Security

Security in idOS is essential, and we are taking a pragmatic approach to hardening the security posture of the components of the idOS system in order of priority. At the beginning, idOS Storage Network Operators will have to pass a manual KYB process run by the idOS Association. As user data is encrypted with the user's private key, even a leak of an operator's copy of the idOS database would not expose user data in plaintext, so the most important component to audit first is our encryption and idOS Enclave setup. We are pleased to have worked with Resonance to have the idOS Enclave implementation audited, the results of which you can find here. As we progress and take the decentralization training wheels off, we will have other components of the idOS protocol audited. We will also update here with more information on our bug bounty program.

You can find more about our security and privacy posture in our "idOS Security and Privacy" article and a video from our cofounder Julio Santos on the topic.