Security & Testing
Comprehensive automated testing and formal verification for all DMF tokens
About Our Security Testing
Digital Monetary Framework [DMF] is committed to the highest standards of security and reliability. All DMF token smart contracts undergo rigorous automated testing using Foundry Forge, with millions of test scenarios executed to ensure mathematical correctness and security. Our testing infrastructure includes:
- Comprehensive Fuzz Testing: Millions of automated property-based test cases exploring the entire state space to discover edge cases and vulnerabilities
- Invariant Testing: Deep stateful fuzzing with multi-call depth sequences verifying critical system invariants that must always hold true
- Differential Testing: Comparison against reference implementations to ensure mathematical correctness
- Formal Verification: Mathematical proof of contract correctness using industry-leading formal verification tools
- Comprehensive Test Coverage: Unit tests, integration tests, and end-to-end scenarios with extensive coverage
DMF Token Testing Reports (Coming Soon)
dmfUSD
DMF USD Token - Backed by Circle USDC
dmfEUR
DMF EUR Token - Backed by Circle EURC
Testing Methodology
Fuzz Testing
Our comprehensive fuzz tests generate millions of random inputs to explore the entire state space of the contracts, discovering edge cases and potential vulnerabilities that traditional unit tests might miss. Each test suite runs extensive property-based scenarios to validate contract behavior under all conditions.
Invariant Testing
Deep stateful fuzzing with multi-call depth sequences verifies that critical properties of the system always hold true, such as conservation of reserves, proper fee distribution, backing ratio integrity, and supply cap enforcement across millions of function call combinations.
Differential Testing
We compare our implementations against reference implementations to ensure mathematical correctness and identify any discrepancies in behavior, validating calculations across all scenarios.
Formal Verification
Formal verification provides mathematical proof that smart contracts satisfy their specifications and critical security properties, going beyond traditional testing by proving correctness for all possible execution paths and verifying invariants at the mathematical level.
Security Best Practices
All contracts use OpenZeppelin's battle-tested libraries, include ReentrancyGuard protection, SafeERC20 for transfers, precision-safe math operations, and follow industry-standard security patterns.
Test Scale & Coverage
Our testing infrastructure executes millions of test scenarios across unit tests, integration tests, and end-to-end scenarios, providing comprehensive coverage of all contract functions and edge cases.
Formal Verification
All DMF token contracts undergo formal verification using industry-leading formal verification tools. Formal verification provides mathematical proof that smart contracts satisfy their specifications and critical security properties, going beyond traditional testing by proving correctness for all possible execution paths.
Verification Scope
- Critical Property Verification: Mathematical proof of key security properties and invariants
- Reentrancy Protection: Formal verification of reentrancy guards and attack prevention
- Mathematical Correctness: Proof of calculation accuracy and precision in all operations
- State Invariants: Verification that critical system invariants always hold
- Access Control: Formal proof of proper access control and ownership mechanisms
Formal verification complements our comprehensive automated testing with Foundry, providing an additional layer of mathematical proof for contract correctness and security.
Security Features
Reentrancy Protection
All critical functions protected against reentrancy attacks
SafeERC20
Secure token transfers using OpenZeppelin SafeERC20
Access Control
Proper ownership and role-based access controls
Overflow Protection
Safe math operations with Solidity 0.8+ built-in checks
Contract Detection
Automatic exclusion of contracts from dividend distributions
Comprehensive Testing
Millions of test scenarios executed with Foundry Forge
Formal Verification
Mathematical proof of correctness using formal verification tools