Sentnl.io Enhances Security and Reliability of Telos EVM With Successful Security Audit

Prominent cybersecurity firm, Sentnl.io, awards leading Blockchain platform, Telos, certification after critical findings were mitigated during security audit of Telos EVM

Sentnl.io has made significant strides in bolstering the security of Telos EVM (Telos Ethereum Virtual Machine), following a comprehensive security audit.

Sentnl.io, which is an industry-leading code auditing agency, specializes in penetration testing, wallet security audits and smart contract audits on Ethereum and EOSIO and has audited over 50 smart contracts to date. They were selected by high-capacity Blockchain network, Telos, to conduct an audit for Telos EVM runtime and RPC server code.

During the audit, Sentnl.io’s team of blockchain security experts examined crucial aspects of the code and within the process of testing the code, a number of critical findings were found. It was then unearthed that these flaws could be traced back to go-ethereum’s core code and required immediate attention.

“In order to find vulnerabilities in the Telos EVM, we engaged in deep and rigorous fuzzing, and verified that its behavior matched that of go-ethereum”, said Sentnl auditor, Guido Vranken. “Despite go-ethereum having an outstanding track record when it comes to security, the procedure was so effective that it wasn’t just instrumental in asserting the correctness of the Telos EVM, but also found a high severity issue in go-ethereum.”

The high severity issue in go-ethereum’s code that was uncovered by Sentnl.io would have had disastrous consequences by causing an unexpected hard fork in the Ethereum network.

A fork happens whenever a community makes a change to the blockchain’s protocol, or basic set of rules. When this happens, the chain splits — producing a second blockchain that shares all of its history with the original, but is headed off in a new direction. You can read more about forks here — https://www.coinbase.com/learn/crypto-basics/what-is-a-fork

An unexpected fork can be used by a malicious attacker, in an attempt to revert a transaction to retrieve their funds back. This could have caused a counterparty, such as an exchange, to take a significant loss.

Sentnl.io collaborated closely with the engineering teams at both Telos and Ethereum to swiftly address and mitigate the identified vulnerabilities. The Telos Core Dev team updated the Telos EVM testnet to the latest version in alignment with the audit and Sentnl.io issued their approval to Telos with their audit certification on 22nd October 2022.

“We were diligent in our selection process in picking Sentnl to audit the Telos EVM code. We wanted the best around and it’s gratifying to see such a clear demonstration that we made the right choice,” said Telos chief architect Douglas Horn. “Telos intends to make a major contribution to the EVM space and we’re glad that our project is already leading to meaningful improvements to the Ethereum and DeFi worlds. Users and developers should also feel confident that the most thorough standard of code review has gone into Telos EVM, thanks to Sentnl and Guido.”

Find out more about Telos EVM and its powerful, scalable smart contract platform here — https://www.telos.net/evm