Case Study – IOHK

Audit of IOHK’s Mantis Wallet

IOHK is an engineering company that builds cryptocurrencies and blockchains for academic institutions, government entities, and corporations. IOHK’s major projects include Ethereum Classic, the Daedalus wallet, and the Cardano platform

“Our product is a consumer facing cryptocurrency wallet, and as such our users’ funds could be at risk. Security is a primary concern in our development process […] Having our code audited by independent experts like Kudelski Security was essential.” (Charles Morgan, Director of Cybersecurity, IOHK)

In 2018, IOHK engaged Kudelski Security to perform a security audit of Mantis, an Ethereum Classic wallet integrated into Daedalus.

 

Our audit of IOHK’s Mantis wallet served two primary purposes:

 

    1. To identify areas of weakness to be addressed by IOHK’s engineers

    2. To publicly demonstrate IOHK’s commitment to security

During the course of the audit our experts determined that Mantis did not have any critical security flaws, but did identify a number of medium- and low-severity issues. We reported these issues back to IOHK, and their engineers began work immediately to remedy them.

Once all of the issues had been addressed, our audit report on Mantis was released publicly. A full copy of the report is available here.

“The security audit conducted by Kudelski Security was excellent. It triggered several initiatives to remedy issues that were raised. Our engineers were able to remedy the issues quite quickly, which has improved the overall security of our Mantis product.” 

In the Press

Let's Talk