Menu

Posts tagged “audits”

Least Authority Performs Security Audit of the Cosmos Blockchain SDK Framework

Hind Abu-Amr on March 28, 2019

Least Authority performed a security audit of the Cosmos Blockchain SDK, a framework for building Proof of Stake state machines. The investigation and analysis were conducted by Gordon Hall and Ramakrishnan Muthukrishnan, along with project management support by Hind Abu-Amr, in collaboration with Tendermint team members Jessy Irwin, Zaki Manian, Christopher Goes, and Jack Zampolin. In order to facilitate high level review of the project and a more nuanced review of particular features,...

Read more

How The TezBox Wallet Audit Should Inform How We Think About Privacy

Gordyn Hall on February 7, 2019

The TezBox team promptly resolved all issues discussed here. If you want to skip my rambling and just read the official report, it's here. Last September, I had the pleasure of performing a security audit for a Tezos project called TezBox, developed by Stephen Andrews. TezBox is a web based digital wallet for using the Tezos cryptocurrency. I'm always excited to audit JavaScript projects, especially those that run in the browser and secure your finances, because the browser is a hostile...

Read more

Releasing Three Zcash Security Audit Reports

Hind Abu-Amr on January 31, 2019

At the request of Zcash Company, the team at Least Authority had the opportunity to provide security consulting services on Zcash’s major 2018 releases. This included auditing Zcashd v1.0.15 (as part of the Sprout 1.0.x series), reviewing and providing feedback on the Overwinter and Sapling Specifications for future implementation, and a security review of the Sapling Implementation and RPC Interface changes following the latest release. This approach allowed Least Authority to look at the...

Read more