Our team at WEPN takes privacy and security of our providers and their users very seriously and strive at offering maximum transparency, openness, and accountability.
To that end, all of WEPN code base has always been open source including mobile application, device, and server side side source code. The code can be accessed here:
In addition, we have worked with several outside security firms to review and audit our code base to ensure maximum security. During each security audit process, we immediately addressed any potential vulnerability findings by the security audit team. So far we have performed three rounds of security audits on our code base. The latest security audit report, performed by OTF Red Team Lab partner 7ASecurity, is published here:
https://www.opentech.fund/results/security-safety-audits/wepn/
Additionally, the WEPN system architecture has been designed to make each WEPN Pod perform all the data processing on home local network. This design would eliminate a centralized data processing entity which could run a different code base or store/log traffic data. In our design, WEPN back-end server is only used for fleet management function such as diagnostics, up-time/down-time monitoring, etc and stores minimal user information. For more information, please check out the following article:
Comments
0 comments
Please sign in to leave a comment.