security.policy // validator operations

Security and operations policy for Stakize validators.

This page summarizes the controls, operating practices, and communication principles Stakize uses for Ethereum and Solana validator infrastructure.

Policy overview

The purpose of this policy is to describe the operating posture for Stakize validator infrastructure. It is written for delegators, prospective staking clients, and ecosystem participants evaluating validator reliability and security.

Stakize also uses a dedicated AI-assisted monitoring agent to continuously review validator performance and health signals. This agent helps surface important changes faster by analyzing validator logs, service status, synchronization behavior, resource utilization, and protocol-specific indicators so operators can focus attention where it matters most. The AI agent supports operational awareness and early issue detection; final operational decisions remain under human administrator review.

1. Infrastructure operations

  • Validators are monitored for process health, synchronization, disk usage, memory, CPU, network reachability, and protocol-specific health indicators.
  • Maintenance is planned to minimize disruption and avoid unnecessary restarts.
  • Validator software versions are reviewed before upgrades, with attention to network guidance and operational risk.

2. AI-assisted monitoring

  • An AI-assisted monitoring agent reviews validator logs, health metrics, and performance patterns to help identify issues sooner.
  • The agent is designed to support human operators with faster signal detection, clearer summaries, and more consistent health checks.
  • Alerts and recommendations are reviewed by authorized administrators before operational changes are made.

3. Key handling

  • Validator signing keys and withdrawal authority are treated as separate security concerns.
  • Withdrawal authority should remain under investor control unless a separate written custody agreement states otherwise.
  • Private keys are never requested through email, chat, or public forms.

4. Access control

  • Administrative access is restricted to authorized operators.
  • Remote access is limited, logged where practical, and protected by strong authentication controls.
  • Operational systems are not used for unrelated workloads.
Monitoring

Performance monitoring

Stakize reviews network participation and node health using protocol tools and system telemetry. Monitored items may include vote success, catch-up status, peer connectivity, missed attestations, missed slots, disk pressure, memory pressure, service restarts, and alert history.

Maintenance

Upgrade practice

Software updates are evaluated before deployment. Security updates and network-critical releases are prioritized, while optional changes are scheduled to reduce operational risk.

Incident response

When a validator issue is detected, Stakize prioritizes containment, service restoration, root-cause review, and clear communication. Typical response steps include validating service health, checking logs, confirming network synchronization, reviewing recent changes, restoring normal validator duties, and documenting lessons learned.

Examples of events that may trigger review include missed voting or attestation patterns, sustained catch-up delay, abnormal resource pressure, unexpected restarts, suspected unauthorized access, storage errors, network instability, or validator software faults.

Solana

SOL validator reference

Stakize Solana validator identity and vote account are published here so delegators can verify they are selecting the correct validator.

Validator IdentityClick to copy the full validator identity.
Vote AccountClick to copy the full vote account.
Ethereum

ETH validator reference

Ethereum validator public keys are used for verification and coordination. They are not deposit addresses and should not receive direct transfers.

Validator Public KeyClick to copy the full validator public key.
Disclosure: This policy is informational and does not create a service-level agreement, custody agreement, investment recommendation, or guarantee of rewards. Staking includes protocol, operational, custody, security, and market risks.