The security audit reports for the Proof of Humanness protocol have been released, stating that most of the identified issues have been fixed or mitigated. The audits were conducted by security consulting firms Nethermind and Least Authority. Nethermind found 26 security issues, of which 24 were fixed during the verification phase, one was mitigated, and another was acknowledged. Least Authority discovered three issues and made six suggestions, all of which have been resolved or have planned resolutions. The reports cover various security topics, including DDoS attacks, key storage, encryption and signing of keys, data leaking, and information integrity. The protocol’s documentation states that the iris scan data is not stored but produces a hash. Worldcoin’s public launch on July 25 faced immediate criticism, with concerns raised about data protection laws and privacy implications. The project’s aim is to verify humanness without compromising privacy in the face of increasing AI bot activity on the internet. The audit reports address these concerns and highlight the steps taken to address security vulnerabilities.
