CertiK has completed a security audit of the Ocean Protocol Token and confirms the quality of smart contracts
The CertiK team has recently completed a security audit for Ocean Protocol, a decentralized data exchange protocol to enable safe sharing of data that is borderless and privacy-preserving, unlocking the value of data for AI and beyond. To preview the summary of the official audit report, please visit here.
CertiK’s team of experts indicated that Ocean Protocol’s smart contract code is of high quality. There were no critical vulnerabilities detected, and overall, the code style is well-written, achieving correctness by aligning technical implementation with the developers’ specification. CertiK congratulates the Ocean Protocol team for passing the rigorous verification process.
Audit Process and Results
The OCEAN token contract strictly follows the standard ERC20 interface with a minimal set of additional features for central governance and life cycle management. CertiK has assigned 3 experts for this audit project and delivered the report within 4 business days. The audit team closely analyzed the smart contract using a variety of tools, including an automated Formal Verification engine, static/dynamic analysis, and in-depth expert review.
Thanks to a very detailed wiki page and design documents from the Ocean Protocol team, the verification and audit process was straightforward and efficient. Many healthy discussions and interactions were conducted to clarify that 1) the specification met the implementation and 2) the best solution was used to achieve the desired goals.
The contract uses efficient storage to fulfill the business requirements and contains the proper intervention mechanism to prevent human errors. CertiK concludes that the OCEAN token is in a well-tested and secure state, not vulnerable to known antipatterns or bugs. Nevertheless, the CertiK team advises token holders to be conscious of the administrative authority of the contract owner, who has the ability to perform critical actions, such as pause, mint, and kill.
About Ocean Protocol
Ocean Protocol is a decentralized data exchange protocol to unlock data for AI. Through blockchain technology, smart contracts, and tokens, Ocean Protocol connects data providers and consumers, allowing data to be shared while guaranteeing traceability, transparency, and trust for all stakeholders involved. It allows data owners to give value to and have control over their data assets without being locked-in to any single marketplace. By bringing together decentralized blockchain technology, a data sharing framework, and an ecosystem for data and related services, Ocean Protocol is committed to kick-starting a new Data Economy that touches every single person, company and device, giving power back to data owners, enabling people to reap value from data to better our world. Visit https://oceanprotocol.com/ to find out more.
CertiK is the premier blockchain and smart contract verification platform, founded by top Formal Verification experts from Yale and Columbia University and former senior software engineers from Google and Facebook. Different from the traditional testing approaches, CertiK attempts to mathematically prove blockchain ecosystems and smart contracts are hacker-resistant and bug-free. CertiK’s key features include a layer-based decomposition approach, pluggable proof engine, machine-checkable proof objects, certified dApp libraries, and smart labeling.
Trusted by the security industry, CertiK has reached strategic partnerships with the world’s top digital asset exchanges such as Binance, OKEx, and Huobi, as well as Public Chains such as NEO, ICON, and QuarkChain. CertiK is incubated and invested in by Binance Labs, along with other world’s leading investors such as DHVC, FBG Capital, Bitmain, and Lightspeed.
To request the audit/verification of your smart contracts, please send an email to email@example.com or visit certik.org to submit the request.