XRP Ledger Developers Refute Last-Place Security Ranking Among Blockchains – Decrypt

XRP Ledger builders are pushing again in opposition to the community’s last-place safety ranking in a current rating of greater than a dozen blockchains by analysis agency Kaiko, reviving a long-standing debate over the cryptocurrency platform’s decentralization and general trustworthiness.

The Kaiko Blockchain Ecosystem Rating, launched on August 13, assigned XRP Ledger a safety rating of 41 out of 100, the bottom among the many 15 blockchains included within the report. Ethereum topped the rating with a ranking of 83 out of 100, intently trailed by Ethereum layer-2 community Arbitrum and layer-1 community Solana, Kaiko’s findings present.

Nonetheless, XRP Ledger’s low rating is deceptive, RippleX Engineering Head Ayo Akinyele claimed in feedback to Decrypt, citing the community’s sturdy security document.



“XRPL has one of many strongest safety observe data in blockchain—13 years of steady operation and not using a single incident impacting the core community,” Akinyele stated.

Kaiko researchers acknowledged that the rating was influenced partially by an April incident wherein the official software program growth equipment for XRP Ledger was hit with a provide chain assault and contaminated with a possible crypto-swiping “backdoor,” as first found by safety agency Aikido.

The XRP Ledger Basis changed the compromised software program downloads and stated the community codebase itself was by no means impacted. When requested in regards to the incident, a Ripple Labs consultant once more careworn that it didn’t symbolize a community vulnerability.

“A few of the perceptions might stem from a lack of know-how in regards to the nature of the incident,” the consultant stated, including that it was “not a vulnerability in XRPL itself, however a provide chain concern in an NPM bundle (a JavaScript library).”

“Ripple, the XRPL Basis, validators, and unbiased builders all communicated brazenly,” they added, “from incident studies to public posts.”

Past contemplating that incident, Kaiko researchers additionally used publicly obtainable information on operational resilience, validator decentralization, audit frequency, and previous incidents to give you its safety scores.

XRP Ledger acquired low marks on safety as a result of it confirmed indicators of extra centralization than different main blockchains, a Kaiko consultant instructed Decrypt, pointing to the protocol’s comparatively low node rely and Nakamoto coefficient—two key measures of decentralization within the crypto world. Its rating additionally suffered as a result of discovery of a crypto-stealing malware in an official XRP Ledger node bundle supervisor for builders in April.

Some Web3 specialists have forged doubt on the usefulness of third-party safety audits, pointing to an increase in pay-to-play certifications and the technical limitations of many providers. The disagreement over XRP’s safety rating underscores a long-running debate over the trustworthiness of the protocol.

For years, some Web3 customers have raised considerations over its degree of decentralization, a high quality that’s typically thought to be a proxy for safety within the crypto neighborhood. The community has a comparatively low variety of validators—it has lower than 200 working validator nodes on mainnet, whereas Solana boasts greater than 1,000 validators, in accordance with on-line information.

The DeFi platform additionally has a comparatively a low Nakamoto coefficient, a measure of decentralization—named after pseudonyous Bitcoin creator Satoshi Nakamoto—that counts the minimal variety of unbiased entities required to disrupt or overtake a blockchain.

However XRP Ledger’s safety measures go far past its decentralization, in accordance with Akinyele.

“XRPL’s consensus design is inherently resilient in opposition to assault,” Akinyele stated. “Validators don’t have any incentive to collude or censor.”

XRP Ledger makes use of its distinctive node lists to safe its community, the manager added. In accordance with that system, every validator retains a listing of community individuals which might be deemed reliable, conserving dangerous actors at bay.

“If [malicious] conduct have been ever tried, the neighborhood might instantly reject the offending validator and adapt the community to forestall it,” he added.

Akinyele additionally highlighted a number of safety endorsements acquired by XRP Ledger over the previous two years, together with a “Triple A” Skynet rating from CertiK and audits from Web3 safety companies Halborn and FYEO.