Quantstamp QSP - The Protocol for Securing Smart Contracts

Quantstamp is the decentralized smart contract security-audit platform.

For smart contracts to truly play an important role in the future of many industries, cost-effective code auditing is integral. Quantstamps platform can be used to verify source code written in any language, with a transparent proof-of-audit.It is offered seamless tools to help developers set up bounties and capture critical vulnerabilities prior to blockchain deployment.

Quantstamp is a specialized network that connects developers, investors and users around a transparent proof-of-audit. The network acts as a critical piece of transparency by enabling automated checks on smart contract vulnerabilities and automatically rewarding verifiers who identify bugs. Quantstamp tokens allow the platform to operate in a fully decentralized fashion, delivering computation fees to verifier nodes, and bounties for locating vulnerabilities.

The Quantstamp protocol solves the smart contract security problem by creating a scalable and cost-effective system to audit all smart contracts on the Ethereum network. Over time, we expect every Ethereum smart contract to use the Quantstamp protocol to perform a security audit because security is essential.

The protocol consists of two parts:

● An automated and upgradeable software verification system that checks Solidity programs. The conflict-driven distributed SAT solver requires a large amount of computing power, but will be able to catch increasingly sophisticated attacks over time.

● An automated bounty payout system that rewards human participants for finding errors in smart contracts. The purpose of this system is to bridge the gap while moving towards the goal of full automation.

The Quantstamp protocol relies on a distributed network of participants to mitigate the effects of bad actors, provide the required computing power and provide governance. Each participant uses Quantstamp Protocol (QSP) tokens to pay for, receive, or improve upon verification services. Below are the different types of participants.

● Contributors receive QSP tokens as an invoice for contributing software for verifying Solidity programs. All contributed code will be open source so that the community can have confidence in its efficacy. Most Contributors will be security experts. Contributions are voted in via the governance mechanism.

● Validators receive QSP tokens for running the Quantstamp validation node, a specialized node in the Ethereum network. Verifiers only need to contribute computing resources and do not need security expertise.

● Bug Finders receive QSP tokens as a bounty for submitting bugs which break smart
contracts.

● Contract Creators pay QSP tokens to get their smart contract verified. As the number of smart contracts grows exponentially, we expect demand from Contract Creators to grow commensurately.

● Contract Users will have access to results of the smart contract security audits.

● Voters : The governance system is a core feature of the protocol. The validation smart contract is designed to be modular and upgradeable based on token holder voting (time-locked multi-sig). This governance mechanism reduces the chance of upgrade forks and decentralizes influence of the founding team over time.

To learn more about Quantstamp, visit quantstamp.com.