Back to all stories
Case Study
Unido Stamps Native ERC-20 Contract With A CertiK Audit
Unido Stamps Native ERC-20 Contract With A CertiK Audit

NEW YORK, 26/02/2021 - We’re happy to announce that the implementation of Unido’s native token UDO, was successfully audited by CertiK Professional Services Division. In this spotlight, we elaborate on the scope of the audit, as well as present some of the issues found during the auditing process.

Use-Case Profile

Unido is enabling enterprises to manage and invest their crypto assets in a seamless, secure, and intuitive way. It offers easy-to-navigate UI/UX both for related and academic investors to tap into cross-chain DeFi protocols all from one single entry point.

Code Review & Auditing Process

The initial review was conducted between February 20th, and February 24th, 2021, by CertiK security engineers Camden Smallwood, and Angelos Apostolidis.

This report represents the results of CertiK's engagement with Unido on implementing the Unido token smart contract. Our findings mainly refer to optimizations and Solidity coding standards; hence the issues identified pose no threat to the contract deployment's safety.

The in-depth investigation of the smart contract in question included Static Analysis and Manual Review techniques. The auditing process focused on the following considerations:

  • Testing smart contract against both common and uncommon attack vectors.
  • Assessing the codebase to ensure compliance with current best practices and industry standards.
  • Ensuring contract logic meets the specifications and intentions of the client.
  • Cross-referencing contract structure and implementation against similar smart contracts produced by industry leaders.
  • Through a line-by-line manual review of the entire codebase.

A total of eleven (14) findings were identified and presented in the vulnerability summary, of which the majority was of informational nature (11), and only three (3) minor. No major or critical issues were found during the auditing process, and the Unido team alleviated all findings highlighted by the CertiK Professional Services team, pointing towards a well-written contract by the team’s engineers.

You can review the full audit here.

About Unido

“Corporate governance and accountability are core pillars of Unido, so it was important that our smart contract was rigorously audited. Certik is the obvious choice, given their reputation and we have been delighted with their input along the way to ensure the $UDO contract is rock solid.”-Michael Swan, Chief Commercial Officer, Unido

About CertiK

CertiK is an edge-standards cybersecurity firm founded by Computer Science professors hailing from Yale and Columbia University respectively, aiming to improve the security and correctness of smart contracts and blockchain protocols on a global scale.

Leveraging a seasoned team of multi-skilled engineers and security auditors, CertiK’s mission is to apply a plethora of high-level industry practices, covering the entire spectrum of static, manual, and dynamic analyses, in order to ensure each project subject to a formal audit is up-to-date with modern security standards while offering their services to the broader DLT community.

Over the past few years, CertiK has serviced more than 100 top-shelf blockchains, DeFi protocols, among other complex and/or custom smart contracts, including but not limited to Binance, Tera, Bancor, Shapeshift, and Blockstack.

Consult with one of our experts at [email protected]

Stay connected!

Website |Twitter |Linkedin |GitHub |CertiK Shield