Cybersecurity firm Trail of Bits has concluded the audit of Worldcoin’s ORB technology and found that it adheres to stringent privacy protocols, particularly in how it processes and stores personally identifiable information (PII).The full report was released on March 13 and revealed that there are no vulnerabilities in the ORB software and validated many of the claims made by Worldcoin.The audit was initiated on Aug. 14, 2023, after multiple regulators across the globe raised concerns about Worldcoin’s biometric data collection, with some outright banning its operations.The auditTrail of Bits’ audit aimed to meticulously examine the orb’s software, particularly focusing on its handling of personally identifiable information (PII) and the management of users’ iris codes.During the default opt-out signup flow, the orb collects no PII except for the iris code, which is neither written to persistent storage nor leaves the orb. In scenarios where users opt-in, their PII is encrypted on the orb’s SSD in a manner that even the orb itself cannot decrypt — showcasing a robust approach to data privacy.Moreover, the audit verified that the orb does not extract additional sensitive data from a user’s device, with the only information collected being from a QR code. This ensures a minimal data collection approach, aligning with privacy best practices.Importantly, the iris code, a critical piece of biometric data, is handled securely throughout its collection and transmission process, effectively mitigating the risk of unauthorized access or interception.RecommendationsThe audit also highlighted areas for improvement, recommending additional hardening of the orb’s software and hardware configurations to bolster security further.In response, Worldcoin has implemented changes, including replacing a vulnerable library used for QR code scanning with a more secure alternative.The Trail of Bits audit represents just one part of Worldcoin’s ongoing efforts to ensure the security and privacy of its technology. With the ORB technology being central to the Worldcoin project’s mission to provide a universal basic income, these rigorous security assessments are crucial for maintaining user trust and project integrity.Recognizing the importance of transparency and community engagement, Worldcoin has invited public participation in its bug bounty program and plans to share future audit reports as they become available.Mentioned in this articleLatest Alpha Market Report
Source link
Bitcoin (BTC) $ 106,843.00
Ethereum (ETH) $ 2,438.31
Tether (USDT) $ 1.00
XRP (XRP) $ 2.09
BNB (BNB) $ 645.07
Solana (SOL) $ 141.76
USDC (USDC) $ 0.999873
TRON (TRX) $ 0.272242
Dogecoin (DOGE) $ 0.159947
Lido Staked Ether (STETH) $ 2,436.80
Cardano (ADA) $ 0.551037
Wrapped Bitcoin (WBTC) $ 106,709.00
Hyperliquid (HYPE) $ 36.82
Wrapped stETH (WSTETH) $ 2,942.08
Bitcoin Cash (BCH) $ 491.26
Sui (SUI) $ 2.64
Chainlink (LINK) $ 12.98
LEO Token (LEO) $ 9.03
Avalanche (AVAX) $ 17.36
Stellar (XLM) $ 0.233742
USDS (USDS) $ 0.999883
Toncoin (TON) $ 2.84
WhiteBIT Coin (WBT) $ 46.96
Shiba Inu (SHIB) $ 0.000011
WETH (WETH) $ 2,438.13
Litecoin (LTC) $ 84.20
Wrapped eETH (WEETH) $ 2,610.39
Binance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 1.00
Hedera (HBAR) $ 0.144524
Monero (XMR) $ 310.02
Bitget Token (BGB) $ 4.60
Ethena USDe (USDE) $ 0.999910
Polkadot (DOT) $ 3.31
Coinbase Wrapped BTC (CBBTC) $ 106,873.00
Pi Network (PI) $ 0.554162
Uniswap (UNI) $ 6.82
Aave (AAVE) $ 260.04
Pepe (PEPE) $ 0.000009
Dai (DAI) $ 0.999566
Aptos (APT) $ 5.01
Ethena Staked USDe (SUSDE) $ 1.18
OKB (OKB) $ 49.78
BlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
Bittensor (TAO) $ 318.97
Jito Staked SOL (JITOSOL) $ 171.66
NEAR Protocol (NEAR) $ 2.07
Internet Computer (ICP) $ 4.71
Cronos (CRO) $ 0.080548
Ethereum Classic (ETC) $ 16.02
sUSDS (SUSDS) $ 1.06