bug bounty

Trapdoor commitments in the SwissPost e-voting shuffle proof

2019/03/12 : Report of researchers who found a vulnerability in the SwissPost e-voting shuffle. The trapdoor commitment scheme allows an undetectable vote manipulation.

Full version hereRead more

Speak Math To Power: Get Your Limited Edition Commemorative T-shirt (Open Privacy article)

2019/08/06: Open Privacy, Sarah Jamie Lewis' Society, article announcing that Swiss Post paid 2'500 CHF for the vulnerabilities reports made by Sarah Jamie Lewis, Vanessa Teague, and Olivier Pereira. The article also explains why the researchers didn't take part in the official public intrusion...Read more

Swiss Post’s voting system put through its paces by hackers (Swiss Post article)

2019/02/07: Interview of Denis Morel, in charge of the Post e-voting system, about the Public Intrusion Test that was about to be opened.

Read more

Swiss Post terms, conditions and code of conduct Public Intrusion Test (PIT)

2019/02: Swiss Post official terms of use, conditions and code of conduct for their e-voting bug bounty programRead more

How not to prove your election outcome (SwissPost voting system 2nd vuln reporte)

2019/03/25: Public vulnerability report in the SwissPost e-voting system. Explanation and proof of the vulnerability. This is the second report showing vulnerabilities in this e-voting system by the security researchers team of Sarah Jamie Lewis, Vanessa Teague, and Olivier Pereira.

...Read more

Error in the source code discovered and rectified (Swiss Post press release)

2019/03/12: Swiss Post official press release reacting to the vulnerability found by security researchers during the public intrusion test on their e-voting system.Read more

Subscribe to bug bounty