Bridges enable transferring data, assets, and more between multiple chains. Due to their pivotal role and high transaction volumes, they have simultaneously become a hotspot for malicious activities. When exploited, these breaches can lead to significant impact including financial losses.

This proposal aims to ensure the utmost security of the bridges and promote community involvement by implementing a Security Bug Bounty Program. While all developers involved work hard to ensure the software and protocols built are bug-free, secure by design, and third-party code audits have been already performed, it is recognised security best practices to complement this. That’s why Polkadot and Kusama need community and bug bounty hunters to help to identify security vulnerabilities that could cause impact from all the severity levels before it is widely used and adopted.

To support this, the Bug Bounty participants are provided with many context details in the full proposal [attached](https://docs.google.com/document/d/1j-Nb7FYgSJpChgbvkbkHCM_dsjENhrh4Vqc4rNsmNGY/edit#heading=h.v6is2ta0txr1), including a threat model of the scope.

As a security vulnerability in the bridge can impact both the source and destination blockchains, a mirror bounty is raised on Kusama and Polkadot

Thanks for your time and support to make Polkadot more secure!

0x504f4c4b41444f54203c3e204b5553414d412042524944474520534543555249545920424f554e5459

The proposal encompasses two milestones: the first, completed by February 2023, concentrated on migrating Polkassembly to OpenGov, while the second, scheduled for June 2023, aims to deploy OpenGov for Polkadot and develop a delegation dashboard. Additionally, milestone 3 aims to enhance transparency and engagement within the Substrate Fellowship on Polkassembly. Note that milestone 3 isn't funded from this proposal.

Create 22 original articles, some of them translated to Czech.

Provide regular Weekly news.

Post 5 Governance news.

Co-organize 6 conferences involving Polkadot.

Host 8 Twitter spaces.

Create 48 Kusama & Polkadot weekly news articles.

Create 12 Governance news articles.

Host 12 Twitter spaces AMA.

Create 48 Twitter threads.

Write 24 articles about specific parachain or polkadot tech.

Organize 6 Polkadot meetups.

- **Problem Statement:** Bridges are vulnerable to security breaches, posing risks of financial losses due to high transaction volumes.
- **Significance:** Security of bridges is crucial to prevent malicious activities and ensure safe data transfer between chains.
- **Proposed Solution:** Implement a Security Bug Bounty Program to engage the community in identifying vulnerabilities and enhancing bridge security.
- **Expected Outcomes:** Increased security of bridges through community involvement and proactive identification of security threats.

#44 POLKADOT <> KUSAMA BRIDGE SECURITY BOUNTY

No Active Proposals