Menu

Blog

Select category

Releasing Three Zcash Security Audit Reports

Hind Abu-Amr on January 31, 2019

At the request of Zcash Company, the team at Least Authority had the opportunity to provide security consulting services on Zcash’s major 2018 releases. This included auditing Zcashd v1.0.15 (as part of the Sprout 1.0.x series), reviewing and providing feedback on the Overwinter and Sapling Specifications for future implementation, and a security review of the Sapling Implementation and RPC Interface changes following the latest release. This approach allowed Least Authority to look at the...

Read more

Introducing P4: Private Periodic Payment Protocol

Liz Steininger, Chris Wood & Anamika Ved on January 24, 2019

Least Authority has recently designed a protocol called the Private Periodic Payment Protocol, or P4, which aims to define the way in which subscription services can be funded using end-to-end private cryptocurrency payments. P4 incorporates the use of Zcash shielded transactions for private payments and leverages the Tor anonymity network’s onion services to radically reduce the amount of personally identifiable information (PII) available to merchants. In addition, P4 introduces...

Read more

Least Authority Performs Security Audit of BEAM’s Mimblewimble Implementation

Anamika Ved on January 17, 2019

At the request of BEAM, Least Authority performed a security audit of BEAM’s implementation of the Mimblewimble protocol, written in C++ and uses the Equihash Mining algorithm. Our review followed the launch of Testnet, in which the code was made open source, and preceded the launch of BEAM’s Mainnet. Our team members Ramakrishnan Muthukrishnan, Meejah, and Jan Winkelmann performed the audit in collaboration with the BEAM team members Alex Romanov, Vladislav Gelfer, and Artem Gorbachev from...

Read more

Least Authority Hosted a Workshop at MozFest 2018

Anamika Ved, Hind Abu-Amr, and Ramakrishnan Muthukrishnan on November 13, 2018

Least Authority hosted a workshop “Privacy Personas: how to connect and communicate effectively and make people care” at MozFest, Mozilla’s week-long festival (22 October to 28 October, 2018) in London. Every year MozFest brings together people who care about building a healthy internet - an internet where users control their data, and privacy. Sessions are organized under six spaces mirroring five key internet health issues — Privacy and Security, Openness, Decentralisation, Digital...

Read more

Least Authority performs Security Audit of Knot DNS and Knot Resolver on behalf of Mozilla's "SOS" Fund.

Anamika Ved on October 12, 2018

Earlier this year, Least Authority completed a security audit of Knot DNS and the Knot Resolver for the Mozilla Secure Open Source (“SOS”) Fund. The Mozilla SOS Fund provides security auditing, remediation, and verification for key open source software projects.This Fund is part of the Mozilla Open Source Support program (MOSS) which recognizes and celebrates open source projects that contribute to the health of the Internet.

Read more