Crypto wallet security assessment for Temple Wallet
Temple Wallet audit results
In the public reports, we summarised the security assessment of Temple Wallet apps: the process, a list of findings and their status, and theoretical and practical concerns. We'd like to highlight the Madfish team's solid security-oriented engineering effort in building and securing the apps. Read details below.
FSA / Fintech
React Native (iOS, Android)
Web extension (Chrome, Firefox)
Typical fintech security requirements
Encryption Export Regulations
Encrypt data at rest
Financial app security built into UX
Understanding blockchain and non-custodial wallet security threats
Building mobile/web platform-specific security controls
Integrating reliable cryptographic tools
We started crypto wallet security audit with risk assessment and threat modelling for the Temple Wallet apps and backend ecosystem:
Temple Wallet web extension, iOS and Android mobile apps underwent a deep cryptography audit.
Besides the cryptographic enhancements, we also provided dozens of application security improvements aligned with the “defense in depth” approach:
We analyzed the development process and made recommendations for improvements, ranging from further automation in the CI/CD pipeline to formalizing a security roadmap:
Additional relevant materials
Products and services involved
The Temple Wallet web extension and mobile apps are now synced in their security guarantees and provide defence in depth protection for the user’s data. With a security baseline similar to financial apps, the Temple Wallet uses platform-specific security controls to protect users' cryptocurrency accounts in line with industry best practices.
Results and outcomes
Smooth and maintainable security
Web, mobile, and cloud platforms bring unique threats but provide platform-specific security controls. Combining "boring" traditional application security with platform-specific measures results in reliable protection. Talk to us if you build cross-platform applications and want to take your appsec to the next level.
Other customer stories
Smart contracts security and consistency
Analysing, verifying, and improving Allbridge's cross-chain bridge: smart contracts security audit, transaction flow analysis, gas consumption optimisation, mitigating risks of abuse and misuse.