|
|
| (7 intermediate revisions by 2 users not shown) |
| Line 1: |
Line 1: |
| − | == "IC Assessment" by Trail of Bits ==
| + | This page moved here: https://dfinity.org/third-party-security-audits/ |
| − | | |
| − | === Report & Discussion ===
| |
| − | | |
| − | Date: January 4, 2022
| |
| − | | |
| − | Report Discussion: [https://forum.dfinity.org/t/internet-computer-security-assessment-by-trail-of-bits-third-party-security-audit/10113 "IC Assessment" by Trail of Bits]
| |
| − | | |
| − | === Areas of the code which were audited: ===
| |
| − | * Internet Computer Interfaces
| |
| − | * Consensus Layer
| |
| − | * Network Nervous System
| |
| − | * Ledger Canister
| |
| − | * Governance Canister
| |
| − | * Registry Canister
| |
| − | * Cycles Minting Canister
| |
| − | * Genesis Token Canister
| |
| − | * Cryptography libraries
| |
| − | * Execution Environment
| |
| − | * P2P layer
| |
| − | * Third Party Dependencies
| |
| − | * Hardware Wallet
| |
| − | | |
| − | == "Internet Computer Consensus: Security Assessment" by Trail of Bits ==
| |
| − | | |
| − | === Report & Discussion ===
| |
| − | | |
| − | Date: March 11, 2022
| |
| − | | |
| − | Report & Discussion: [https://forum.dfinity.org/t/internet-computer-consensus-security-assessment-by-trail-of-bits-third-party-security-audit-2/11453 "Internet Computer Consensus: Security Assessment" by Trail of Bits]
| |
| − | | |
| − | === Areas of the code which were audited: ===
| |
| − | * Consensus Layer
| |
| − | | |
| − | | |
| − | | |
| − | == IC "Threshold ECDSA Cryptography Review" by NCC Group ==
| |
| − | | |
| − | === Report & Discussion ===
| |
| − | Date: June 16, 2022
| |
| − | | |
| − | Report & Discussion: [https://forum.dfinity.org/t/threshold-ecdsa-cryptography-review-by-ncc-group-third-party-security-audit-3/13853 IC "Threshold ECDSA Cryptography Review" by NCC Group]
| |
| − | | |
| − | === Areas of the code which were audited: ===
| |
| − | * Threshold ECDSA
| |
| − | | |
| − | == IC "Canister Sandboxing Review" by Trail of Bits ==
| |
| − | | |
| − | === Report & Discussion ===
| |
| − | | |
| − | Date: July 7, 2022
| |
| − | | |
| − | Report & Discussion: [https://forum.dfinity.org/t/canister-sandbox-review-by-trail-of-bits-third-party-security-audit-4/15951 "Canister Sandboxing" by Trail of Bits]
| |
| − | | |
| − | === Areas of the code which were audited: ===
| |
| − | * Canister sandboxing
| |
| − | ** [https://github.com/trailofbits/publications/blob/master/reviews/DFINITYCanisterSandbox.pdf "Canister Sandbox - Executive Summary"]
| |
| − | ** [https://github.com/trailofbits/publications/blob/master/reviews/DFINITYCanisterSandboxFixReview.pdf "Canister Sandbox - Fix Review"]
| |
| − | | |
| − | == IC "Threshold ECDSA Integration and Bitcoin Canisters" by Trail of Bits ==
| |
| − | | |
| − | === Report & Discussion ===
| |
| − | | |
| − | Date: September 5, 2022
| |
| − | | |
| − | Report & Discussion: [https://forum.dfinity.org/t/threshold-ecdsa-integration-and-bitcoin-canisters-security-review-by-trail-of-bits-third-party-security-audit-5/15952 "Threshold ECDSA Integration and Bitcoin Canisters - Security Review" by Trail of Bits]
| |
| − | | |
| − | === Areas of the code which were audited: ===
| |
| − | * Threshold ECDSA Integration and Bitcoin Canisters
| |
| − | ** [https://github.com/trailofbits/publications/blob/master/reviews/DFINITYThresholdECDSAandBtcCanisters.pdf "Threshold ECDSA Integration - Executive Summary"]
| |
| − | ** [https://github.com/trailofbits/publications/blob/master/reviews/DFINITYThresholdECDSAandBtcCanistersFixReview.pdf "Threshold ECDSA Integration - Fix Review"]
| |
| − | | |
| − | ==See Also==
| |
| − | * '''The Internet Computer project website (hosted on the IC): [https://internetcomputer.org/ internetcomputer.org]'''
| |