diff options
Diffstat (limited to 'contrib/auditor-report.tex.j2')
| -rw-r--r-- | contrib/auditor-report.tex.j2 | 147 |
1 files changed, 101 insertions, 46 deletions
diff --git a/contrib/auditor-report.tex.j2 b/contrib/auditor-report.tex.j2 index cfd613a07..bb645520f 100644 --- a/contrib/auditor-report.tex.j2 +++ b/contrib/auditor-report.tex.j2 @@ -1,5 +1,5 @@ % This file is part of TALER -% Copyright (C) 2016--2019 Taler Systems SA +% Copyright (C) 2016--2023 Taler Systems SA % % TALER is free software; you can redistribute it and/or modify it under the % terms of the GNU Affero General Public License as published by the Free Software @@ -88,12 +88,18 @@ In that time, the auditors processed the following table ranges: & {{ reserves.end_ppr_reserve_in_serial_id }} \\ \hline Reserves Out (withdraw) & {{ reserves.start_ppr_reserve_out_serial_id }} & {{ reserves.end_ppr_reserve_out_serial_id }} \\ \hline - Reserves Recoup & {{ reserves.start_ppr_reserve_recoup_serial_id }} + Reserves Recoup & {{ reserves.start_ppr_reserve_recoup_serial_id }} & {{ reserves.end_ppr_reserve_recoup_serial_id }} \\ \hline Reserves Close & {{ reserves.start_ppr_reserve_close_serial_id }} & {{ reserves.end_ppr_reserve_close_serial_id }} \\ \hline Aggregation & {{ aggregation.start_ppa_wire_out_serial_id }} & {{ aggregation.end_ppa_wire_out_serial_id }} \\ \hline + Aggregation (wire) & {{ wire.start_pp_last_aggregation_serial_id }} + & {{ wire.end_pp_last_aggregation_serial_id }} \\ \hline + Deposits (wire) & {{ wire.start_pp_last_batch_deposit_id }} + & {{ wire.end_pp_last_batch_deposit_id }} \\ \hline + Reserves Close (wire) & {{ wire.start_pp_reserve_close_id }} + & {{ wire.end_pp_reserve_close_id }} \\ \hline Coin withdraw & {{ coins.start_ppc_withdraw_serial_id }} & {{ coins.end_ppc_withdraw_serial_id }} \\ \hline Coin deposit & {{ coins.start_ppc_deposit_serial_id }} @@ -102,9 +108,9 @@ In that time, the auditors processed the following table ranges: & {{ coins.end_ppc_melt_serial_id }} \\ \hline Coin refund & {{ coins.start_ppc_refund_serial_id }} & {{ coins.end_ppc_refund_serial_id }} \\ \hline - Coin recoup & {{ coins.start_ppc_recoup_serial_id }} + Coin recoup & {{ coins.start_ppc_recoup_serial_id }} & {{ coins.end_ppc_recoup_serial_id }} \\ \hline - Coin recoup refresh & {{ coins.start_ppc_recoup_refresh_serial_id }} + Coin recoup refresh & {{ coins.start_ppc_recoup_refresh_serial_id }} & {{ coins.end_ppc_recoup_refresh_serial_id }} \\ \end{tabular} \end{center} @@ -140,9 +146,9 @@ In that time, the wire auditor processed the following table ranges: \end{center} The total credits to the exchange processed in -this audit run was {\bf {{ wire.total_wire_in }}. +this audit run was {\bf {{ wire.total_wire_in }}}. The total debits initiated by the exchange processed in -this audit run was {\bf {{ wire.total_wire_out }}. +this audit run was {\bf {{ wire.total_wire_out }}}. \section{Operations} @@ -169,9 +175,8 @@ Loss (actualized risk from recoups) is {\bf {{ coins.total_recoup_loss }}}. \noindent -Recoups of non-revoked coins are at -{\bf {{ coins.total_irregular_recoups }}} (coins) -plus {\bf {{ reserves.total_irregular_recoups }}} (reserves). +Losses from irregular reserve operations are at +{\bf {{ reserves.total_irregular_loss }}} (reserves). \section{Income} @@ -207,51 +212,101 @@ load. Small amounts of lag can occur in normal operation. The total amount the exchange currently lags behind in deposits is {\bf {{ wire.total_amount_lag }}}. -Note that some lag is perfectly normal, as tiny amounts that are too small to be wired -are deferred beyond the due date, hoping that additional transfers will push them above -the tiny threshold. Below, we report {\em non-tiny} wire transfers that are lagging behind. +Note that some lag is perfectly normal, as tiny amounts that are too small to +be wired are deferred beyond the due date, hoping that additional transfers +will push them above the tiny threshold. Below, we report {\em non-tiny} wire +transfers that are lagging behind. % Table generation tested by testcase #1 in test-auditor.sh {% if wire.lag_details|length() == 0 %} {\bf No non-tiny wire transfers that are lagging behind detected.} {% else %} - \begin{longtable}{l|r|r|c} - {\bf Deadline} & {\bf Amount} & {\bf Row} & {\bf Claimed done} \\ - \multicolumn{4}{l}{\bf Coin} \\ - \multicolumn{4}{l}{\bf Target account} \\ \hline \hline + \begin{longtable}{l|r|r} + {\bf Deadline} & {\bf Amount} & {\bf Target account} \\ \hline \hline \endfirsthead - {\bf Deadline} & {\bf Amount} & {\bf Row} & {\bf Claimed done} \\ - \multicolumn{4}{l}{\bf Coin} \\ - \multicolumn{4}{l}{\bf Target account} \\ \hline \hline + {\bf Deadline} & {\bf Amount} & {\bf Target account} \\ \hline \hline \endhead \hline \hline - {\bf Deadline} & {\bf Amount} & {\bf Row} & {\bf Claimed done} \\ - \multicolumn{4}{l}{\bf Coin} \\ - \multicolumn{4}{l}{\bf Target account} \\ + {\bf Deadline} & {\bf Amount} & {\bf Target account} \\ \endfoot \hline \hline - {\bf Deadline} & {\bf Amount} & {\bf Row} & {\bf Claimed done} \\ - \multicolumn{4}{l}{\bf Coin} \\ - \multicolumn{4}{l}{\bf Target account} \\ + {\bf Deadline} & {\bf Amount} & {\bf Target account} \\ \caption{Lagging non-tiny transactions.} \label{table:lag} \endlastfoot {% for item in wire.lag_details %} {{ item.deadline }} & + {{ item.total_amount }} & + {\tt + {% if 'account' in item %} + {{ item.account }} + {% endif %} + } \\ \hline +{% endfor %} + \end{longtable} +{% endif %} + + + +{% if wire.lag_kyc_details|length() == 0 %} + {\bf No KYC-blocked non-tiny wire transfers that are lagging behind detected.} +{% else %} + \begin{longtable}{l|r|c|r} + {\bf Deadline} & {\bf Amount} & {\bf Requirement} & {\bf Target account} \\ \hline \hline +\endfirsthead + {\bf Deadline} & {\bf Amount} & {\bf Requirement} & {\bf Target account} \\ \hline \hline +\endhead + \hline \hline + {\bf Deadline} & {\bf Amount} & {\bf Requirement} & {\bf Target account} \\ +\endfoot + \hline \hline + {\bf Deadline} & {\bf Amount} & {\bf Requirement} & {\bf Target account} \\ + \caption{Lagging non-tiny transactions due to missing KYC data.} + \label{table:lag} +\endlastfoot +{% for item in wire.lag_kyc_details %} + {{ item.deadline }} & {{ item.amount }} & - {{ item.row }} & -{% if 'claimed_done' in item %} - {{ item.claimed_done }} + {{ item.kyc_pending }} & + {\tt + {% if 'account' in item %} + {{ item.account }} + {% endif %} + } \\ \hline +{% endfor %} + \end{longtable} +{% endif %} + + +{% if wire.lag_aml_details|length() == 0 %} + {\bf No non-tiny wire transfers that are lagging behind due to AML detected.} {% else %} - N/A -{% endif %} \\ -\nopagebreak - \multicolumn{4}{l}{ {\tt \small {{ item.coin_pub }} } } \\ + \begin{longtable}{l|r|r} + {\bf Deadline} & {\bf Amount}/{\bf Limit} & {\bf AML status} \\ + \multicolumn{3}{l}{\bf Target account} \\ \hline \hline +\endfirsthead + {\bf Deadline} & {\bf Amount}/{\bf Limit} & {\bf AML status} \\ + \multicolumn{4}{l}{\bf Target account} \\ \hline \hline +\endhead + \hline \hline + {\bf Deadline} & {\bf Amount}/{\bf Limit} & {\bf AML status} \\ + \multicolumn{4}{l}{\bf Target account} \\ +\endfoot + \hline \hline + {\bf Deadline} & {\bf Amount}/{\bf Limit} & {\bf AML status} \\ + \multicolumn{4}{l}{\bf Target account} \\ + \caption{Lagging non-tiny transactions due to AML decisions.} + \label{table:lag} +\endlastfoot +{% for item in wire.lag_aml_details %} + {{ item.deadline }} & + {{ item.amount }}/{{ item.aml_limit }} & + {{ item.aml_status }} & \nopagebreak \multicolumn{4}{l}{ {\tt - {% if 'payto_uri' in item.account %} - {{ item.account.payto_uri }} + {% if 'account' in item %} + {{ item.account }} {% endif %} } } \\ \hline {% endfor %} @@ -318,8 +373,8 @@ confirmations to the auditor directly, so if the exchange is slow at synchronizing its database with the auditor, some deposit confirmations may be known at the auditor only directly. However, any delta not accounted for by database synchronization delays is an -indicator of a malicious exchange (or online singing key compromise) -and should be answered by revoking the exchange's online siging keys. +indicator of a malicious exchange (or online signing key compromise) +and should be answered by revoking the exchange's online signing keys. % TODO: maybe reference PhD thesis on this? The total amount the exchange currently lags behind is @@ -613,7 +668,7 @@ compromise resulting in proportional financial losses to the exchange. \endfoot \hline {\bf Total loss} & - {{ reserves.total_loss_balance_insufficient }} \\ + {{ reserves.total_irregular_loss }} \\ \caption{Reserves with withdrawals higher than reserve funding.} \label{table:reserve:balance_insufficient} \endlastfoot @@ -782,7 +837,7 @@ invalid and the amount involved should be considered lost. \endfoot \hline \multicolumn{2}{l}{ {\bf Total losses} } & - {\bf {{ coins.total_bad_sig_loss}} } \\ + {\bf {{ coins.irregular_loss}} } \\ \caption{Losses from operations performed on coins without proper signatures.} \label{table:bad_signature_losses} \endlastfoot @@ -901,7 +956,7 @@ actually received in some reserves. {% endif %} -\subsection{Missattributed incoming wire transfers} +\subsection{Misattributed incoming wire transfers} This section lists cases where the sender account record of an incoming wire transfer differs between the exchange and the bank. @@ -911,7 +966,7 @@ account. % Table generation tested by testcase #9 in test-auditor.sh -{% if wire.missattribution_in_inconsistencies|length() == 0 %} +{% if wire.misattribution_in_inconsistencies|length() == 0 %} {\bf All incoming wire transfer sender accounts matched up.} {% else %} \begin{longtable}{p{8.5cm}|r} @@ -926,11 +981,11 @@ account. \endfoot \hline {\bf Total amount} & - {{ wire.total_missattribution_in}} \\ + {{ wire.total_misattribution_in}} \\ \caption{Incoming wire transfer sender accounts not matching up.} \label{table:wire_in:sender_account_inconsistencies} \endlastfoot -{% for item in wire.missattribution_in_inconsistencies %} +{% for item in wire.misattribution_in_inconsistencies %} {\tt \small \truncate{8.3cm}{ {{ item.reserve_pub }} } } & {{ item.amount }} \\ \hline {% endfor %} @@ -942,7 +997,7 @@ account. \subsection{Actual outgoing wire transfers} \label{sec:wire_check_out} -This section highlights cases where the exchange missbehaved +This section highlights cases where the exchange misbehaved with respect to outgoing wire transfers. % Table generation tested by testcase #11 in test-auditor.sh @@ -988,10 +1043,10 @@ with respect to outgoing wire transfers. \subsection{Denominations without auditor signature} This section highlights denomination keys that lack a proper -signature from the {\t taler-auditor-offline} tool. This may be +signature from the {\tt taler-auditor-offline} tool. This may be legitimate, say in case where the auditor's involvement in the exchange business is ending and a new auditor is responsible for -future denomnations. So this must be read with a keen eye on the +future denominations. So this must be read with a keen eye on the business situation. @@ -1107,7 +1162,7 @@ have a clear financial impact. {{ item.row }} & {{ item.diagnostic }} \\ \nopagebreak - \multicolumn{3}{l}{ {\tiny {\tt \truncate{\textwidth}{ {{ item.wire_offset_hash }} } } } } \\ \hline + \multicolumn{3}{l}{ {\tiny {\tt \truncate{\textwidth}{ {{ item.id }} } } } } \\ \hline {% endfor %} \end{longtable} {% endif %} |