Curve Finance founder Michael Egorov is calling for industry-wide safety standards across decentralized finance after the KelpDAO incident exposed familiar weaknesses in supposedly decentralized systems. His comments come as the sector faces renewed scrutiny over how protocols are designed, how external dependencies are managed, and whether existing security practices are sufficient for a market that is attracting larger pools of capital.
According to Egorov, the recent wave of on-chain exploits has highlighted a recurring problem: many DeFi platforms still rely on centralized points of failure even when their branding and architecture suggest decentralization. In his view, the industry has spent too much time reacting to incidents after the fact, rather than designing systems to prevent avoidable failures before they occur.
He argued that critical dependencies should be distributed whenever possible. Where centralization cannot be fully eliminated, he said trust should be split among multiple parties and backed by clearer operational safeguards. The broader message is that security in DeFi cannot be reduced to code review alone; it must also include how protocols are structured, governed, and integrated with off-chain or semi-centralized components.
A Call for Ecosystem-Level Coordination
Egorov’s proposal goes beyond individual protocol fixes. He called for coordinated action from major ecosystem players, specifically naming the Ethereum Foundation and the Solana Foundation as institutions that could help drive alignment across the industry. The goal would be to establish a shared framework for building, reviewing, and maintaining secure DeFi systems.
Such a framework, as described in the source material, would serve developers, auditors, and risk managers alike. Smart contract audits are already common practice in DeFi, but Egorov suggested that the wider system design remains uneven from one protocol to another. As more institutional attention flows into the sector, these inconsistencies may become harder for markets to tolerate.
The timing of his remarks is important. Security concerns in DeFi are no longer only about isolated losses; they increasingly shape confidence in the resilience of the entire ecosystem. That is why the discussion now extends beyond technical exploits and into standards, coordination, and shared expectations across chains and protocols.
KelpDAO Incident Rekindles Security Debate
The immediate backdrop for Egorov’s comments is the market fallout tied to the KelpDAO exploit. The report says the incident resulted in losses of more than $300 million, triggered large-scale withdrawals from DeFi platforms, and heavily affected lending markets, including Aave. In total, the sector’s total value locked (TVL) fell by $14.17 billion, underscoring how a single vulnerability can cascade into broader market stress.
Those numbers have intensified concerns about infrastructure resilience. Even when protocols survive an exploit, the surrounding damage can spread through user confidence, collateral flows, and lending conditions. In practice, this means a failure at one point in the system may create pressure elsewhere, especially when capital moves quickly in response to perceived risk.
For critics of the current DeFi model, the KelpDAO episode is another reminder that decentralization in name does not always mean decentralization in function. If critical control points remain concentrated, the security posture of a protocol may be far weaker than users assume. Egorov’s warning directly addresses this gap between perception and implementation.
Investors See Failures as Part of DeFi’s Evolution
Not everyone in the industry interprets recent incidents as evidence of structural decline. Haseeb Qureshi, managing partner at Dragonfly, said persistent failures have long been part of DeFi’s development cycle. He pointed to past crises, including the Terra collapse and earlier market disruptions, as examples of how the ecosystem has repeatedly absorbed shocks and adapted.
Qureshi’s argument is that failures matter, but they are not necessarily existential. In his view, DeFi learns from breakdowns much like traditional finance evolved through banking crises and market dislocations. The key question is not whether losses occur, but whether the system as a whole can contain them.
That perspective reflects a more evolutionary reading of DeFi’s history. Repeated incidents are painful and costly, but they also force the sector to improve risk controls, revise assumptions, and harden protocol design. For supporters of this view, each failure contributes to a longer process of institutional learning rather than signaling the end of the model.
Why Risk Containment Still Matters
The report notes that many protocols are increasingly designed with safeguards such as overcollateralization and buffer reserves. These mechanisms are intended to absorb stress events and reduce the chance that isolated failures trigger full-scale contagion. In many cases, platforms can withstand local disruptions without collapsing into broader systemic crisis.
Still, recent events show that resilience is uneven. Some protocols may be technically robust at the contract level yet remain exposed through governance design, operational concentration, or external dependencies. This is precisely why the call for standards has gained traction: it attempts to move the conversation from patchwork protection toward baseline expectations for the entire sector.
As more capital enters decentralized markets, the tolerance for preventable mistakes is falling. Retail users, institutions, and infrastructure providers may all demand clearer assurances that DeFi systems are not only innovative but also responsibly engineered. That shift could be one of the defining forces shaping the next stage of DeFi adoption.
A Sector at a Crossroads
The debate highlighted by Egorov and Qureshi reveals a central tension in DeFi’s growth story. On one side are developers and protocol leaders pushing for higher standards, better coordination, and stronger preventive design. On the other are investors and long-time market participants who see periodic breakdowns as an unavoidable part of experimentation in open financial systems.
Both views can coexist. DeFi may continue to evolve through trial and error, yet that does not remove the need for more disciplined security norms. If anything, the sector’s expansion makes those norms more urgent. As capital deepens and market interconnections become more complex, design flaws that were once tolerated as early-stage growing pains may now carry wider consequences.
What remains clear is that expectations are changing. The KelpDAO incident has renewed pressure on the industry to define what “safe enough” should mean in decentralized finance. Whether that leads to formal standards, stronger cross-ecosystem coordination, or more rigorous protocol design, the outcome may play a major role in determining how DeFi matures in the years ahead.

