Stellar network validators are set to vote on July 8, 2026, on Protocol 27, codenamed Zipper, a major upgrade that introduces native authentication delegation and critical security fixes. The proposal will allow one account to directly authorize another to act on its behalf at the network level, streamlining developer workflows for wallets, payment applications, and multisig configurations. With the change, users could regain access to funds via trusted accounts, mitigating private key loss incidents, while businesses could manage shared access with configurable signing rules. Developers anticipate reduced transaction steps and lower operational costs due to simpler on-chain authorization.
The upgrade also addresses a replay vulnerability in the Soroban smart contract environment by implementing address-bound credentials, preventing valid authorizations from being reused in different contexts. Protocol 27 serves as a necessary transition toward Protocol 28, which aims to introduce contract-based authentication for standard Stellar accounts. If approved, the changes will execute immediately on the testnet before general deployment, requiring node and tool updates for compatibility.
Simultaneously, institutional interest in Stellar’s payment network is growing. Over $3.3 billion in tokenized real-world assets (RWAs) are now issued on the chain, connecting traditional finance with blockchain-based settlement. Stablecoin activity is a key driver: USDC involvement in a United Nations-linked initiative, stablecoin work with MoneyGram and Stripe, and PayPal’s planned expansion onto Stellar as its third blockchain highlight rising adoption. These developments, combined with the upcoming upgrade, position XLM as a notable player in regulated, low-cost cross-border finance and digital asset tokenization.