This article was first published on Stories by ælf on Medium
-----
On October 16, aelf enterprise 1.0.0 RC 1 was officially released as a pre-launch Code Audit version of the mainnet, designed to pave the way for the launch of the mainnet. aelf believes that a high-quality project must pay attention to product security, and put network security as the highest priority. This is also the main reason why the aelf team insists on completing the code audit before launching the product.
On October 22, the Code Audit Bounty Program for the aelf public testnet was officially launched to ensure code security. The Code Audit Bounty Program has attracted many developers, technicians and security teams. The security audit team of SlowMist Technology conducted a complete security test which is closest to the real attack. The SlowMist team is the first to submit a complete audit report that meets all the audit requirements. After careful evaluation by aelf tech team, the SlowMist team won the first prize (approximately $30,000) for the code audit bounty.
SlowMist Technology is a Chinese high-tech enterprise focusing on the security of the blockchain ecosystem. It serves many global well-known projects through providing integrated security solutions from threat discovery to threat defense. The SlowMist team has worked with nearly 1,000 companies and is widely recognized by the industry.
The SlowMist team adopted three audit methods: black box, white box and gray box
- Black Box: conduct security test as attackers. In black-box testing, a tester doesn’t have any information about the internal working of the software system.
- Gray Box: conduct security test on code module through script tool, observe internal running state and find weaknesses;
- White Box: based on open-source and non open-source code, vulnerability spotting is carried out on nodes, SDK and other programs.
In the black-box and gray-box testing, fuzz testing and script testing are used to test the ...
-----
To keep reading, please go to the original article at:
Stories by ælf on Medium
Comments (No)