Cardano (ADA/USD) Foundation is holding a six-week promotion on all assets clarified in Scope below, effective from Monday, 14th February to Friday, 25th March, Hacker One wrote. They will double all bounty amounts for ethical hackers in this period.
Cardano wallet and node
The amounts will range from $15,000 to $600 for the wallet depending on the classification, from critical and low. For the node, they will range from $20,000 for critical vulnerabilities to $800 for low priority weaknesses.
Identifying security flaws
Cardano Foundation is collaborating with the security community to identify security vulnerabilities and keep users and businesses safe. The promotion aims to strengthen the Cardano brand through the public bug bounty program. It covers key items to access and run crypto assets issued on the Cardano blockchain.
Response targets
Cardano Foundation has established optimal response targets for hackers who take part in the program. First response and time to triage are set at two business days. Time to bounty is 14 business days. Finally, the target time to resolution depends on the complexity and severity of the issue.
Program scope
The scope of the bounty program covers the bugs listed below. It doesn’t include any UI or general functionality ones.
- Transaction tampering
- Transaction replay (e.g. double-spend)
- Effective non-network-bandwidth-flooding DDoS attacks
- Remote code execution vulnerabilities
- Bugs that cause the service to crash
In addition, the program covers attacks inflicting damage to the quality of the blockchain or linked or neighbor nodes and leakage of sensitive information. The latter includes private keys wallets, private staking keys, and more. Public keys are not included in this scope.
About the Cardano Foundation
The Cardano Foundation is an independent Swiss not-for-profit organization that oversees and supervises the advancement of Cardano and its ecosystem. The Foundation’s core mission is to further advance Cardano and its ecosystem with a strong focus on sustainability and institutional adoption.
As the custodian of the protocol, the Foundation works to enhance the quality and diversity of total on-chain activity, expand its connective infrastructure and tools, increase blockchain utility and resilience as well as shape legislation, and commercial standards.
The post Cardano Foundation doubles hacker bounties until March 25 appeared first on Invezz.