BitWall Responsible Disclosure Program

The BitWall team advocates the work of security researchers and supports their

efforts to keep BitWall at its best. We want to provide you the best way to

inform us of your findings. This page will serve as a platform to discuss.

Responsible Disclosure

Responsible disclosure includes:

1. Giving BitWall a reasonable amount of time to fix an issue before you publish it.

2. Making a good faith effort to avoid privacy violations, the destruction of data or interruption of service.

If you follow these rules, we will award you proper recognition.

At this time we are offering to publish the names of people who help BitWall

realize and fix security bugs. At some point, we may retroactively reward all

Whitehats, as well as institute an official program in the future.

Policy Exclusions

This list is not necessarily complete. We evaluate all reports on a case-by-

case basis.

1. Denial of service vulnerabilities

2. Spam or social engineering techniques

3. Non-security related bugs

How To Disclose

You can disclose vulnerabilities by emailing

request@bitwall.io.

We will do our best to respond as quickly as possible.

In your disclosure, please include a description and potential impact, steps

to reproduce the issue or a proof of concept and a name and link for

attribution (if desired).

Thank you!