Bitcoin Forum

Alternate cryptocurrencies => Bounties (Altcoins) => Topic started by: tss_ben on November 02, 2017, 04:48:05 PM



Title: [BOUNTY CLOSED] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 02, 2017, 04:48:05 PM
https://i.imgur.com/yfBy3Kr.png

https://i.imgur.com/aR5uZDx.jpg

*BOUNTY CLOSED*
THANK YOU FOR YOUR PARTICIPATIONS



Bounty Scope

This bug bounty's scope covers the TSS Crowdsale Event Contract *only*.

https://github.com/TssCrowdsale/TssCrowdsale

The bounty scope does not include our website or our cloud infrastructure, social media channels, or any other exploit or vulnerability.
Issues already listed at https://github.com/TssCrowdsale/TssCrowdsale/issues are excluded from the bounty.


Bug & Vulnerability Risk Assessment

We are utilising the same framework as the Ethereum Foundation bug bounty scheme. Risk assessment is performed utilising the ‘Open Web Application Security Project’ (OWASP) methodology. This approach determines the severity of a bug as a function of its impact if exploited and likelihood of occurring. So, a bug or vulnerability with high impact and high likelihood would be considered to have a critical severity.


https://i.imgur.com/tRtvSoB.png


Remuneration/Reward

Amounts are quoted in USD nominal. Rewards for bounties will be issued in TSS tokens. The USD nominal amounts quoted assume that at least US$1 million is raised during the sale. The maximum amount set aside for the bounty is US$5000 issued in TSS tokens.

Note: Up to $5 USD
Low: Up to $50 USD
Medium: Up to $250 USD
High: Up to $1000 USD
Critical: Up to $2500 USD


Determinations of severity will be made in collaboration with the party that submitted the bug, however, the final decision lies with the 5M Holding’s security team. The amount received will depend on the quality of the submission.


Submission Method

The quality of the submission is a significant factor in determining remuneration. Bugs must be submitted in the following manner to be eligible for the maximum reward:

Before 6th November:

Submit a Pull Request on the token repo, including a summary of the bug and proposed solution (if any).
Include as many Truffle tests as is required to prove the bug or vulnerability exists.
Submit a summary of the issue to mgmt@5m-holdings.com

If the sale has begun, bugs or vulnerabilities must NOT be publicly disclosed, as this could pose a security risk. Public disclosure on or after 6th November will disqualify participants from the bug bounty program.

After 6th November (After sale begins):

Submit a report outlining the bug or vulnerability, with accompanying code and Truffle tests as required, to mgmt@5m-holdings.com.


Responsible Use & Disclosure Policy

As outlined above, public disclosure in the form of GitHub Pull Requests are required prior to the pre-sale date. However, once the sale has begun, on 6th November, you must comply with the following conditions. Non-compliance with our disclosure policy may result in legal action.

Reasonable time must be given to allow our security team to investigate the issue, evaluate potential fixes and implement the optimal solution. You must not share the bug or vulnerability with others or publicly announce it until the appropriate fix has been implemented. We will actively communicate progress and inform you when public announcements will be made. Full credit will be given to the discoverer of the bug or vulnerability (if desired) in any article we may write on the topic.

You must act in good faith at all times, and not intentionally cause data loss or disruption to 5M holdings or others. You must not exploit any bug or vulnerability you identify, for any reason or purpose whatsoever, including attempting to identify additional risks or attack vectors. Doing so is illegal in most jurisdictions, and we reserve the right to initiate civil proceedings for any damage caused that we do not believe was in good faith.


Contact Our Security Team

You can submit bug or vulnerabilities identified as outlined above under the section ‘Submission Method’. If you have any questions relating to the bug bounty program or wish to make an anonymous submission, please contact mgmt@5m-holdings.com.

In general, we are following the format of the Ethereum Foundation bug bounty program, and most of the rules outlined there apply to the TSS bounty program.




TOKEN SECURTIY SCHEME (https://www.tsstoken.com/) | 5M HOLDINGS (https://www.5m-holdings.com/)


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 02, 2017, 04:48:35 PM
Announcement Thread: https://bitcointalk.org/index.php?topic=2177307
Official Bounty Thread: https://bitcointalk.org/index.php?topic=2243112


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 02, 2017, 04:49:47 PM
Reserved.


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: David_5M on November 03, 2017, 01:00:31 AM
Please come and take part in our smart contract bounty.

David
Team Tss


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 03, 2017, 10:02:25 AM
Anybody up for the challenge?  8)


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: kikukk on November 03, 2017, 10:09:49 AM
Helo dev reserve for bounty Indonesia traslation
Do you want to reserve ANN thread translation and moderation Y
Do you want to reserve  White Paper translation Y


1 : https://bitcointalk.org/index.php?topic=2293700.0
2 : https://bitcointalk.org/index.php?topic=2316599.msg23550197#msg23550197
3 : https://bitcointalk.org/index.php?topic=2324798.msg23625528#msg23625528
4 : https://bitcointalk.org/index.php?topic=2328175.msg23662457#msg23662457

Wp
1 : https://drive.google.com/file/d/0B_-3XJaNfwKQLTJ5SktWblBoa28/view
2 : https://drive.google.com/file/d/0B9LziqEBPtbsQXgyNnFEQ3FWS3c/view
3 : https://drive.google.com/file/d/0B9LziqEBPtbsWHpFOFVxbWlkT1E/view


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 03, 2017, 05:38:45 PM
Helo dev reserve for bounty Indonesia traslation
Do you want to reserve ANN thread translation and moderation Y
Do you want to reserve  White Paper translation Y


1 : https://bitcointalk.org/index.php?topic=2293700.0
2 : https://bitcointalk.org/index.php?topic=2316599.msg23550197#msg23550197
3 : https://bitcointalk.org/index.php?topic=2324798.msg23625528#msg23625528
4 : https://bitcointalk.org/index.php?topic=2328175.msg23662457#msg23662457

Wp
1 : https://drive.google.com/file/d/0B_-3XJaNfwKQLTJ5SktWblBoa28/view
2 : https://drive.google.com/file/d/0B9LziqEBPtbsQXgyNnFEQ3FWS3c/view
3 : https://drive.google.com/file/d/0B9LziqEBPtbsWHpFOFVxbWlkT1E/view


Hello, you're on the wrong thread. https://bitcointalk.org/index.php?topic=2243112

Thanks for the interested but we already have an Indonesian translator.


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 04, 2017, 04:07:06 PM
Up to US$2500 worth of rewards for anyone who can challenge our Ethereum smart contract!


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 05, 2017, 04:33:03 PM
https://i.imgur.com/EJt3EPS.png

ICO is now LIVE!
Come join us over here: http://www.tsstoken.com/tokensale.php as we begin this new journey!  
See you there!


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 07, 2017, 06:51:11 AM
Smart Contract bounty is still available!


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 08, 2017, 04:16:01 AM
Make sure to join our Bounty Program as well  :)
We have Translation, Facebook, Twitter, Signature, Article/Video campaigns for you to choose from!

Head over to our bounty thread now https://bitcointalk.org/index.php?topic=2243112

Cheers!


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 09, 2017, 12:58:53 PM
Has anyone taken up this challenge?

The reward is still up for grabs!


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 13, 2017, 03:34:15 PM
Our Smart Contract Challenge is still on!

Bounty is still open.

Cheers
Ben


Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 20, 2017, 10:01:41 AM
Calling out to anyone who can find a bug or vulnerability in our Smart Contract.

Take up the challenge and be rewarded handsomely!

+

It's also the last week to join our TSS Bounty Program, so join us now to earn some TSS tokens.  :)
https://bitcointalk.org/index.php?topic=2243112



Title: Re: [BOUNTY] 🔒TOKEN SECURITY SCHEME🔒 [ETHEREUM SMART CONTRACT CHALLENGE]
Post by: tss_ben on November 23, 2017, 06:57:43 AM
10 days left to the end of our ICO and our Smart Contract Challenge is still on.

The reward is still up for grabs!