# 2. Audited & secured infrastructure

At <mark style="color:blue;">**Noon**</mark>, security isn’t assumed, it’s **proven** through rigorous, continuous auditing and internal review. Our approach mirrors the discipline used in institutional fund management, ensuring every protocol action is safe, auditable, and reliable.

### Independent Security Audits

<mark style="color:blue;">**Noon**</mark>’s smart contracts are continuously reviewed by **top-tier independent security firms**, including [Quantstamp](https://quantstamp.com/) (2024), [Halborn](https://app.gitbook.com/u/iMzObWMZFxTrUttIwqYzjGmESpw1) (2024, 2025), and [Hashlock](https://app.gitbook.com/u/iMzObWMZFxTrUttIwqYzjGmESpw1) (2025). Every line of code is examined **before accepting collateral or minting&#x20;**<mark style="color:purple;">**USN**</mark>, covering everything from minting and redemption functions to the collateral management system and governance mechanics.

Every protocol upgrade that involves smart contracts triggers a **fresh third-party review** before deployment. Audit results are **publicly available**, ensuring full transparency.

### Role-Based Access Control (RBAC)

At <mark style="color:blue;">**Noon**</mark>, we enforce **clear permissions** for all critical functions. Admin, staking, rebase, and blacklist operations are strictly separated. Governance is secured through a **two-step ownership transfer (Ownable2Step)** and all treasury or emergency actions require **multisig approval**. This eliminates single points of failure and ensures robust operational control.

### Incident Preparedness

Our **24-hour incident plan** defines predefined response procedures, rollback capabilities, and emergency communication channels. Combined with audits and governance controls, this ensures **operational integrity under all conditions**.

### Outcome

<mark style="color:blue;">**Noon**</mark>’s infrastructure delivers **full auditability**, **no single point of failure**, and proven resilience. True DeFi security comes from **code that can stand on its own**, and at Noon, safety is **transparent, tested, and continuously validated**.

> True DeFi security comes from **code that can stand on its own**.\
> At Noon, safety is **transparent, tested, and continuously validated,** not assumed.

Additional details can be found in the following pages:

* [Smart contract security](https://docs.noon.capital/built-for-safety/2.-audited-and-secured-infrastructure/smart-contract-security)
* [Smart contract audits](https://docs.noon.capital/built-for-safety/2.-audited-and-secured-infrastructure/smart-contract-audits)
* [Contracts and addresses](https://docs.noon.capital/additional-resources/contracts-and-addresses)