Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Security checklist #2218

@ignopeverell

Description

@ignopeverell

Some feedback from the libsecp audit and our use in grin, all simple things we could add for a little more defense in depth:

  • Zeroing of sensitive data through Drop (password, mnemonic)
  • Check zeroing of private keys in libsecp
  • More randomized tests to check invalid range proofs don't validate
  • Same for aggsigs

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions