Certora Raises $36M for Smart Contract Security Tools

Jump Crypto led the funding round for the firm, which secures $50 billion of DeFi assets.

AccessTimeIconMay 17, 2022 at 2:00 p.m. UTC
Updated May 17, 2022 at 6:05 p.m. UTC

Brandy covers crypto-related venture capital deals for CoinDesk.

Smart contract security firm Certora raised $36 million in a Series B round led by Jump Crypto to fund development and port its flaw-detection technology to new blockchains.

Other participants in the round included Tiger Global, Galaxy Digital, Electric Capital, ACapital, Framework Ventures, CoinFund, Lemniscap, Coinbase (COIN) and VMware (VMW), according to a draft blog post provided to CoinDesk.

Blockchain security breaches have hit the headlines this year with some creating nine-figure financial losses. They include $326 million for blockchain bridge Wormhole and $625 million for Ronin Network, the infrastructure behind popular play-to-earn game Axie Infinity.

Certora is designed to help developers detect and prevent security mistakes before code is deployed. The firm’s Prover tool is meant to complement human audits and bug bounties. Certora said it is currently securing $50 billion in decentralized finance (DeFi) assets. The product finds and displays any rule violations or formally proves that there aren’t any.

The company is led by Shmuel “Mooly” Sagiv, computer science chair at Tel Aviv University and a pioneer of formal verification, a field that uses complex mathematics to prove or disprove the correctness of an algorithm, such as the smart contracts on a liquidity protocol.

Certora currently handles only Ethereum Virtual Machine (EVM)-compatible blockchains. The next focus is extending support to Solana, then branching out further toward Polkadot.

“What we want to do in the next year is to cover all of the blockchains,” Sagiv told CoinDesk in an interview.

How it works

Certora identifies violations of invariants, or rules that shouldn’t be broken, in smart contracts. The firm’s technology has identified bugs in Aave, Compound, Balancer and SushiSwap. Most of the bugs were discovered and fixed before the code was deployed.

For example, Certora prevented a critical bug in SushiSwap’s Trident liquidity pool contract. In Trident, users add funds to create the pool then earn fees for their lending and swapping activities. The fees are proportional to their share of the overall liquidity.

For a liquidity pool to work, there has to be a technical rule that as long as there are pool funds, user shares must exist since someone is providing that liquidity. A violation of that rule means that either the shares of the pool are worthless or the funds exist but can’t be claimed by the users.

In the case of Trident, the Certora Prover found a rule violation that could have allowed an attacker to drain the pool’s funds. The problem was identified and corrected before the code was deployed.

“Powered by world-class experts, Certora leverages formal verification to employ a suite of scalable and robust products that offer much higher reusability and granular testing,” said Jump Crypto partner and investments head Saurabh Sharma in a statement.

DISCLOSURE

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is a media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. CoinDesk is an independent operating subsidiary of Digital Currency Group, which invests in cryptocurrencies and blockchain startups. As part of their compensation, certain CoinDesk employees, including editorial employees, may receive exposure to DCG equity in the form of stock appreciation rights, which vest over a multi-year period. CoinDesk journalists are not allowed to purchase stock outright in DCG.

CoinDesk - Unknown

Brandy covers crypto-related venture capital deals for CoinDesk.

CoinDesk - Unknown

Brandy covers crypto-related venture capital deals for CoinDesk.

Trending

1
CoinDesk - Unknown
CoinShares Completes Napoleon Acquisition, Can Now Offer Products Across EU

The acquisition of Napoleon Asset Management was subject to approval by the AMF, which was granted on June 28.

CoinDesk - Unknown
2
CoinDesk - Unknown
Coinbase Says Miners’ Sales of Newly Minted Bitcoins Don’t Add Significant Market Pressure

If all newly issued bitcoin were immediately sold onto the market each day, it would equate to only 900 BTC of selling pressure, the report said.

CoinDesk - Unknown
3
CoinDesk - Unknown
WonderFi Closes Acquisition of Crypto Trading Platform Coinberry

The Canadian crypto firm says it's open to more deals for firms hit by the crypto winter.

CoinDesk - Unknown
4
CoinDesk - Unknown
Crypto Lender Celsius Cuts 150 Jobs Amid Restructuring: Report

Withdrawals are still paused and the company has hired restructuring experts as it faces a financial crisis.

CoinDesk - Unknown