in cryptocurrencies have been lost from hacks, as of January 2020
With our proprietary Formal Verification technology, we take your code and compute all possible scenarios to prove that it performs according to specification. You’ll know with certainty whether your code is free of bugs and vulnerabilities.
With security as our top priority, we’re recommended by top exchanges like Binance, OKEx, and Liquid.
With our Formal Verification Engine, we can mathematically prove that your program is bug-free.
When your audit’s done, we’ll send you an in-depth analysis of our findings and recommended next steps.
We’ve developed proprietary technologies and toolkits that make up our Formal Verification Engine (FVE), which enables our security team to provide you with rigorous smart contract audits that are trusted by top exchanges.
During the smart contract audit process, we modularize your code into discrete chunks, which we then input into the CertiK FVE. The Engine then runs mathematical proofs and checks for every possible value for each variable—a method that’s thorough and entirely unique to CertiK.
Share your source code with our team.
Receive a custom quote for your needs.
Stay in contact with our experts for updates.
Fix any code vulnerabilities.
Receive an in-depth report of the audit.
We read through any documentation available and break down your code into discrete modules to get a full understanding of the program design. Based on the scope of your project, we may also suggest best practices to help you optimize and organize your source code.
Your modularized smart contract is entered through our Formal Verification Engine, which automatically computes for all possible variables in your code to mathematically prove that it is bug-free and performs to specifications—no matter how large or complex it may be.
Proprietary analysis toolkits, developed by our world-class security engineers and researchers, enable our team to run an additional check of your code to ensure that any vulnerabilities and critical risks, including those not easily detected manually, are discovered.
Your code is diligently reviewed by our team of security experts to detect potential bugs and vulnerabilities, unintended loopholes, and code dependencies, as well as provide customized suggestions for high-level system design and protocol logics.
With every successful audit, we’ll also provide you with a uniquely hashed CertiK Verification Badge that we encourage you to share with pride! This badge contains a QR code for anybody to scan as proof of your successful audit.
Your report will contain identified vulnerabilities, with severity level and suggested remediations. It’ll also include your entire source code, with annotations and CertiK’s Formal Verification labels in-line to show our work and explain the mathematical proofs conducted.
People want smart contracts that are bug-free and hacker-resistant. Without an audit to ensure the soundness of your code, you leave your project and your users potentially vulnerable to hacks and exploits. CertiK also partners with top exchanges to provide rigorous token audits to projects that are looking for the stamp of approval that they need before listing.
Formal Verification is a method of mathematically proving that a program performs as intended; however, it has seen limited use outside of mission-critical software because of how resource-intensive it can be. CertiK has invested heavily into the research and development of a proprietary Formal Verification Engine that cuts down on the number of labor-intensive hours required if done manually by a security engineer.
The cost of a smart contract audit will differ based on a number of factors, including but not limited to: the number of lines of executable code, the complexity of the smart contract, and the speed of the audit needed.
Depending on how complex your program is, a smart contract audit usually takes about 3 days to 2 weeks to complete.
The CertiK Formal Verification method is unique because we’ve developed proprietary technologies and toolkits that make up our Formal Verification Engine (FVE), which enables our security team to provide you with rigorous smart contract audits that are trusted by top exchanges. During the smart contract audit process, we modularize your code into discrete chunks, which we then input into the CertiK FVE. The Engine then runs mathematical proofs and checks for every possible value for each variable—a method that’s thorough and entirely unique to CertiK.
