The problem ZTrust solves

Inspiration

Signing a smart contract is like navigating through a maze without a map - you're not sure if there are secret traps waiting to spring! This uncertainty shakes up user confidence in what they're diving into, and that's not good for crypto's street cred. How do we bring in the next billion users? By boosting security and making this crypto world a rock-solid, trusty playground! 🚀

Problem

• Security reports are overly complex and difficult for end users to understand.
• Checking all security reports before engaging with any smart contract is a tedious and cumbersome process for end users.
• Users are falling victim to numerous scams.
• There's a crisis of trust in Web3.

What We Built

1. On-chain Audit Registry:

   • We've developed an on-chain audit registry that allows audit firms to publish their audits directly on the blockchain, rather than relying on centralized, tamper-prone off-chain repositories. Auditors can anonymously rate their experiences auditing specific protocols, providing an overall evaluation of the protocol's security standpoint. This empowers end users with valuable security insights into any given protocol. Wallet providers can leverage this tool to offer users enhanced security insights for transactions, along with personalized recommendations based on their risk tolerance.

2. Security Scanner:

   • We've created a user-friendly dashboard allowing end users to easily check the security status of any given address by accessing audit reports. Additionally, an AI chatbot is integrated to explain report findings in plain English, ensuring users understand security assessments comprehensively.

How we built it

• Solidity to build smart contracts
• Risk Zero to for ZK based rating
• React for building the dashboard
• OpenAI integration: : Leveraged OpenAI to build an AI chatbot for enhanced user interaction and assistance

Challenges we ran into

This project presented us with a fascinating journey full of learning opportunities, yet it posed a significant challenge in architecting a solution with numerous intricate components. Narrowing down our broad problem set was also quite daunting.

Integrating and harmonizing the various pieces proved to be a major hurdle, but we eventually managed to get all the independent parts up and running smoothly.

We've provided GitHub and Etherscan links for each of our components. The first link houses the bulk of our logic, encompassing our smart contracts, backend, and frontend.

Understanding and implementing ZK proofs presented another obstacle, as it's a highly complex topic unfamiliar to us. Nonetheless, we successfully integrated and deployed it for our project.

The second GitHub link contains our logic for the ZK proofs, while the last two links showcase the contracts deployed on Sepolia.

Accomplishments that we're proud of

• We managed to talk to our target stakeholders during ethdenver 2024 ( security firms, Defi protocols , blockchain network , wallet providers and normal web3 users ) to validate our idea and gather feedback.

What We Learned

• Explored the audit issue and delved into Risk Zero and ZK technology.

What's Next for Ztrust

• Develop a rich dashboard with security analytics.
• Enhance contract architecture and security.
• Onboard stakeholders and collaborate on audit industry standardization
• Train custom AI models.