OpenSSL Fundraiser Progress Updates

OpenSSL 1.1.1 Fundraising Progress (This post will be updated regularly as we gain more sponsors and progress toward our total goal.) We are happy to announce that we have raised 36% of the money needed to audit OpenSSL 1.1.1 with three weeks of fundraising completed. We expect to meet our goal by years-end if progress continues

The OSTIF Public Books Have Been Updated – Oct 2017

The OSTIF Public Books Have Been Updated - October 2017 We have updated our 2017 Books to current, and they can be viewed here:   https://docs.google.com/spreadsheets/d/1OqWBlNwk5be2c74cRlmYOdhLWPeCjCBAALxYCdMwIaM Highlights since the last major update of the books: -Private Internet Access has become our first Platinum Sponsor. This means that they have committed to contributing $120,000 USD per year, and will

Congratulations to Guido Vranken for earning our first bug bounty!

Security researcher Guido Vranken has had the honor of being our first bug bounty payout totaling $5000 USD for his work on fuzzing OpenVPN 2.4.2 and finding a variety of memsafe and error handling flaws, responsibly disclosing them, and working with OSTIF and the OpenVPN security team to integrate his custom code into the

The OpenSSL 1.1.1 Audit Fundraising has Begun!

The OpenSSL 1.1.1 Audit Fundraising has Begun! What are we doing? Like our other fundraisers, OSTIF is reaching out to the public to fund a thorough and open audit of OpenSSL 1.1.1. This particular version is important because OpenSSL 1.1.1 introduces significant pieces of new code to implement the new TLS 1.3 standard. Millions of websites (including