Auditor’s Notes: Tokens, EIP-712 & Meta-Transactions
<h2>Greetings dear readers!</h2>
<p>Looking at this <a href="https://telegra.ph/Retrospective-hacks-in-web3-10-24" rel="noopener ugc nofollow" target="_blank">month’s never-ending hacks</a>, one wonders why they happen so <a href="https://github.com/manifoldfinance/defi-threat" rel="noopener ugc nofollow" target="_blank">frequently</a>. Have audit firms actually <a href="https://telegra.ph/ETHSec-Tools-02-13" rel="noopener ugc nofollow" target="_blank">gotten worse</a> at what they do? This, in my opinion, is not the case; yet, the topic is rather tricky because you can, in certain ways, reduce the risks to yourself and your project!</p>
<p><strong><em>When confronted with such an issue, the only thing left to do is address it logically — in other words, how can we affect this unfavorable situation?</em></strong></p>
<ul>
<li>Firstly, we might construct our <a href="https://github.com/OffcierCia/Crypto-OpSec-SelfGuard-RoadMap" rel="noopener ugc nofollow" target="_blank">metaphysical defense wall</a> in such a way that it already responds to the ongoing attack. This concept is firmly associated with <a href="https://monero.observer/cypherpunk-transmission-001-threat-modeling-demystified/" rel="noopener ugc nofollow" target="_blank">Threat Modeling</a>;</li>
<li>Secondly, we can strive to construct a line of defense that will function even before the possible events, that is, create the code first and conduct all activities appropriately and safely. This is what we’ll cover in this post!</li>
</ul>
<p>Additionally, keep in mind that Solidity is a high-level programming language! While Solidity offers powerful functionalities, it also brings a unique set of risks and challenges. So, by reviewing the code, auditors can suggest optimizations and improvements that can reduce the gas usage and make the contract more cost-effective. Efficient code not only saves costs for users but also contributes to the overall sustainability and scalability of the project.</p>
<p><a href="https://blog.pessimistic.io/auditors-notes-tokens-eip-712-meta-transactions-9f806dcda79a"><strong>Click Here</strong></a></p>