Aleph Zero Blog
Technology

Trail of Bits to Audit the Security of Aleph Zero’s Platform

Jun 10, 2021

AI Summary

Here's your AI summary of Trail of Bits to Audit the Security of Aleph Zero’s Platform on Aleph Zero blog

Top 10 key takeaways:

  1. Audit Announcement: Aleph Zero's testnet is being audited by Trail of Bits.
  2. Focus Areas: The audit will focus on the AlephBFT protocol and its integration with the Substrate framework.
  3. Milestones Achieved: Aleph Zero sought the audit after securing key market partnerships, peer recognition at an ACM conference, and completing seed funding.
  4. Trail of Bits Expertise: Trail of Bits has been securing high-profile organizations and devices since 2012.
  5. Clientele: Their clients include Compound, Facebook, Stripe, DARPA, Cosmos, Loom, the Linux Foundation, and Western Digital.
  6. Aleph Zero's Confidence: Aleph Zero's Michal Swietek and Adam Gagol expressed confidence in Trail of Bits' expertise and experience.
  7. Audit Tasks: The audit will include automated bug detection, architecture review, manual code review, and identification of security and correctness properties.
  8. Post-Audit Relationship: Trail of Bits will continue to provide security guidance to Aleph Zero after the audit.
  9. Security Team: The audit will involve security engineers, software engineers, and cryptography experts from Trail of Bits.
  10. Report Availability: The audit report by Trail of Bits will be available for review.
AI Summary

The Aleph Zero team is happy to announce that the platform’s testnet is being audited by Trail of Bits.

Aleph Zero requested that Trail of Bits perform a focused security review of the AlephBFT protocol and its integration with the Substrate framework. We sought the company’s assistance after reaching several important milestones, such as securing key market partnerships, receiving peer recognition during an ACM conference, and completing our seed funding round.

Trail of Bits has been helping secure the world’s most targeted organizations and devices since 2012. The company combines high-end security research with a real-world attacker mentality and has been engaged by top-tier organizations such as Compound, Facebook, Stripe, DARPA, Cosmos, Loom, the Linux Foundation, and Western Digital.

As Aleph Zero’s Michal Swietek said, “Finding a top-tier auditor is difficult. We are delighted that Trail of Bits has accepted Aleph Zero as a customer, and we’re confident our collaboration will be engaging, challenging, and fruitful.”

Adam Gagol expressed a similar sentiment: “Trail of Bits’s level of sophistication as well as their track record—in both blockchain-based, as well as non-blockchain projects—is backed by almost 10 years of experience in securing the most innovative and mature organizations in the world.”

Security engineers, software engineers, and cryptography experts from Trail of Bits will focus on the following tasks, among others:

  • Applying a comprehensive suite of automated tools to uncover bugs in the Aleph Zero platform,
  • Reviewing the architecture of the system for design flaws,
  • Performing a manual code review,
  • Identifying security and correctness properties.

After the audit has ended, the relationship between Trail of Bits and Aleph Zero will continue, with Trail of Bits providing best-effort guidance on any additional security questions that arise.

Read the report by Trail of Bits

Tags: