Scores/Centrifuge

Centrifuge

DAMASCUS

RWA / Tokenization · Ethereum · $300M+ TVL · 15 contracts

Confidence 70%Z-Factor 0.80Updated 2026-05-13Public Score

Public risk assessment — scores are produced with the same methodology as monitored protocols

763

BRI Score

3004756508251000

Security Profile

Access Control
70

Economic Soundness
65

Oracle Integrity
55

Compositional Risk
72

Governance
65

Maturity
75

Resilience
50

Supply Chain
72

Op Security
68

Cascade Exposure
100

Access Ctrl
70

Economic
65

Oracle
55

Compos.
72

Govern.
65

Maturity
75

Resilience
50

Supply Ch.
72

OpSec
68

Cascade
100

Min

Avg

Max

100

Audit History

Trail of Bits

2022-06

Code4rena

2023-09

Bug Bounty Program

$250,000

Max payout on Immunefi

View Program →

Assessment

RWA tokenization protocol with 72-month Tinlake history. D3 low (55) due to off-chain oracle dependency for RWA valuations. D2 reflects inherent RWA illiquidity risk. Niche protocol with moderate security coverage.

Dimension Breakdown

How scores work →

Access Control

Weight 18%72% conf

Good

Pool admin controls asset onboarding and configuration
Epoch-based tranche investment/redemption model
Restricted token transfers (compliance whitelist)
Centralized asset originator trust dependency

Economic Soundness

Weight 13%68% conf

Moderate

RWA collateral valuation depends on off-chain assets
Senior/Junior tranche waterfall model
NAV calculation relies on off-chain asset pricing
Liquidity risk: RWA assets are illiquid by nature

Oracle Integrity

Weight 13%60% conf

Moderate

NAV oracle depends on off-chain asset valuations
Asset originator self-reports collateral values
Limited on-chain price verification for RWA
Trust assumption: originator honest reporting

Battle-Tested Maturity

Weight 12%75% conf

Good

Tinlake live since mid-2020 (72 months), new Centrifuge since 2023
~$250M TVL across pools
No protocol-level exploit
Z-factor: 0.923

Governance & Upgradeability

Weight 10%68% conf

Moderate

CFG token governance on Centrifuge Chain
Council and democracy modules (Substrate-based)
Pool-level governance by asset originators
Limited on-chain governance maturity

Adversarial Resilience

Weight 10%30% conf

Concerning

Maximum resilience under independent adversarial testing
Comprehensive security coverage across all attack surfaces
Active bounty program incentivizes continuous scrutiny
No validated adversarial findings — score set to neutral baseline

Operational Security

Weight 10%65% conf

Moderate

Small but professional team
Dual-chain operational complexity
RWA operations require off-chain processes
Limited public incident response documentation

Compositional Risk

Weight 5%70% conf

Good

Tinlake/Centrifuge Chain integration
Limited DeFi composability (restricted tokens)
MakerDAO integration for DAI lending against RWA
Moderate external dependency footprint

Cascade Exposure

Weight 5%50% conf

100

Excellent

Member of 2 dependency cluster(s)
No cross-protocol cascade exposure detected
Score: 100/100 (higher = more isolated from systemic risk)
Source: cross_protocol_composition.json dependency analysis

Supply Chain

Weight 4%70% conf

Good

Substrate-based chain (Centrifuge Chain)
Solidity contracts on Ethereum (Tinlake)
Moderate dependency complexity
Mixed tech stack (Rust + Solidity)

Risk Drivers

Primary risk factors driving this score, ordered by severity.

Adversarial Resilience50

Oracle Integrity55

Economic Soundness65

Adversarial Risk Signals

Observable security posture indicators. These signals reflect publicly verifiable information and responsible disclosure outcomes. No specific vulnerability details are exposed.

Disclosure HistoryNot Assessed

Remediation VelocityNot Assessed

Bug Bounty ProgramNot Assessed

Audit CoverageNot Assessed

Incident HistoryNot Assessed

Deployed 2021-05-01Z-Factor 0.80010 active dimensions

Score History & Verification

Score provenance tracking begins with the next reassessment.

On-Chain Data

Protocol Slug: "centrifuge"
Oracle: BRORegistry (Base)
Evidence: IPFS (pinned)
Staleness Threshold: 24 hours

Read Score

registry.getScore("centrifuge")

Reduce exploitable risk

BlackHart Monitoring provides continuous adversarial analysis, vulnerability detection, remediation support, and verified reassessment when your risk posture improves.

View Monitoring Plans How Scores Work

Believe this score contains a factual error? Submit evidence for review →