For Open Trading Network audit of functional vulnerability of the smart contract is booked

The company Digital Security specializing in the analysis of security of systems and researches in the field of cybersecurity announced in November, 2017 completion of works on complex audit of the code smart contract Open Trading Network, the company developing own blockchain.

As this project is implemented on Ethereum blockchain, issues of utmost importance are the transparency and security of business processes for its participants. Open Trading Network pays special attention to security of interaction interfaces with participants.

The specialists of Digital Security company having examination in the field of security of smart contracts and blockchain technologies were involved to project audit. Open Trading Network aims to build customer relations and partners is most transparent, and therefore the company placed the report on the vulnerabilities in open access to Github found within audit.

In particular, in a work progress it became clear that the compatible token is subject to the attack of Short Address Attack allowing to change logic of work of the contract due to features of EMV. Its implementation would allow the malefactor to transfer much more tokens from the account of the victim, than it was supposed.

Besides, functional vulnerability of the smart contract - a possibility of mistiming of data on an object was detected. In other words, legitimate use of the contract could lead to its blocking. All vulnerabilities with a high risk were quickly closed.