The Quantstamp Protocol is the foundation of blockchain security. To scale the auditing of smart contracts we first scale the availability of complex scanning tools for developers. Auditors use non-trivial tools that require extra time, special configuration and expertise to use. Checking in-development smart contract code is simple and quick with the Quantstamp protocol. We aim to develop new analysis techniques with our foundational decentralized network.
Users pay QSP tokens to scan smart contracts with off-chain computation from scanning nodes. Nodes then bid to audit the contract. In return, users get a line-by-line breakdown of the code’s potential vulnerabilities, along with recommended fixes.
Auditor nodes run the Quantstamp protocol to check smart contract code for all known vulnerabilities. The protocol currently uses Oyente and Mythril analyzers, and Quantstamp is also exploring other analyzers to add to the protocol in the future.
The protocol consists of two parts:
An automated and upgradeable software verification system that checks smart contract code such as Solidity programs.
An automated payout system that rewards human participants in QSP tokens for finding errors in smart contracts. The purpose of this system is to bridge the gap while moving towards the goal of full automation.
Our reports offer a comprehensive and actionable look into the health of a Smart Contract. Audits that pass our standards can then be given a public facing Security Certificate. View a Security Certificate
Security audits are mission critical. We’ve secured over 900 google citations. Quantstamp offers industry leading auditing services.