Bug Bounties

We create bounties that will be paid out to anyone who finds a major security bug in any of our supported projects. These grants will incentivize the world to comb through the code of our projects and look for problems, dramatically improving the world's confidence in the integrity and security of the projects.

Professional Audits

We give grants to well-known professionals or organizations to audit code and look for bugs, clandestine back doors, or other errata that could compromise security. This adds another layer of oversight and integrity checking to reinforce the trust in all of our supported projects.

Direct Funding

We give grants to worthy projects to enable them to hire staff. This will facilitate code changes to implement bug fixes, and make improvements or upgrades to our supported projects, allowing them to advance in quality, features, or proper documentation of code at a much faster pace.

Latest News On OSTIF.org

OSTIF, QuarksLab, and VeraCrypt E-mails are Being Intercepted

OSTIF, QuarksLab, and VeraCrypt E-mails are Being Intercepted As we have began the process of staging our audit, we have set up PGP encrypted communications between OSTIF, QuarksLab, and the lead developer of the VeraCrypt project. In these communications we have discussed vulnerability information, processes and procedures for reporting findings, and exchanged confidential information about

We Have Come to an Agreement to Get VeraCrypt Audited

OSTIF is proud to announce that we have come to an agreement to fully fund an audit of VeraCrypt. Using funds that were donated by DuckDuckGo and VikingVPN, we plan to hire QuarksLab to go over the code and search for vulnerabilities and backdoors. VeraCrypt is a crucial piece of open-source software that can encrypt

We Are Excited To Announce a New Member of Our Team!

We are proud to announce the addition of a new member of our team! Samara Renovato is joining us to help manage our PR and Social Media operations. She is a student at the University of Chicago studying Psychology. With a new focus on how people interact with one another in the contemporary digital

OSTIF Transparency – We are opening up our books

OSTIF Transparency - We are opening up our books In an effort to increase our transparency about where money in our organization goes, we are opening up our books to scrutiny by the public. You can see how our money is spent and when. We invite any criticism you may have about our operations or

A Special Thank You to DuckDuckGo for Supporting OSTIF and VeraCrypt

DuckDuckGo, the privacy search engine that does not track its users, has made a $25,000 contribution to the OSTIF, with the funds earmarked for the VeraCrypt project. These funds will be instrumental in supporting our goals of strengthening VeraCrypt and will directly assist the project in moving forward. DuckDuckGo's business model is significantly different from

Progress Report – April 2016

It has been a while since we have told you all what we are up to. We have a number of news items to cover in the coming weeks, including updates to our transparency, bringing on additional staff, development of guide videos for all of our supported software applications on YouTube, work we are

OSTIF is Officially a Charity – We Have IRS 501c3 Status

The Open Source Technology Improvement Fund is now a Tax-Exempt Charity Today we received official word from the US Department of the Treasury, that our application for 501c3 non-profit status has been accepted. This means that we are now exempt from being taxed as a corporation in the United States, and that people from the

Kickstarter Lessons and Our Fundraising Future

Our KickStarter has just ended and we have learned a lot about how to raise money for our supported projects. We faced a number of challenges that were difficult to overcome in the short window that we had while the KickStarter was live. We have extensively evaluated every aspect of the effort and got

A Special Thank You

I would like to thank Mike from HTPCguides.com for assisting us with migrating our servers to Linux, optimizing their performance and hardening our complex infrastructure in order to get ready for our KickStarter. We used two guides in particular: http://www.htpcguides.com/install-configure-configserver-csf-firewall-security/ http://www.htpcguides.com/install-wordpress-on-raspberry-pi-with-raspbian/ (no, our servers are not running Raspberry Pis, we used the 2nd guide to install and configure