Trusted Domain Levels
Trusted Domain Levels (TDL) is the trust based system in the Ronin Ecosystem, where there are different levels of trust depending on the developer's reputation. The purpose of this system is to inform users about the possible dangers of the dApp (any website or software) when using it. Every dApp is marked with a specific level of trust (example below), which is visible to you when you are interacting with your Ronin Wallet and the dApp itself.
Every request to sign a transaction with your wallet should be carefully evaluated. Unknown dApps represent a high level of risk and should be treated accordingly. Keep in mind that Sky Mavis cannot protect users scam attempts through such sites as the Ronin Ecosystem allows all dApps to integrate Ronin Wallet in their services. If you find any suspicious dApp, you should reach out to us through our support page immediately and report it. We are able to block such sites from interacting with a user's Ronin Wallet.
The Ronin Wallet also utilizes Blockaid’s dApp Scanning, which enhances security by analyzing decentralized applications for potential risks before users interact with them. It evaluates smart contracts for vulnerabilities, unauthorized asset transfers, and suspicious behaviors using advanced machine learning and heuristics. The system simulates transactions to predict their outcomes, helping users identify unexpected actions before committing. By categorizing dApps based on their security level, Blockaid provides clear warnings about possible threats, allowing users to make informed decisions while transacting within the Ronin Wallet ecosystem.
Trust Levels
1. Mavis
Projects that are developed by Sky Mavis or Ronin. Users can feel safe when interacting with these dApps.
Examples:
- Ronin Portal: https://app.roninchain.com
- Axie Infinity Portal: https://app.axieinfinity.com
2. Mavis's Friends
Projects that are Sky Mavis or Ronin Partnership. Although these dApps are trustworthy, Sky Mavis won't guarantee the safety when users are interacting with these dApps.
Examples:
- The Protocol for Lending, Staking and Borrowing: https://metalend.tech
- The Protocol for Real-time Finance: https://sablier.finance
3. Verified Community's dApp
A vetted dApp that has passed Blockaid’s security criteria. These types of dApps are not risk-free, caution has to be taken and users should only interact with dApps from developers they trust.
4. Community's dApp
A dApp identified by Blockaid but not fully verified. Users can interact with it, but security warnings may be limited. Caution is advised when interacting with these dApps.
5. Security Risk
These dApps have been flagged for potential vulnerabilities but are not necessarily malicious. Users should proceed with caution and verify transactions carefully if they decide to interact with these dApps.
6. Malicious
These dApps are identified as actively harmful, often linked to scams, phishing attempts, or unauthorized fund access. Users are strongly advised against interacting with these dApps, as they pose a high risk of asset loss or security breaches. Ronin Wallet will actively prevent you from interacting with these dApps.
Possible Risks:
You can accidentally lose your assets if you are not cautious enough. A website can prompt you to:
- Submit a transaction to transfer your funds to an attacker's address
- Submit an approval transaction that would allow attackers to transfer funds from your wallet
- Sell your assets for 0 ETH and to the attacker
Recommendations:
- Don't use wallets with a lot of funds if you are in doubt. You can always create a new Ronin Wallet for special transfer purposes only.
- Don't sign transactions you are not familiar with.
- Use only "Mavis" trust level or "Mavis's Friends" trust level dApps to ensure maximum safety. Remember, NOT all dApps from new developers are necessarily malicious or fraudulent!
- Verify unfamiliar dApps before you access them. The Axie Discord or Ronin Discord are great places to ask about specific sites you are suspicious about.