--- title: 'Phonon HATS Finance' date: 09/23/2022 --- Phonon X Hats Finance === ![build](https://img.shields.io/github/downloads/gridplus/phonon-client/latest/total?style=social) ![Discord](https://img.shields.io/discord/921799167779672064.svg?style=social&logo=discord) ## Table of Contents [TOC] Background --- ```gherkin= Feature: = Hacker Bounties `@essential` # Prerequisites: Scenario Outline: To qualify for any of Phonon bug bounty severities you will have to first order, receive and install the Phonon Developer Kit and Phonon-Client App. - [Purchase Link](https://gridplus.io/products/phonon-developer-kit) Feature: Critical Scenario: First person to provably duplicate a phonon private key or double-spend a Phonon on a Testnet card. Provide a POC that reproduces it. When By merely completeling the tasks outlined within the Phonon-Client Wiki: https://github.com/GridPlus/phonon-client/wiki/Phonon-Testnet-FAQ#tesnet-tasklist-objectives Then Hackers will be able to collect in excess $250 USD worth of $Phonon Tokens. # Incentive Bonus Bounties: Scenario: First person to provably duplicate a phonon private key or doublespend a Phonon on a testnet card - 50,000 Phonon - Duplication or doublespends of Phonons should be impossible according to the Phonon protocol logic programmed on the testnet cards, but we want to know now if anyone is able to find a yet to be uncovered method of circumventing the protocol's design. Feature: High Then: Provide the a POC of how this was achieved. When: After proof and review of said achievement -> Awareded 877,500 $Phonon Tokens. # Exctracting Private Key Scenario: First person to provably extract a testnet phonon card's identity private key - 50,000 Phonon - A phonon card's identity private key allows a phonon card to prove it's authenticity as running a genuine and secure phonon applet. This private key should never be exported or revealed, as that would allow an attacker to craft fraudulent software that masquerades as a genuine participant in the phonon protocol. Again, if someone can currently find a way to do this, we'd like to know now. When Hacker manages to extact the private key Then Awareded Another 877,500 $Phonon Tokens. ``` > Information about the Phonon Protocol can be Found on our temporary website or within the following Repose **Repos**: - [Phonon Client](https://github.com/GridPlus/Phonon-Client) - [Phonon Card](https://github.com/GridPlus/Phonon-Card) - [Phonon App](https://github.com/GridPlus/Phonon-App) - [Phonon Network](https://github.com/GridPlus/Phonon-Network) - [Website](https://phonon.network) Project Timeline --- - Start Date: 26/09/2022 - End Date: 26/11/2022 ## Appendix and FAQ For more information please join our discord: https://discord.gg/phonon :::info This document has been compiled strictly for Hats.Finance ::: ###### tags: `Hats.Finance` `Bounties`
Last changed by  
Rake
162

Read more

index

Intro to About Rake: The Outer Edge of Technology

6/21/2023
macOS Security Guide

macOS: Commandline & Basic Security Guidelines :::spoiler if you're looking for true security, forget macos and windows altogether - You should be looking at OpenBSD, Whonix and/or Qubes for desktop use || GrapheneOS for mobile. ::: Table of Contents This is a really really really high-level starter guide whose aim is merely to ensure minimal security standards for users of macOS. ==Regarding the CLI Commands: Probably the most important part of this entire document is this yellow warning== :arrow_down:

5/2/2023
Static RAM PUF

[TOC] Notes: Kerchoff's Principle, CIA Triangle, Certificate Authority, Registration Authority, Remote Attestation, Intel SGX, AMD TrustZone, eFUSE, SRAM PUF, Instrinsic-ID, NXP, G+D, SecureFPGA, Trussed, openTitan Introduction Traditional Security Measures taken by SemiConductor Manufacturers. Semiconductor Manufacturers offer hardware based, step-up SKUs, implemented via : BBRAM/eFuse Options/One Time Password Solutions/Wire Bond-out/Die-specifc.

12/19/2022
Untitled

_ _ __ /_\ _ __ __ _| |_ ___ _ __ ___ _ _ ___ / _| __ _ //_\\| '_ \ / _` | __/ _ \| '_ ` _ \| | | | / _ \| |_ / _` | / _ \ | | | (_| | || (_) | | | | | | |_| | | (_) | _| | (_| | \_/ \_/_| |_|\__,_|\__\___/|_| |_| |_|\__, | \___/|_| \__,_| |___/ ___ _ _____ _ _ / _ \ |__ ___ _ __ ___ _ __ /__ \_ __ __ _ _ __ ___ __ _ ___| |_(_) ___ _ __ / /_)/ '_ \ / _ \| '_ \ / _ \| '_ \ / /\/ '__/ _` | '_ \/ __|/ _` |/ __| __| |/ _ \| '_ \ / ___/| | | | (_) | | | | (_) | | | | / / | | | (_| | | | \__ \ (_| | (__| |_| | (_) | | | |

10/28/2022
Read more from Rake
Published on HackMD