(+84) 247 109 9656

Copyright © 2023 CyStack Security.

VIDB-VNDC

VIDB (VNDC International Digital Banking) is a utility token in the VNDC financial ecosystem, including: VNDC Wallet, VNDC Exchange, VNDC Borrow, VNDC Staking, VNDC Farming, VNDC P2P,...VIDB is used for payment of transaction fees, collateral for partners, account rating,... In addition, VIDB is considered as an asset presenting the value of the VNDC – a platform with more than 800,000 users and transaction volume is over 150 million dollars (more than 3,000 billion VND) per month. Investors owning VIDB will be shared profit from VNDC business activities. From January 01, 2021 to January 30, 2021, VNDC engaged CyStack to evaluate the security posture of the VIDB Token of their contract system.

Audit Projects   >   VIDB-VNDC

Audit Report - VIDB-VNDC

Type of audit

Smart Contract Audit

Language

Solidity

Testing method

whitebox

Request date

2020-12-31T17:00:00.000Z

Revision date

2021-01-29T17:00:00.000Z

Status

completed

Target distribution

About VNDC Co.Ltd

VNDC Holding PTE. LTD (Singapore). VNDC has been on the market since July 1, 2019,

Type

crypto_token

Platform

N/A

Owner

VNDC Co.Ltd

Industry

blockchain

Assessment Checklist

Overall Security
OWSAP Top 10
Mobile Security

Application Deployment and Configuration

Ensure server configuration, network infrastructure, web applications, files are handled correctly and securely.

User Identity Management

The application manages user identities well and does not cause problems in all use cases.

Authentication mechanism

Make sure the application's authentication mechanism has a reasonable logic, preventing the possibility of authentication bypass.

Decentralization mechanism

Check for privilege escalation, decentralization, or path traversal vulnerabilities.

Session management mechanism

Check for errors related to cookies and sessions.

Input data validation mechanism

Check for Reflected XSS, Stored XSS, SQL injection and other injection errors.

Error control ability

Ensure errors are handled properly and do not expose sensitive information through error notifications.

Encode

Test the application's encryption algorithms.

Business logic of the application

Check application integrity, conflict, and responsiveness.

Client-side issues

Check for security flaws that can be exploited from the client side.

About projects.smart-contract-audit Service

projects.about_smart-contract-audit

Finding security solution for your next project?

Contact us