ChainSecurity, praised for being the first-ever automated formal audit platform, has recently announced the launch of its new security scanner, Securify, which aims to analyze Ethereum smart contracts and detect any possible security concerns that may rise.
ChainSecurity has successfully scanned over 4,896 contracts and spotted over 73,565 security concerns. The entirety of this project is based on a new research conducted by the ICE Center, ETH Zurich.
The ICE Center Research On Securify
A challenge in coming up with an efficient scanner was the lack of information. In particular, tracing all behaviors of smart contracts became far more difficult and failure to do so can miss out on strong vulnerabilities that need to be dealt with.
This is where the ICE Center’s research comes into play, as it uses a concept that allows the scanner to analyze all behaviors within minutes. This was supposedly done by making alterations to the domain of the smart contracts.
Upon discovering a potent solution, ICE Center, the founders of ChainSecurity, used their findings to build a convenient and efficient security scanner that will review every inch of detail possible. Securify is supposedly “scalable, fully automated, and able to prove contract behaviors as safe/unsafe with respect to a given property.” For more on ICE Center’s findings, go to: arxiv.org/abs/1806.01143
What Makes Securify Distinguishable?
In addition to its ability to prove all behaviors, Securify has the capacity to scan for 18 different vulnerabilities, which none others have achieved to date. Hence, making it the most complete scanner out there. It also has been designed in a way to manage any Ethereum project, regardless of its size.
Different Ways Of Making Optimal Use
According to a report released by Crypto Ninjas, Securify can be used in three different ways and they are as follows:
- Paste source code in code editor
- Through git Repository, where contracts are deposited
- Upload ZIP file with Contracts
After doing so, it is supposedly as simple as clicking on the “SCAN NOW” button, which will scan and return a complete security report. The report not only points out to the potential harms, but also postulates methods as to how one can overcome them.
Clearly, Securify could be the most efficient security tool to date, as it has already been able to detect issues like a “re-entrancy issue in the ERC827 standard” and “Solidity libraries”.
For more information, go to: securify.ch