Claim your DOTs

Starting on February 10, 2020, DOT holders can claim their holdings.
Start the claim process now.

The Polkadot Claims Audit

2019-08-07 in  Polkadot Audit, Security
Avatar by Polkadot
Image

Web3 Foundation engaged Chain Security for an audit of the Polkadot Claims smart contract. The audit found 0 Critical, 0 High, 2 Medium and 9 Low level issues, all of which have been resolved in the latest commits to the code.

The Polkadot Claims contract is an Ethereum smart contract that allows holders of the DOT allocation indicator token to claim their balances of DOTs to a Polkadot public key ahead of Polkadot genesis.

In order to launch Polkadot in a transparent and decentralized way, an Ethereum smart contract was required to hold data necessary to the genesis of Polkadot including the Polkadot public key to associate to a specific allocation, the index of the public key, and the vested status of the allocation.

Submission of this data to the Ethereum blockchain enables the community to generate and verify the genesis chain specification themselves in an independent manner. It is an integral piece to the launch of Polkadot in a transparent way.

For this reason, the security of the contract was of the utmost importance, especially regarding the certain immutability of the state of the contract after claiming actions have taken place.

To guarantee that the Claims contract is secure and functionally correct, ChainSecurity formally verified the contract's code with respect to its intended specification. In more detail, ChainSecurity formalized 12 critical functional requirements and verified them using their state-of-the-art tool for formal verification. Examples of the properties that were verified include the immutability of the state after the initialization, access-control requirements, and safety of the contract set-up period.

In addition to the formal verification, the full audit report details each of the issues that were found in the categories of Security Issues, Trust Issues, and Design Issues. It also describes the fixes that were applied to each and reasoning of the Web3 Foundation.

You can find the full audit report here.

arrow_upward
Related articles
Builders
Berkeley Blockchain Xcelerator Selects Four Polkadot Projects for Spring 2020 Cohort

The Berkeley Blockchain Xcelerator has announced its third cohort of startups, including four projects from the Polkadot ecosystem. Acala, Finoa, Nodle.io and Stake Technologies will join the 14 startups comprising the Spring 2020 program, selected from more than 140 applicants to the Xcelerator....

Polkadot
Major Milestone Achieved: Polkadot and Chainlink Integration Using Substrate

By being the first Substrate-based oracle solution, Chainlink is set to become the first and primary oracle provider for all Substrate-based chains and eventually the entire Polkadot network....

Polkadot
Polkadot Approaches Beta Launch - Claim Your Dots Today with Coinbase Custody!

Individuals and entities that hold allocations of dots – Polkadot’s native token that enables access to the protocol’s features – can now take the first step to prepare for Polkadot’s launch in the coming months....

Subscribe to the newsletter to hear about updates and events.
mail_outline
* To see how we use your information please see our privacy policy.