KILT Protocol has completed security audit with SRLabs, now in the last phase before decentralisation
KILT Protocol, a credentials for Web 3.0 has completed security audit with Security Research Labs (SRLabs), a Germany based cybersecurity consultancy and hacking research.
Security Research Labs, a cybersecurity consultancy with extensive experience in auditing @kusamanetwork, @Polkadot, @substrate_io-based chains, has completed its audit of KILT as one of the final steps before decentralisation.https://t.co/ka9DZ6bqNK
— KILT Protocol – We’re Hiring! (@Kiltprotocol) November 8, 2021
According to announcement on November 8, the team said the KILT Protocol now in the last phase before decentralisation, which is planned to occur mid-November to mid-December.
In order to effectively review the KILT codebase, SRLabs employed a threat model-driven code review strategy. For each identified threat, hypothetical attacks that can be used to realise the threat were developed. Prioritising by risk, the codebase or relevant pallets was assessed for existing protections against respective threats and attacks, as well as the vulnerabilities that make these attacks possible.
SRLabs to perform audits of the KILT Blockchain, The KILT Software Development Kit (SDK), and The Sporran Wallet.
Karsten Nohl, SRLabs’ founder, adds: “Every blockchain system comes with new security challenges due to the unique business logic and implementation. Starting from threat modeling enables our testers to focus attention on the most promising hacking avenues. The collaboration with BOTLabs on securing KILT Protocol worked really well.”
During the audit, SRLabs identified eight issues including two with a high severity. These two issues were found in the areas of staking and were resolved by the KILT development team with the first runtime upgrade. The remaining six issues affecting the area of KILT functionality with a severity of moderate to low were fixed by the KILT development team in a subsequent runtime upgrade, in advance of full decentralisation and the availability of the KILT functionality.
The KILT Roadmap
“We will be announcing the next milestones early this week. Stay tuned !”, Christine Mohan, vice president of business development said on Telegram.
- What Is SocialKYC? KILT Protocol Announced A Decentralized Identity Verification Service For Regaining Control Over Digital Identity
- KILT Protocol Is Teaming Up With Integritee For Allowing SocialKYC Service To Be Publicly Audited By Users