2QUIC

Search docs

Find a documentation page

Security whitepaper

Link to the published whitepaper PDF (placeholder. Final document lands in M11.3).

Status

The full security whitepaper (threat model, attestation verification protocol, KMS key policy schema, and the SLSA-3 release attestation chain) is published as part of M11.3.

Until that lands, the canonical reference is the design doc shipped with the source tree:

  • tasks/design-doc-staked-quic-marketplace-v1.md §9: security architecture.
  • tasks/design-doc-staked-quic-marketplace-v1.md §9.9: threat model.
  • tasks/prd-staked-quic-marketplace-v1.md FR-O7: security programme requirements.

TODO: pending content

  • Link to the published PDF on the docs CDN.
  • Link to the HackerOne / Immunefi bug bounty programme.
  • SLSA-3 provenance verification example.

The placeholder PDF link is intentionally absent so a broken link doesn't ship. M11.3 will provide the URL.