To ensure the security of the code, the aelf Public Testnet Code Audit Bounty Program will be officially rolled out. At the same time, team hope that developers, tech geeks and network security teams can actively participate in building the aelf ecosystem. This program is released as a bounty task initiated by the aelf DAO, which ensures that the implementation and reward payment are open and transparent. All R & D teams from the world are welcome to join and win the ELF rewards.
On October 16, aelf enterprise 1.0.0 RC 1 was officially released. This means that the current aelf Public Testnet has achieved all the functions required for the Mainnet launch and has been running stably. aelf Enterprise 1.0.0 RC 1 will be the version for code audit. After code audit is completed and the vulnerabilities are fixed, the Mainnet will be gradually launched using this version.
According to the Bounty Program, the aelf team offers generous rewards for the participants who submit the code audit reports of the aelf Public Testnet. Participants will have a chance to win ELF tokens worth up to USD $ 30,000. And there are more rewards waiting for you. In addition, the aelf team has specially set up the “Million ELF Audit Risk Fund” for audit risk assessment and control of the aelf Mainnet in the future.
Participants should clearly fill in the relevant information in the application form. After the application form is submitted, the aelf team will contact the participants in time to confirm their eligibility.
The audit report will be evaluated in terms of the submission time, content completeness, content quality, etc. The aelf team has the right to conclude the program in advance if an audit report is received that meets all the criteria, and reserves the final right to interpret the event.
You can recommend any development team to participate in the program. If your recommended team wins the prize, you will be rewarded with 888 ELF, and there will be 5 places for the Referral Prize.
Following the launch of the aelf Mainnet, an amount of ELF tokens worth USD $100,000 will be taken out of the system profits as Audit Risk Fund to reward third-party auditors (not limited to teams or individual developers) through 1-year vesting. During the vesting period, these ELF tokens will be the annual income for third-party auditors if there are no security issues or vulnerabilities on the aelf Mainnet. If there is any security issue, a corresponding amount will be deducted from the Audit Risk Fund according to the severity of the vulnerabilities (the specific criteria for this deduction were developed by the aelf team). The first Audit Risk Fund is paid by the aelf Foundation when the Mainnet goes live.
The Evaluation Committee will be consisted of members from the aelf developer team.
After participants submit their audit reports, the aelf developer team will confirm and evaluate the reports. The evaluation results will be sent to the auditors once evaluation is completed.
After the program is closed, the final winner list and the prize money will be announced on aelf’s official account.
You must audit all the codes of the Exchange’s security on the aelf Public Testnet, and submit a full audit report. (Exchange-side security refers to the security problems that the Exchange may face when accessing Mainnet, such as asset loss, business interruption, etc.)
a. Recommended Audit Method:
(Black box and gray box are the key security testing methods recommended by aelf.)
b. Other audit methods: Other audit methods.
Click the link to check the report template: https://aelf.io/gridcn/aelf_Public_Testnet_Code_Audit_Report_en.pdf
Some suggestions for getting started with the aelf Public Testnet and implementing code audit quickly: