Aleph Zero Blog
Explore the ecosystem
Go to all articles
Technology

Shielder audit by ZK Security: complete!

Apr 16, 2025

AI Summary

Here's your AI summary of Shielder audit by ZK Security: complete! on Aleph Zero blog

Top 10 key takeaways:

  1. Successful Audit Completion: Aleph Zero Shielder has been successfully audited by ZK Security, a leading firm in zero-knowledge cryptography.

  2. Reputation of ZK Security: Known for their expertise in blockchain privacy mechanisms, ZK Security has previously audited notable projects like Aleo, Penumbra, and Aztec.

  3. Audit Scope: The audit covered ZK privacy circuits for deposits, withdrawals, and account opening, Solidity smart contracts, and the SDK for Shielder apps.

  4. Audit Duration: The audit process took two weeks to complete.

  5. Code Quality: The code was found to be clean and well-tested, with no critical issues identified.

  6. Improvements Made: Although some minor and theoretical issues were found, they have been addressed by the Aleph Zero team.

  7. Security Assurance: Shielder has undergone both internal and external security reviews, ensuring a solid and secure foundation for user privacy.

  8. Integration with Common App: Shielder is integral to the upcoming Common app, which focuses on user privacy in crypto transactions.

  9. Developer Tools: Shielder SDK provides tools for developers to incorporate privacy features into wallets and dApps.

  10. Accessibility of Privacy Tools: The audit is a step towards making privacy tools as user-friendly and secure as mainstream applications.

AI Summary

We are excited to share a major milestone on our journey to making privacy easier and safer: Aleph Zero Shielder has been audited successfully by highly respected ZK Security, a top-notch player in zero-knowledge (ZK) cryptography.

Who is ZK Security?

ZK Security is a leading security firm with experience in zero-knowledge technology. They’re well-regarded in the blockchain space for their deep experience and rigorous auditing of privacy-protection mechanisms, having audited Aleo, Penumbra, and Aztec, to name a few.

If a project has been audited by ZK Security, then the code has been thoroughly reviewed by professionals who are deeply familiar with the nuances of ZK cryptography.

The scope

It took ZK Security two weeks to audit the Aleph Zero Shielder, which is a key privacy component allowing users to send and receive tokens without revealing who sent what to whom. What they audited was:

  • The ZK privacy circuits behind deposits, withdrawals, and account opening.
  • The Solidity smart contracts that manage user funds.
  • The SDK (software development kit) powering apps on the Shielder system.

“The code was found to be clean and well tested.”

While ZK Security did find some room for improvement, all of the issues they’ve highlighted have already been resolved by the Aleph Zero team. Most of the discoveries were minor or entirely theoretical in nature—no critical issues were found. Security is always at the forefront of our thinking, and improvements were made anyway.

This audit comes on top of our own internal security reviews. That means:

  • Shielder has now been internally and externally vetted.
  • Users can be confident that their privacy lies on a solid, secure foundation.

Why it matters: Shielder powers the Common app

Shielder is not a standalone tool by itself—it’s a key part of our upcoming Common app, our next-generation crypto app with a focus on user privacy. With Shielder, Common will allow you to control your crypto privately, protecting your actions from public view while giving you the power to control what stays private and what doesn’t.

Shielder is also the key to the Shielder SDK, a set of tools for developers to embed privacy in the wallets and dApps that they build.

This audit is one more step toward making powerful privacy tools as easy to use as mainstream apps—with none of the doubt and all of the safety.

Want the technical details?

If you’re curious and want to know more about the results or the full scope of the audit, you can read the full report here.

Tags:

Mateusz Raczyński

Marketing Manager

Related articles

Privacy

Can there be better privacy on Ethereum and its ecosystem? A look at privacy on Base

A point that bears repeating is that blockchain networks today are not private. They’re pseudonymous. There’s no privacy on Ethereum by default–and most other blockchain networks do not count with the privacy guarantees that users would expect to see from a web3 environment.  Every financial transaction on the most popular blockchains is reviewable on a

Eduardo Tio

Mar 24, 2025

Go to article
Privacy

What could be better in privacy for Ethereum and Arbitrum?

Let’s explore the current state of privacy in the Arbitrum ecosystem to understand what measures are being implemented to enhance privacy protections for users. Along the road, we’ll also look for an optimal privacy solution. Most blockchain networks, including Ethereum, do not offer the privacy guarantees that users might expect in a web3 environment. They

Eduardo Tio

Apr 17, 2025

Go to article
Others

ZK privacy everywhere: How Aleph Zero is making it happen

Aleph Zero is bringing zero-knowledge privacy to multiple blockchain ecosystems—opening up for the majority of crypto users. Let’s break it down on how we’re rolling it out. ZK Privacy through the Shielder Network Shielder Network is a powerful privacy solution that comprises smart contracts, relayers, and cryptographic frameworks. It acts as the backend for private,

Mateusz Raczyński

Apr 7, 2025

Go to article