Security reviews of core network components #410 - Milestone 1: _(ISS) ISS/BFT Orderer_
OPENIssue
270K CC requested
digitalasset
Milestone 1: _(ISS) ISS/BFT Orderer_
- Scope: The internal audit and addressing of found issues of the ISS/BFT Orderer have already been funded as part of the ISS/BFT grant. Therefore, the scope of this milestone is restricted to updating the documentation to make it accessible to independent auditors, assisting them during the review, and remediating any issues eventually found.
- Estimated Delivery: EOY 2026
- Estimated Effort: 5PW
- Selected Independent Auditor: RFQ (will be replaced with auditor name once selected)
| Milestone | Description | Amount | Note | |---|---|---|---| | (ISS) ISS/BFT Orderer | Audit 1 | 270,000 CC | For DA upon completion of audit and remediation of all high-severity findings, and an approximate budget of up to 350,000 CC for the third-party auditor. This section can be repeated multiple times if additional audits are required. |
Total Funding Request: 6,420,000 CC for DA and a budget of up to 3,850,000 CC for the 11 third-party audits.
_Originally posted by @pedrodneves in https://github.com/canton-foundation/canton-dev-fund/issues/410#issuecomment-4907907553_