Quantstamp Announcements
October 20, 2020

As the blockchain ecosystem matures, the security needs of the space are evolving. Initially, the security needs of the space focused on smart contract security, and for good reason: since 2017, well over a quarter billion dollars worth of cryptocurrency was lost or stolen due to bugs in smart contracts. Audits are still an essential component of blockchain application development, however, even audits do not completely eliminate the possibility of a bug being present in code. 

This past year, the growth of blockchain applications was impressive. Despite a bear market, the value of cryptocurrency managed by decentralized finance (DeFi) applications went from under 1 billion USD to over 10 billion USD. In order to continue this growth and achieve mainstream adoption, the risk of a bug slipping through an audit needs to be accounted for. 

Managing Risk in Traditional Finance

In our everyday lives, there is always the chance that an unlikely event takes place that leads to expensive one-time costs. For example, you might get into a car accident, get really sick, or your home might get damaged. Most people do not have the money onhand to deal with these situations, so they purchase insurance to hedge that possibility. Insurance also helps businesses manage unlikely, but expensive events so they can focus on making profit and delivering value to their customers. 

The Status of Insurance in the Blockchain Industry

Insurance in the blockchain industry is still in its early days and, until recently, has focused on insuring exchanges. Coinbase insures its hot wallets up to 255 million USD. Crypto.com recently secured a 100 million USD insurance policy for its cold storage wallets, bringing the company’s total cryptocurrency coverage to 360 million USD. Binance insures its derivatives platform which protects leveraged traders during market volatility.

Quantstamp is uniquely qualified to assess risk.

More recently, on-chain insurance was popularized by Nexus Mutual. DeFi users purchase coverage for specific smart contract applications. When an alleged exploit occurs, Nexus Mutual token holders vote to determine if users should be paid out from funds deposited by risk assessors. Risk assessors deposit funds in coverage pools that they believe are safe in exchange for rewards. 

Quantstamp is Uniquely Positioned to Assess Risk

Quantstamp’s extensive experience in the blockchain space has made us uniquely qualified to assess risk in this industry. Quantstamp has secured over 5 billion USD worth of digital assets and worked with over 140 startups, foundations, and enterprises. We have worked with the Maker Foundation, Curve, Binance, eToro and OMG Network. We also have experience auditing Layer 1 protocols including Ethereum 2.0, Avalanche, Binance Smart Chain, and Cardano. 

Quantstamp offers three types of services that help individuals and businesses protect themselves against smart contract security risk. First, Quantstamp serves as an actuary. We connect companies seeking to insure funds deposited into DeFi applications with insurance providers. Normally, these insurance providers would not insure DeFi deposits because they are not qualified to assess risk: however, they choose to insure these funds because Quantstamp assesses premiums and investigates reported vulnerabilities on their behalf.

Quantstamp also offers smart contract warranties to clients who received an audit from us. After performing an audit, we provide compensation to clients in the event that funds are lost due to a bug in audited code. Clients can use this compensation to refund users. 

Clients can also provide coverage to their users using their own funds through infrastructure created by Quantstamp. Clients deposit their funds into a coverage pool that users can collect from in the event of a confirmed exploit that led to the loss of funds. 

The Future of Finance

Blockchain technology has already demonstrated its ability to enhance finance: digital assets are hyper-liquid, DeFi composability enables powerful new applications, and many tasks that previously required human intermediaries are fully automated. Despite these innovations, mainstream institutions sit on the sidelines because risk assessment is underdeveloped in the blockchain industry. This prevents institutions from properly hedging against black swan events as they would in traditional finance. As the industry's security experts, Quantstamp is prepared to use our extensive knowledge to develop this portion of the industry and continue to push the DeFi space forward.

Quantstamp 公告







Quantstamp 具有评估风险的独特资格。

最近,链上保险由Nexus Mutual普及。DeFi用户为特定的智能合约应用购买保险。当发生所谓的漏洞时,Nexus Mutual代币持有者投票决定是否应该从风险评估员存入的资金中向用户进行赔付。风险评估员将资金存入他们认为安全的覆盖池中,以换取奖励。 

Quantstamp 在评估风险方面具有独特的优势。

Quantstamp'在区块链领域的丰富经验,使我们在评估这个行业的风险方面具有独特的资格。Quantstamp 已为价值超过50亿美元的数字资产提供担保,并与140多家初创公司、基金会和企业合作。我们曾与Maker Foundation、Curve、Binance、eToro和OMG Network合作。我们还拥有审核第一层协议的经验,包括Ethereum 2.0、Avalanche、Binance智能链和Cardano。 

Quantstamp 提供三类服务,帮助个人和企业防范智能合约安全风险。首先,Quantstamp 作为一个精算师。我们将寻求为存入DeFi应用的资金投保的公司与保险供应商联系起来。通常情况下,这些保险供应商不会为DeFi存款投保,因为他们没有资格评估风险:但是,他们选择为这些资金投保,因为Quantstamp 会代表他们评估保费和调查报告的漏洞。

Quantstamp 也为接受我们审核的客户提供智能合约担保。在进行审计后,如果由于审计代码的bug导致资金损失,我们会向客户提供补偿。客户可以用这笔补偿金来退还用户。 

客户也可以通过Quantstamp 创建的基础设施,用自己的资金为用户提供保障。客户将自己的资金存入一个覆盖池,在发生确认的漏洞导致资金损失的情况下,用户可以从该池中领取资金。 


区块链技术已经证明了其提升金融的能力:数字资产具有超强的流动性,DeFi的可组合性实现了强大的新应用,许多以前需要人工中介的任务已经完全自动化。尽管有这些创新,主流机构还是坐视不理,因为区块链行业的风险评估不够发达。这使得机构无法像在传统金融中那样对黑天鹅事件进行适当的对冲。作为行业的安全专家,Quantstamp ,准备利用我们丰富的知识来发展这部分行业,继续推动DeFi领域的发展。

有兴趣了解ETH 2.0吗?
November 11, 2020

Quantstamp Community Update - October 2020

‍Audit of Ethereum 2.0 client Teku, blockchain insurance, Open DeFi, virtual events, and more media coverage... here’s what happened at Quantstamp in October.‍

November 5, 2020

Why Bitcoin is Capturing Enterprise Attention

MicroStrategy made headlines this summer as the first publicly-traded company to buy Bitcoin as part of its capital allocation strategy. Since then, other companies have followed suit. Learn how current economic conditions and the unique properties of Bitcoin have driven these decisions.

October 28, 2020

Formally Verifying Hedera Hashgraph's Stablecoin Framework

Quantstamp created and formally verified a specification for Hedera Hashgraph stablecoins. This simplifies the process of creating safe stablecoins and also makes easier for partners to safely integrate them.

October 27, 2020

Quantstamp Completes Audit of 2nd ETH 2.0 Implementation

Quantstamp has now completed its audit of Teku, the Ethereum 2.0 client developed by ConsenSys. Quantstamp also audited Prysm by Prysmatic Labs.