We have just completed our review of OpenSSL 1.1.1 with QuarksLab, and we are moving on to our next big project, Unbound DNS!
What is Unbound and Why is it Important?
One of the core functions of the internet is domain name resolution. This means that when you type in a domain name like ostif.org
We would like to thank our sponsors Private Internet Access and DuckDuckGo for helping to fund this security review, as well as all of our donors and individual supporters. This crucial work doesn't happen without support from the community.
The quick and dirty:
OpenSSL version 1.1.1 was evaluated with special foci on new TLS 1.3 features
It has been a while since we have done a round of updates on what we are working on.
We have a number of projects that are currently active and more starting up. Throughout 2019 we expect to finish more than twice as many total projects and to continue with our current commitments to transparency
The OSTIF and QuarksLab Audit of Monero Bulletproofs is Complete - Critical Bug Patched
The quick and dirty:
The Open Source Technology Improvement Fund, Monero Research Lab, QuarksLab, and the Monero community have come together to sponsor in-depth research looking into Monero Bulletproofs. The audit was funded by Monero community donations, with coordination and exchange support
We have completed the security review of the new Pseudorandom Number Generator (PRNG) for OpenSSL 1.1.1.
This security review was sponsored by Private Internet Access, ExpressVPN, DuckDuckGo, OpenVPN, and the privacy community.
Random number generation is a crucial component in all cryptography, because the randomness of numbers is the mechanism that makes secret numbers hard to
OSTIF is proud to announce that we have come to an agreement to fully fund an audit of VeraCrypt. Using funds that were donated by DuckDuckGo and VikingVPN, we plan to hire QuarksLab to go over the code and search for vulnerabilities and backdoors.
VeraCrypt is a crucial piece of open-source software that can encrypt