Review the current setting and recommended fix for each metric.
Interface Resilience
Current
The governance interfaces and domain of Nouns do not have DNS protection, leaving voters vulnerable to spoofing and hijacking attacks.
Fix
The domain should be protected with standard security certificates, made public by its provider. Ideal security here includes a verified front-end, deployed in an immutable manner, linked to an ENS record by the DAO in a domain like vote.DAO.eth and made available through .limo or .link or equivalent.
Voting Delay
Current
The Voting Delay is set to 12 hours.
Fix
The waiting period between the proposal submission and the snapshot of voting power must be more than two days. In addition, the DAO needs to have an activation plan to contact delegates and stakeholders to mobilize their votes in case of an attack.
Framework Overview
detailsThese metrics define the DAO's risk level. Select a metric to explore it, or open the full framework for more context.
HIGH RISK
MEDIUM RISK
LOW RISK