Commit 21a1668e authored by Wegerich's avatar Wegerich

English syntax changes to discussion of audit process

parent 1c93f4af
Pipeline #298 failed with stages
......@@ -17,13 +17,14 @@ Bulletproofs, unlike Borromean or Schnorr signatures, are very efficient as rang
Bulletproofs also allow proving that multiple committed amounts are in the desired range at once. Instead of generating a separate proof for each output definition it is possible to use a single bulletproof for all outputs which is much smaller than using a separate proof for each transaction.
### Thorough audit process and implementation
As bulletproofs were really new, and the initial implementation made by the group, while thoroughly done, needed a rewrite focused on our specific use-case, implementing bulletproof in Monero was not a simple thing.
The code has been written and rewritten to follow the new version of bulletproofs which was still being developed, but once this Monero implementation was finalized, the resulting deployment should be taken with extreme care.
Although the existing work had already been done thoroughly by the group, the implementation needed to be rewritten for the Monero use-case and this was complex.
The code was written and rewritten to follow the evolving research on bulletproofs, but once this Monero implementation was finalized, the resulting deployment needed to be taken with extreme care.
Therefore, the community started an auditing process. Researchers reached out to Benedikt Bünz, lead author of the Bulletproofs paper, and to [OSTIF](https://ostif.org/) an organization which helps open source technologies to improve and secure themselves.
OSTIF directed the group to several organizations with the skills required to perform the audit. While one of them asked to be kept unnamed and was therefore put away from the process that needed to be public, two others (QuarksLab & Kudelski Security) were choosen to conduct the audit.
Our 3 auditors were funded by the community to check out the if the implementation did not did not contain critical bugs, and if it did not have any exploits.
The final reports were released during the summer of 2018, with several useful corrections and fixes suggested, and the final bulletproof implementation has been added first to Monero Stagenet, and then to the main Monero network during the October 2018 network upgrade.
OSTIF directed the group to several organizations with the skills required to perform the audit. One was discounted from the necessarily public process as they requested anonymity but two others (QuarksLab & Kudelski Security) were choosen to conduct audits.
Our 3 auditors were funded by the community to scrutinize the implementation for critical bugs, and exploits.
The final reports were released during the summer of 2018, with several useful corrections and fixes suggested, and the final bulletproof implementation was added first to Monero Stagenet, and then to the main Monero network during the October 2018 network upgrade.
Since the bulletproofs deployment, the size of an average transaction has dropped by at least 80%, as well as the transaction fees.
Since the bulletproofs deployment, the size of an average transaction has dropped by at least 80%, and transaction fees have fallen accordingly.
More explanations on Monero's implementation of bulletproofs could be found on youtube fondajo channel in a [conversation with Sarang Noether](https://www.youtube.com/watch?v=6lEWqIMLzUU).
More explanations on Monero's implementation of bulletproofs can be found on the Youtube channel "Fondajo" in a [conversation with Sarang Noether](https://www.youtube.com/watch?v=6lEWqIMLzUU).
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment