Router Chain is now Audited by Leading Security Firms: Informal Systems and Oak Security

3 min readJun 4, 2024

At Router Protocol, we prioritize security to ensure the safety and integrity of our platform. We are pleased to announce that Router Chain has completed rigorous audits conducted by leading security firms, Informal Systems and Oak Security. This blog will highlight the critical aspects of the audit, the findings, and the steps we have taken to resolve any issues, reaffirming our commitment to security.

Leading Auditors: Informal Systems and Oak Security

Informal Systems and Oak Security are renowned for their expertise in blockchain security. Their thorough audit processes involve examining smart contracts, protocol logic, and system architecture to identify potential vulnerabilities.

Informal Systems uses a multi-layered, automated approach for security audits. They work on key Cosmos projects, including Tendermint (now CometBFT), the IBC protocol, and the Cosmos Hub.

Oak Security focuses on security auditing and advisory services for third-generation blockchains such as Cosmos SDK and CosmWasm, Polkadot, Substrate, Solana, NEAR, and Flow (Cadence). Besides, they have completed over 400 audits.

The involvement of these leading auditors underscores our dedication to maintaining the highest security standards.

Comprehensive Audit

The audit encompassed Router Nitro and Router Chain, ensuring a holistic evaluation of our systems. The auditors meticulously reviewed our codebase, focusing on the entire lifecycle of cross-chain requests. This included validating orchestrator attestations and handling cross-chain requests, transfers, fees, and Oracle price feeds. The goal was to identify potential vulnerabilities, bugs, and adherence to best practices.

Overview of the Audit Journey

The journey to achieving comprehensive security audits for Router Chain has been thorough and methodical, spanning several months and covering various components of our ecosystem. Here is the of our audit progress:

Phase 1

The initial audit focused on the Router Nitro, evaluating its capabilities and identifying areas for improvement. (this part of audit was concluded before launch of Router Nitro mainnet).
Extensive audits on Router Chain, Router Orchestrator, Router Nitro Forwarder, and CW Gateway, ensuring the integrity and robustness of our core functionalities and event handling mechanisms.

Phase 2

Audit of Router DexSpan, a swap-aggregator facilitating token exchanges, ensuring secure and efficient operations.
The final phase audits cover Router EVM and NEAR Gateway Contracts and WASM Bindings and Router Integration, verifying the security and performance of gateway contracts and overall integration aspects.
Additional evaluations of previously covered components to ensure comprehensive security coverage.

Phase 3

Detailed audit of token transfer facilitation across chains for secure and reliable operations. The bridge serves as a canonical bridge for chains like Arthera and Saakuru. Router middleware was also audited in this process.

Overall, the audits did uncover a few issues, and we are pleased to report that all identified issues have been swiftly resolved. Some key findings and resolutions were around enhanced request processing, gas allocation optimization, fee settlement assurance, and Additional Security Measures.

Security as a Priority

At Router Protocol, security is not just a feature but a foundational priority. Our proactive approach to security includes regular audits, continuous monitoring, and prompt resolution of identified issues. The recent audits by Informal Systems and Oak Security are a testament to our commitment to providing a secure and reliable platform for our users.

Access the Full Audit Reports

We believe in transparency and encourage our community to review the detailed audit reports of Informal Systems and Oak Security. You can access the reports through the following link:

https://github.com/router-protocol/audit-reports

We’re currently in the process of another audit around Osmosis and Bitcoin. For more detailed information and updates, follow us on our official communication channels.

Stay secure and connected with Router Protocol!