Back to Journal
Product

Formal Verification: Why Traditional Audits Aren't Enough

JD
James Doe CTO, Axiron
Published November 28, 2024
Read Time 9 min read

In 2024 alone, over $1.7 billion was lost to smart contract exploits. The uncomfortable truth? Many of these contracts had been “audited.” Traditional security audits, while valuable, have a fundamental limitation: they can only find bugs that humans think to look for.

This is why we built Invariant.

The Limits of Traditional Auditing

A typical smart contract audit involves experienced security researchers manually reviewing code, running test suites, and checking for known vulnerability patterns. It’s thorough, but it’s also:

  • Time-bounded — Auditors have deadlines, limiting exploration depth
  • Pattern-dependent — Novel attack vectors may not match known patterns
  • Human-limited — Complex state interactions are difficult to reason about mentally

Consider a reentrancy vulnerability nested three calls deep, triggered only when a specific combination of state variables align. A human auditor might miss it. Mathematics won’t.

Introducing Formal Verification

Formal verification uses mathematical proofs to guarantee that certain properties hold for all possible inputs and states—not just the ones we think to test.

// A simple invariant: total supply should never exceed max supply
contract Token {
    uint256 public constant MAX_SUPPLY = 1_000_000e18;
    uint256 public totalSupply;

    // Invariant: totalSupply <= MAX_SUPPLY
    // Formal verification PROVES this holds for ALL possible executions

    function mint(address to, uint256 amount) external {
        require(totalSupply + amount <= MAX_SUPPLY, "Exceeds max");
        totalSupply += amount;
        // ...
    }
}

With formal verification, we don’t just test that totalSupply <= MAX_SUPPLY—we prove it mathematically.

The Invariant Architecture

Our platform combines three complementary approaches:

1. Static Bytecode Analysis

Before any deep analysis, we scan compiled bytecode for known vulnerability signatures:

# Simplified vulnerability pattern detection
VULNERABILITY_PATTERNS = {
    'reentrancy': [
        BytecodePattern('CALL', followed_by='SSTORE'),
        BytecodePattern('DELEGATECALL', state_change_after=True)
    ],
    'integer_overflow': [
        BytecodePattern('ADD', without_preceding='JUMPI')  # unchecked
    ],
    # ... hundreds more patterns
}

def scan_bytecode(bytecode: bytes) -> List[Finding]:
    findings = []
    for vuln_type, patterns in VULNERABILITY_PATTERNS.items():
        for pattern in patterns:
            if matches := pattern.find_in(bytecode):
                findings.append(Finding(vuln_type, matches))
    return findings

2. Symbolic Execution

We execute contracts symbolically, treating inputs as mathematical variables rather than concrete values. This allows us to explore all possible execution paths simultaneously.

Path 1: balance[msg.sender] >= amount → transfer succeeds
Path 2: balance[msg.sender] < amount → revert
Path 3: amount == 0 → edge case behavior
Path 4: msg.sender == recipient → self-transfer
...

Each path is analyzed for invariant violations, generating counterexamples when properties fail.

3. AI-Assisted Analysis

Our models are trained on thousands of audited contracts and known exploits. They identify suspicious patterns that don’t match explicit rules but “feel” like vulnerabilities based on learned representations.

A Real-World Catch

During our beta, we analyzed a DeFi protocol managing $47M in TVL. Our formal verification engine detected a subtle vulnerability:

Finding: Under specific conditions (flash loan → stake → unstake → withdraw in single transaction), the totalStaked invariant could be violated, allowing withdrawal of more tokens than deposited.

Traditional audits had reviewed this code twice. Both missed it because the exploit required a 7-step transaction sequence that no human would naturally construct as a test case.

The protocol patched the vulnerability before deployment. No funds were lost.

The Path to Mathematical Certainty

Smart contracts are unique in software: they’re immutable, high-value, and adversarial by nature. This environment demands a higher standard of assurance than “we looked at it and it seems fine.”

Formal verification isn’t a replacement for human expertise—it’s an amplifier. Invariant combines:

  • Human intuition for understanding business logic and intent
  • AI pattern recognition for identifying suspicious constructs
  • Mathematical proof for guaranteeing critical properties

Getting Started

Invariant is currently in beta, working with launch partners across the Ethereum, Arbitrum, and Base ecosystems. If you’re building smart contracts that handle real value, we should talk.

The future of smart contract security isn’t just finding bugs—it’s proving their absence.

Apply for early access at invariant.one.

JD
James Doe CTO, Axiron

Read next

Product

Building Rizzler: AI That Understands Human Connection

Product

Waylo: Replacing Travel Chaos with Intent