OTF Application Guidebook
opentech.fundCommunity NewsletterTwitter
  • OTF Applicant Guidebook
  • Introduction
  • Guide to the Guide
  • General Funding Guidelines
  • Application Platform Guidance
    • Login
      • Your Profile
      • Two Factor Authentication (2FA)
    • Submitting Your Application
    • My Dashboard
      • Submission Details
      • Communication
      • Activity Feed
    • Edit Your Application
    • Invited to Proposal
  • Our Funds and Fellowships
    • Free and Open Source Software (FOSS) Sustainability Fund
    • Internet Freedom Fund
    • Rapid Response Fund
    • Technology at Scale Fund
    • Information Controls Fellowship Program (ICFP)
  • Our Labs
    • Localization Lab
    • User Experience & Discovery Lab
    • Security Lab
    • Impact & Engagement Lab
  • Topical Guidance
    • Digital Security Support Guidance
    • Disinformation Criteria
    • Human Rights Documentation and Reporting Tools Criteria
    • Online Harassment and Internet Freedom Criteria
  • More about the Program
    • Values & Principles
    • Creating a More Inclusive, Diverse Community
    • Annual & Monthly Reports
    • Keep in Touch
    • Common Ineligible Areas of Focus
    • Alternative Support Sources
  • FAQ
  • Appendix I: IFF Concept Note Guide
  • Appendix II: IFF Proposal Guide
  • Appendix III: Evaluation Worksheet
  • Alternative Sources of Support
Powered by GitBook
On this page
  1. Our Labs

Security Lab

Conducting independent security audits of internet freedom technologies

PreviousUser Experience & Discovery LabNextImpact & Engagement Lab

Last updated 1 year ago

The Security Lab is focused on ensuring the highest possible security standards for internet freedom projects. To this end, the Security Lab supports independent technology audits for all of OTF’s supported projects. Additionally, projects that are not receiving OTF support but are otherwise relevant to internet freedom may apply for an audit. Audit findings are made publicly available after undergoing a responsible disclosure period to correct bugs found in the audit. Auditors are also able to review state-sponsored software suspected of malicious intent for privacy and security.

Security Lab vendors are able to analyze a project at different phases of its development lifecycle. As such, we encourage applications from those looking for early-stage security assessments of their technical design, those looking for cryptographic design reviews, and those looking for code reviews. As of this writing, the Security Lab has supported more than 170 audits, resulting in the identification and patching of over 2,000 privacy and security vulnerabilities. Community members may also suggest a project for the Security Lab by reaching out to .

To learn more about the Security Lab or apply for an audit, head to the .

security_lab@opentech.fund
Security Lab page