Code Audit by Cure53

January 17, 2020


Disclaimer: I'm not at my best today since been feeling a bit sick. I focused on bringing the episode out, so sorry for this weeks poor quality.

This week Daniel and David talk about the code review of the SPN cryptography module. The auditor is Cure53 who already has reviewed big players in the scene, such as Bitwarden, Mullvad or OpenPGP. First hints of the result are also included. Enjoy the listen.


- Auditor: Cure53 - https://cure53.de/
- Nadim Kobeissi - https://twitter.com/kaepora
- Formal verification software by Nadim: https://verifpal.com/
- Our Crypto Library: Jess - https://github.com/safing/jess


What could we do better? Let us know how we can improve our podcast on reddit:

- r/safing: https://reddit.com/r/safing

Daniels Handles

- https://twitter.com/dehaavi/
- https://github.com/dhaavi/
- https://reddit.com/user/dhaavi

Davids Handles

- https://twitter.com/davegson/
- https://github.com/davegson/
- https://reddit.com/u/davegson/