Halborn Audit Validates QRL's Post-Quantum Cryptography Library

Read More

Report a Security Issue

The QRL team encourage responsible security investigation and reporting.

What to report

Contact us if you have discovered security issues in any of the following:

  • QRL protocol design and implementation
  • Services deployed by the QRL team
  • QRL network and infrastructure

If in doubt, send a report.

How to report

To report a security issue send an email to security@theqrl.org

Consider encrypting your message using the PGP/GPG key embedded below.

1

-----BEGIN PGP PUBLIC KEY BLOCK-----

mQINBFxoWCoBEAC+MluHOjH1EcEpGPO3N5i+zSGXwnLyz5ACQeU6GPxpXStlFc5V
GLNw70gtp7hBdVsCcmL6MVDMmvlUWqQ6bT0ED3Jt08yVmM340rUG19N2DvK7eFYT
6+8mst+WH0xh/1M1xSZC3tfQpLtVe8rQmkLfVjW6K677VNChS16vy0697UiWwWXm
Mf+XH6aV7WAcPqY97IyawEhdA6l960RZdnZlZhpOSrhMBPi0/abCp/A+jxXxRJ4A
aKIe2zTJ9/NFoRGgj+VytIVXYRg229Bihq0Vc2QNqgnuQxtHpVecXvde7sfBNpsk
effI0sLSRIUXxlN5/t85Vvm8XgOLZBRONr9wN90nLCSGvaNZFiBH4T72SyfwhTUF
Abo9cCCGof+/FDw6ITAdTU1YxUQNsvcbStGu9qvthxGAD+rdnL/FgPCLn4riyImi
VUlre8jhs62bh7kBMLWFt0OE8epVeQbS5E/0gLHHMmeTzHcBAy0nZ8lBzWwkwsbX
yN1gC+hPs4jqu3cJFD1S/5aEfe7uatedIevImW+nU7WoGIc1a9s7vSbNLVCkoeLq
i2x0vw3rNVg/4u5pHWgh0930EL9s6wTnMe8ZfEYaVjzpbZqfyRaCaRpyyAe0mU81
fYx4hFpr3AD1ALWM0Bnm68DQOhZlQz+u/yF93gQ4Qum6FUSBMNU1eVKpbQARAQAB
tCNTZWN1cml0eSB0ZWFtIDxzZWN1cml0eUB0aGVxcmwub3JnPokCVAQTAQoAPhYh
BLA1lB0arakj62Hy6xR2Imm/3RHzBQJcaFgqAhsDBQkHhh+ABQsJCAcDBRUKCQgL
BRYCAwEAAh4BAheAAAoJEBR2Imm/3RHznFMQAKMVefAf797BhDkVoQkkAlkr8uSq
6jlvceUW+lt7jiYkYCZHeRmipyEXwNqfw7T6+r2awixgDvnOtqyG4j7aq957uXWv
wIjcF9vm1lGOFMLZ49ZqnZqggQ7/9ckMevg3Labqw9x9TI/bhVbkBFVDpaQd5tFR
fjy16tqGN6DTgU+El30KE2zUQ0M48VmNPoKCYBcuV1fadkkKajWIA6ei6swoKKQV
PyLx9CNeLtH/fQ0jTki+oSuzvdWTYpQsltK7zkyDUpc7qKzDvISp5ER5v/j9pAlE
CqdfgNTh/ebcgzJ10mZ181sE5F6Z0Xixm89l8i96iUyuK76qb3Sbc+2/PQvE/PQX
xi7Sz3Ay2cujgIc1Cp+piW114fctA49JnAzCrI6t2MyS1PHx9gIw0VlWYxYLscI2
GEAVtKgW3vsl/gakDNfx2895UwD8f+31/RNTCZqZYp6Tocpf/VlVSoTjuYD8c6Cc
0SJ4bgZFMPMJ0sGNBlGtz+ZVb2e9kaHj6XC3y9nLdPOglfPc+8WF3l4ROLD9rpqG
t9erkTOn9bo0tuys8cJJiKYCpaQM2Qg1ZvOC+PyHFburWWAaU7mdVh+Ct/XWNbLE
OIlGAnMMsYSpCrgOBssIKj2vR/mos8OGp5c5L7liCkhexWnsCZmXQH2cJJegCMns
gmLy0ZpOfC8yumXtiQJUBBMBCgA+AhsDBQsJCAcDBRUKCQgLBRYCAwEAAh4BAheA
FiEEsDWUHRqtqSPrYfLrFHYiab/dEfMFAmm4F4sFCQ87ftAACgkQFHYiab/dEfO1
gA/+M+9R96W2GBks2s5XG8jQ1Oqc0Qma/CDOOJfPve1bjhieRVVSe6WQST9Pm9lY
4jxpkEUkcYMt59P0xIeaWZnIFJhKWGPbIDkHzVZ9W/1KyLrQ4V39n0PoMdnlw4TT
ijXhadkMyd8wWeV9OUJ+S0aYCmN2GaIRPLvdmiEqC4levbxyPD1mp81vNBLbSaYQ
pkoKYjrDvbne6bxXXXRQ78D+NQfb4iKaa44YQ3X0kSLSbQKgTTfeWp7jmoQZgTvl
MRqgq16nNjZubINwkJMzSLqGPc18HKYv1vRdaR+Ae0whdEp30bjD4PQVVglvwnQ9
2N35HbVDGLWf0AdnFWdvH0p1mlU3fRjtu9llnUix8TRmGG+k3yE4i4U2YeLeXmVH
tTjLvP0E+0r+WH/CaC2HCCW915eKPLI0+3Z1MWl3am/+aVqE1JoUlp9EEYpq4uyV
JfnLsbw41O6b5mrAN4dynYrMA1NLERBagE2sT6EjjXi61Qkmhm4uNZZpVMhA4rOO
a5kKkNTaRUI59OcyqYgGnXPWWtQv2oKz94ZPqX/fYCJy8pofZUy9SZQk6/OIgvmz
0HxslhARStRDmMqVf7OBVLgjqPhDQTc6Y247tzvQcsBWlRNHDCfy7HUNkaXcA5yI
v9ff/zdO0Ja1iZdJ8duoAi8dU0NmiqZ+gZ3hLPfgZgWFjLiJAlQEEwEKAD4CGwMF
CwkIBwMFFQoJCAsFFgIDAQACHgECF4AWIQSwNZQdGq2pI+th8usUdiJpv90R8wUC
Y9R8QAUJCy6LFgAKCRAUdiJpv90R85VRD/48T5ctwH5TKfazaK2VqVrAhVy9aeBu
bioXl/xm1crYBJlWkDYRIOfvQtOY/ILnBDEw4kOLVSXQDx9fiiysDngjVW/4jx9f
BeTJe3ai0N16gAZ+Kh9koutwXQJz4tXZqLHqhiPD11Wg9XHfMnBLKzYKNBWuyWPe
/zZE23KCkY4J+m33VCRGuZ3SvDAR+LrUsY0Yeb5G/hTrg8rtlv0E7DVsIFOtiYWl
y3Ax8AqAKk2I7xagWajLNNvxUw5SqBhrlhf4HIE2J6XT8L80wjjoorO1MrBVmCYa
K3gYwToeaRFxcUJHqhjJlNAthP6laZqo+dcMRPyR3F0fpWtpFars6OZcWDmITogS
u1N849Z4d84aYLhjXFTjKnF0M0GvyJYoBnNtt02WlFXcQtvRRdq4Ed9WpHRN9FQy
OjgjbsRvzTmvb/931RRcg4R0XAhdbCMuZf2kfUXVwp+MmM9EOR00FiK9zXoX1n/3
9KRK7kfN46soZ2bQgMGGq50v/dYCYCEPTC2kD69JY5p8Yefy1JRGNIUS2lkqKpT3
8UpbZ258h8Y9qXcUE2O/FB8bjwDsw5JNAvtgGT7JXB6Zg8HCifhucDC3N8uZ3zof
d9hUs7HEHRPTw+qeQYuSRfTzP0pp1jDYH4VZWCsigdmHGmqXvdbmSHXy8IEvHUze
q1r6bFSldkRjaYkCMwQQAQgAHRYhBC0MOfHlK2fJ6UBi/EnJgM0tjSH0BQJcbwQT
AAoJEEnJgM0tjSH0sdQP/iuoTm0OnpTUMGiFMhTwjX/PzR6WcJP11e8nNJmNxcNp
WCTBFs+aYur8gG0tpkGZwDawinZABPiV17u1FqJY2RX9eeKnEbj/s5zVn7wgtrKI
Gw2t1vCVPucpZ/VjJm8i/jjEoCCTJeXKZ4VGSvn1bfAWv/E8g4thVqenJf/RTuyY
vqc9P9orX+iqZTcT2F5sO97OONqB8M1XWOmMQ1pc/eRXmYr5bzpU2fJhOh7H1fXx
ElltwMfWaYV2FHOYeat/47sT68EHul8FFhB2t4ksyzvhCNmmEA7zQwe02uYEMmmf
Jita2BJW3z+LhfT2sBBC3tzOkxzefNEJXaQaoc1As1VXwdyw7wAP1cNLdHDFYnmI
iiOe9ePjAp/3eWmms8I7w7aKfv2CcQpkUEsTFtl5H3HaZfFMqy2fbX8cX05pTcPh
Ltkjshm5G0EqRp5pD4ExAKxMHuqQ3baEw0zhPLYThtsEqXleIqUFsOiywfQPuHvi
zixeucivBzPOzCa9kPe2Dqu5r7ouuGVgcRGV5w+fPhNwibuGYShyns0CoLHVf3MU
3MuC7lvUdpkAhdjSK6tbW2o3SdY1KYzr/W8bRu8zgNPz7mpdPKlcyC0xEepF7uQi
FCgJh5tbUa1DjPWLIXvMlewp9Fa0LBA9Lw7jgMyy1e64QIrqTf4g1QcV1B9EoO5k
uQINBFxoWCoBEADPVF20365DS+JU5vQJucttbhlNaVGDbBUl1EwU6ZymLMp3/hUv
68RokmhyIZP32YCz+ezDCZqE2IX+w5TuG/h3/zZtSKVA6+ZeEX+d8Iq+QwykEEUr
wbjlWODzCuJZ4qzwH52Kg0RrGzRYiWsjG4vI0SJ7OL+R7uaihrzOQixnH37atKrU
143Z4SBtzQuxzmllGQOO72cGOvF39qmzvatd1OgX6GEw0TE5pO5b80mLlsBg0Tlz
O/Ukk51difHx7nHhyJY1Q4RoqiQG+M6VEtKuefRh7lpobdetQ35ubfW1m+EzoSRN
OtiDAcgQNb4ejBfIS24On/2m7jrXzu42B08cRO4MbE6wYpgvMmPONeqk8grB/3dO
wRros4AT4CFSLFylbyI5lHHlShoeivKNS3nSoQIGH51PQFvqQLPfKP7dYLXxf2d7
w+5lrtogyp1Sr2Prn5gZ61GXirqprwEmTL+bzsKFuw3dewbrMv0xFD9TLvgAXXdm
vwy6Y1wkNHsuufoX42EklehwwxDyeeIXKihPR8uuMtb6hOy5tETJF5ZCi5Kg0hjv
Jvo9ewUjmq+sXtDYqO59NdPXXZQ7JElGyucnCRuv2h2onSGGW5gkoly5AIHg8Y8z
B0RHA2Ag2IHwSMInbGZ6lGlQaZftXUOhTlZ4OFoPJOEcIemUVLI87sTqMQARAQAB
iQI7BBgBCgAmFiEEsDWUHRqtqSPrYfLrFHYiab/dEfMFAlxoWCoCGwwFCQeGH4AA
CgkQFHYiab/dEfP24Q/4nEC4xKNQlsUqkwK0BsASEocKelc5zKpnl0s81l4TPWI9
LDqIt6C7jsMZ5ZLthD+HCfDlNpL24x6JZHstF/+ao3Ujc2DdK15cBfPwMIk7lhKd
K4+V9AFQnNtLL1IfRawafsjQ/6liZpDZd0PWiYfAozr+unADlxUn3Bv1hkWxzegZ
MMgJ6hu5/OnQ7wV87mJ68R7CtZMiNM92iNXGF8AxOLab/iXNamfyBmivoriDcFJk
TypcSkXCNc/OePGR36DaNZ9OG1fIYsxnqzicpZUZYUXUrPdlnLJB4i8a0bVn0Je+
n6QgbJIu87MnUlIhA6ZIxo2xFt+jwKBlVUdva1n1YJnGeHCL6MqV0FJyNck+hB1/
iu2xevp2nWaeYghXenKbrSzuc+3ueFdnxMwVeJ7WnpXs/pJo1a0floc9sAniDU05
uEQyrm0RjsIhuxBd2fgNtck3KL4NaLWnA2mUgRme5RMY1tKg0lJ4hjgz3pSWpA0K
vhGITzsWyUVB4xRTgAHPTsE2hTf95aMcHCaabc0E7m2E1VhL9qvdk13cXb87zIaH
kMJ7XZn1OrhpQ0rpKuM+NiwhzxxPPuJWGEQunGoPMjhBLgtEkqHF5I0jMU2WqRyi
6nskcPKN9aXglR0C7nogscBwW0BgMa+baUZB/DJSqx1hARshvjMzwZI8HPGr34kC
PAQYAQoAJgIbDBYhBLA1lB0arakj62Hy6xR2Imm/3RHzBQJj1HxvBQkLLotFAAoJ
EBR2Imm/3RHzUDYP/j4eyN7D+gF5e0dbJ8kx5NwkY3Yg86bL0xBcPxDZ+ZcT4ML8
+GUZ7R3egqK0COYTxU7O0pyZjwG97n+LHXK9nV048UgL/44cV7I0Q9nqLyY7sltq
5Was1CkAQyWETMThzF3C4F4xpNCg5S4trgsPb66mB12grY/9rdmgcvSnAW237DwA
fDPv9+JmWr10odjf27Y+v1Y7q0FBqAyPKhuekXLcKitmVsUGTK8OVbXgOP+tEnKb
zyfwZ//fgmvofFESAvAHaqveyV5dyjxingu3IYyewnghDleBpuSl6CXx2MRZ11fT
5+HBNO0saIKDINfKiLf3WbS5abws5UR7SNX2g0nNwDIBvL8CCEDQgCc8mw2rwGyC
n2F0m4DkX3g7nZG5dlOmscwUKpcHWEaGHUg1CDju0NszO49l7GS34ks2pTYTKT4y
OLnqYbmo/CAJRe61Q6Yy4fdGclb6/kfY5GMcY1PwptKsZ++5x3VE9Gk3ruFZ02qD
s+ES3irpR8W/cyeMRG9Qd2s3w3gi3K45LKAzJxcPgAEnZkDg2+TUNq2UyJxn1Lmm
lwv2sPKvsCnQS0GCgehsRj0B/yu37HKCPrPW2SEPJkxt9KrxV1KN5qcP2dqhtbvI
ZprPAsJuH9x7WEOcdRRc6miK4x0u4XehIPrsOSEpVdbjnMmlLYNmQ3v3UGVP
=+epG
-----END PGP PUBLIC KEY BLOCK-----

To facilitate reproduction of reported issues, we encourage you to include the following information if possible:

  • Description of the issue
  • Description of the issue’s potential security impact
  • The affected resource. e.g. URL, GitHub code snippet, transaction
  • Ideally a proof-of-concept that demonstrates the issue

Our process

Upon receiving your report, the QRL team will assess the issue and reach out to ask for additional information and/or provide assessment.

Any reported security issues may be eligible for rewards under the terms of The QRL Bug Bounty Program.

Contact Us

Join our mailing list, contact the team or join our vibrant and friendly community of users, developers and enthusiasts on Discord or one of our other social channels

Press enquiries

press@theqrl.org

Support requests

support@theqrl.org

General enquiries

info@theqrl.org