Cybersecurity firm Trail of Bits has concluded the audit of Worldcoin’s ORB technology and found that it adheres to stringent privacy protocols, particularly in how it processes and stores personally identifiable information (PII).The full report was released on March 13 and revealed that there are no vulnerabilities in the ORB software and validated many of the claims made by Worldcoin.The audit was initiated on Aug. 14, 2023, after multiple regulators across the globe raised concerns about Worldcoin’s biometric data collection, with some outright banning its operations.The auditTrail of Bits’ audit aimed to meticulously examine the orb’s software, particularly focusing on its handling of personally identifiable information (PII) and the management of users’ iris codes.During the default opt-out signup flow, the orb collects no PII except for the iris code, which is neither written to persistent storage nor leaves the orb. In scenarios where users opt-in, their PII is encrypted on the orb’s SSD in a manner that even the orb itself cannot decrypt — showcasing a robust approach to data privacy.Moreover, the audit verified that the orb does not extract additional sensitive data from a user’s device, with the only information collected being from a QR code. This ensures a minimal data collection approach, aligning with privacy best practices.Importantly, the iris code, a critical piece of biometric data, is handled securely throughout its collection and transmission process, effectively mitigating the risk of unauthorized access or interception.RecommendationsThe audit also highlighted areas for improvement, recommending additional hardening of the orb’s software and hardware configurations to bolster security further.In response, Worldcoin has implemented changes, including replacing a vulnerable library used for QR code scanning with a more secure alternative.The Trail of Bits audit represents just one part of Worldcoin’s ongoing efforts to ensure the security and privacy of its technology. With the ORB technology being central to the Worldcoin project’s mission to provide a universal basic income, these rigorous security assessments are crucial for maintaining user trust and project integrity.Recognizing the importance of transparency and community engagement, Worldcoin has invited public participation in its bug bounty program and plans to share future audit reports as they become available.Mentioned in this articleLatest Alpha Market Report
Source link
Bitcoin (BTC) $ 113,403.00
Ethereum (ETH) $ 4,275.87
XRP (XRP) $ 2.91
Tether (USDT) $ 1.00
BNB (BNB) $ 845.35
Solana (SOL) $ 182.98
USDC (USDC) $ 0.999807
Lido Staked Ether (STETH) $ 4,263.11
TRON (TRX) $ 0.349909
Dogecoin (DOGE) $ 0.216231
Cardano (ADA) $ 0.870605
Chainlink (LINK) $ 25.49
Wrapped stETH (WSTETH) $ 5,173.37
Wrapped Bitcoin (WBTC) $ 113,390.00
Hyperliquid (HYPE) $ 42.06
Wrapped Beacon ETH (WBETH) $ 4,611.75
Stellar (XLM) $ 0.399180
Sui (SUI) $ 3.51
Wrapped eETH (WEETH) $ 4,583.75
Ethena USDe (USDE) $ 1.00
Bitcoin Cash (BCH) $ 553.46
Hedera (HBAR) $ 0.236375
Avalanche (AVAX) $ 23.01
WETH (WETH) $ 4,269.72
LEO Token (LEO) $ 9.52
Litecoin (LTC) $ 114.66
Toncoin (TON) $ 3.25
USDS (USDS) $ 0.999480
Shiba Inu (SHIB) $ 0.000012
Binance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.999959
Uniswap (UNI) $ 10.39
WhiteBIT Coin (WBT) $ 43.13
Polkadot (DOT) $ 3.82
Coinbase Wrapped BTC (CBBTC) $ 113,349.00
Ethena Staked USDe (SUSDE) $ 1.19
Bitget Token (BGB) $ 4.55
Cronos (CRO) $ 0.143090
Monero (XMR) $ 252.84
Mantle (MNT) $ 1.34
Aave (AAVE) $ 291.22
Pepe (PEPE) $ 0.000010
Dai (DAI) $ 1.00
Ethena (ENA) $ 0.643470
OKB (OKB) $ 168.92
Bittensor (TAO) $ 346.37
Ethereum Classic (ETC) $ 21.16
NEAR Protocol (NEAR) $ 2.50
Aptos (APT) $ 4.43
Ondo (ONDO) $ 0.931919
Pi Network (PI) $ 0.352562
