Smart Contract Audits

We rely on our formal verification platform and the security mindsets of our experts to secure our clients. We identify security vulnerabilities and certify the functional correctness of smart contracts and blockchain projects. We have extensive experience with complex projects, such as decentralized exchanges and high-value enterprise systems.

Audit Your Contracts Now

We rely on our formal verification platform and the security mindsets of our experts to secure our clients. We identify security vulnerabilities and certify the functional correctness of smart contracts and blockchain projects. We have extensive experience with complex projects, such as decentralized exchanges and high-value enterprise systems.

Digix Security Audit

We have completed an audit of the DigixDao smart contracts. During the audit process, performed by three security experts over four weeks, a set of contracts were reviewed with respect to a specification elicited by the ChainSecurity and Digix teams together. The full list of contracts and considered properties can be found in our audit report.

Read Report
Our Process
  • 1. Precise specification

    We identify key requirements, security properties, and trust assumptions based on your code and documentation to precisely specify the intended behavior of your contracts.

  • 2. Verification of contracts

    We assess whether your contracts satisfy the identified specification in all possible scenarios using our state-of-the-art smart contract verifier.

  • 3. Verification of fixes

    We notify you about possible issues to be fixed and re-verify your code changes to ensure that your contracts are secure and fully satisfy the specification.

  • 4. Audit report

    We document the elicited specification and verification results in a detailed audit report to certify the correctness of your contracts.

FAQ

What is the difference between a formal audit and a manual audit?

In a manual audit, a security auditor manually inspects the smart contract’s code to check if it correctly implements the contract’s specification. A manual audit does not come with guarantees as even the best experts may fail to spot hard-to-find bugs. In a formal audit, the expert also (1) formalizes the key parts of the contract’s specification and (2) uses a verifier to mathematically prove that the smart contract correctly implements the specification.

Who will audit my project?

All audits involve multiple auditors from the ChainSecurity team. Our teams consists of PhD and Master graduates from ETH Zurich, Switzerland, the top technical university in Europe, and have extensive experience in system security and program verification. All our experts are trained in-house.

How much does an audit cost?

The price of an audit is calculated based on the size and complexity of the smart contracts and the number and complexity of the specifications to be verified. Contact our team and we will provide you with a quote for your project.

How long does an audit take?

The audit time varies across projects. Simple projects (such as tokens) can be audited within 1-2 days, while large and complex projects (such as a decentralized exchange) can take up to 1-2 months.

For more questions: contact@chainsecurity.com