What OSTIF is Working on in 2020

OSTIF is simultaneously working on multiple projects this quarter. Here is what we've been working on and what to expect over the next few months! Two projects with the Linux Foundation We are working with the Linux Foundation's Core Infrastructure Initiative on the safety and security of the Linux Kernel.…

Continue Reading What OSTIF is Working on in 2020

Four Audits of RandomX for Monero and Arweave have been Completed – Results

As always, remember that our work only happens with the support of our sponsors and the community. Consider donating to the cause and getting the companies that you work at and patronize to get involved. We are always short on funding and more money always means more research. Special thank…

Continue Reading Four Audits of RandomX for Monero and Arweave have been Completed – Results

The Audit of Unbound DNS is Fully Funded

After months of fundraising, we have reached our goal to fund the Unbound DNS audit! We would like to thank the primary supporters of this security review, Private Internet Access and Let's Encrypt. Unbound DNS is DNS server software that offers both DNSSEC and DNS-over-TLS (aka DoT) functionality. It is…

Continue Reading The Audit of Unbound DNS is Fully Funded

The OSTIF and Quarkslab Audit of OpenSSL is Complete

We would like to thank our sponsors Private Internet Access and DuckDuckGo for helping to fund this security review, as well as all of our  donors and individual supporters. This crucial work doesn’t happen without support from the community. The quick and dirty: OpenSSL version 1.1.1 was evaluated with special foci on new TLS…

Continue Reading The OSTIF and Quarkslab Audit of OpenSSL is Complete

OSTIF is Partnering with the Internet Bug Bounty and HackerOne for Bug Bounties!

OSTIF is Partnering with the Internet Bug Bounty and HackerOne for Bug Bounties! The Open Source Technology Improvement Fund will be partnering with the Internet Bug Bounty and HackerOne in a partnership that will get our supported projects listed on HackerOne with no overhead costs! HackerOne is the de-facto site…

Continue Reading OSTIF is Partnering with the Internet Bug Bounty and HackerOne for Bug Bounties!
OSTIF in 2019 – What to Expect
business hand pushing transparency button on a touch screen interface

OSTIF in 2019 – What to Expect

It has been a while since we have done a round of updates on what we are working on. We have a number of projects that are currently active and more starting up. Throughout 2019 we expect to finish more than twice as many total projects and to continue with…

Continue Reading OSTIF in 2019 – What to Expect
The OSTIF and QuarksLab Audit of Monero Bulletproofs is Complete – Critical Bug Patched
Monero cryptocurrency security theme with businessman on blurred blue light background

The OSTIF and QuarksLab Audit of Monero Bulletproofs is Complete – Critical Bug Patched

Bulletproofs are a specific type of range proof based on new cryptography by Benedikt Bunz et al. Bulletproofs are a trustless proofs setup that are substantially smaller than the current Borromean style range proofs that were previously used, which reduces the size of Monero transactions by 80-90%. Monero’s latest network update,…

Continue Reading The OSTIF and QuarksLab Audit of Monero Bulletproofs is Complete – Critical Bug Patched