Back to all stories
Case Study
KardiaChain Secures Hybrid Solution For Enterprises And Governments With CertiK
KardiaChain Secures Hybrid Solution For Enterprises And Governments With CertiK

NEW YORK, 09/12/2020 - We’re happy to announce that KardiaChain’s hybrid solution for enterprises and governments has been successfully audited with CertiK. A summary of the audit scope and findings as documented by the CertiK Professional Services Division follows up.

Use-Case Profile

KardiaChain is a public blockchain platform developed to facilitate enterprise and gov-grade DLT operations as an interoperability layer, hailing from Vietnam and focusing on the broader South-East Asian markets.

Kardia is designed to be able to tap into millions of users without the immense cost of educating the masses. Their‘Dual Node’technology enables cross-chain communications between public and private ledgers regardless of the nature and complexity of each respective project.

With partners spanning from BlockCrafters Capital, among other VCs, to top-shelf blockchain protocols and infrastructure providers of the likes of NEO, Chainlink, Matic, and CertiK, KardiaChain is positioned to provide easy-to-adopt solutions for institutional clients.

Code Review & Auditing Process

The initial review was conducted between October 5- October 30, by senior CertiK security engineers Georgios Delkos, and Alex Papageorgiou.

The CertiK Professional Services team assigned to KardiaChain reviewed the code implementation for the mainnet blockchain solution, effectively going through the most significant parts of the codebase responsible for the core functionality of the system, as pointed out in the project’s white paper.

A comprehensive examination has been performed, utilizing Static Analysis and Manual Review techniques. The auditing process focuses on the following considerations:

  • Testing smart contracts against both common and uncommon attack vectors.
  • Assessing the codebase to ensure compliance with current best practices and industry standards.
  • Ensuring contract logic meets the specifications and intentions of the client.
  • Cross-referencing contract structure and implementation against similar smart contracts produced by industry leaders.
  • Through a line-by-line manual review of the entire codebase.

A total of 28 findings were reported on the vulnerability summary, the vast majority of which were informational (22), while only 2 minor and 4 major issues were identified. No critical issues were found during the auditing process, and the KardiaChain team alleviated all issues, pointing towards a well-written codebase by the team’s engineers.

You can review the full audit here.

About KardiaChain

KardiaChain is a public blockchain platform focused on interoperability and providing hybrid blockchain solutions/infrastructure for enterprises and governments in Vietnam and other countries in South & East Asia - Accessible blockchain for millions.

They are working with major services providers (enterprises and government) to decentralise their existing solutions. Our approach helps KardiaChain reach millions of users without the immense cost of educating the market. Our Dual Node technology allows cross-chain communications between any public and/or private blockchain regardless of protocol. This provides easy-to-adopt solutions for institutional clients.

Based out of Vietnam — KardiaChain boasts a lineup of top Enterprise and Blockchain partners - BlockCrafters Capital, NEO, Chainlink, Matic, Band Protocol, Contentos, CertiK,... VTVCab, LG CNS, Mai Linh Taxi, Vietnam Football Federation, Geleximco.

Learn more about KardiaChain:

About CertiK

CertiK is an edge-standards cybersecurity firm founded by Computer Science professors hailing from Yale and Columbia University respectively, aiming to improve the security and correctness of smart contracts and blockchain protocols on a global scale.

Leveraging a seasoned team of multi-skilled engineers and security auditors, CertiK’s mission is to apply a plethora of high-level industry practices, covering the entire spectrum of static, manual, and dynamic analyses, in order to ensure each project subject to a formal audit is up-to-date with modern security standards while offering their services to the broader DLT community.

Over the past few years, CertiK has serviced more than 100 top-shelf blockchains, DeFi protocols, among other complex and/or custom smart contracts, including but not limited to Binance, Tera, Bancor, Shapeshift, and Blockstack.

Consult with one of our experts at [email protected]

Stay connected!

Website| Twitter| Linkedin| GitHub| CertiK Shield