Open Reward Program · the incentivized self-verification market
We pay you to try to break our proof.
An open, rewarded, never-ending challenge is a stronger trust signal than a closed annual audit. A closed audit asks you to trust one firm's opinion. The open program lets anyone recompute the chain and rewards them for finding a real flaw — so the crowd hardens the proof, continuously.
For decades, "secure" and "compliant" meant trusting the vendor and the one auditor they hired. That is the old way — and it is out. We do the opposite: we invite the whole world to attack the proof, in their own browser, against the live chain — and we reward the people who succeed. Trust resolves to math plus market scrutiny.
Don't trust us — open the proof and recompute it in your own browser
Patent-pending — U.S. Provisional 63/921,717
Why an open reward beats a closed audit
A private audit asks for your trust. An open challenge earns it.
A closed audit is one firm, once a year, looking at a sample, behind an NDA, and handing you an opinion. An open reward program is everyone, all the time, against the live record — and the more independent eyes are paid to attack a proof that still holds, the more credible it becomes. Here is the contrast, plainly.
You trust their opinion.
- One firm, hired and paid by the vendor, checks once a year.
- You get an opinion about a sample — not the whole record.
- The work happens behind an NDA; you can't recompute any of it.
- The day after the report, nothing keeps watching.
- An incentive to pass, not an incentive to find what's wrong.
You verify it yourself.
- Anyone, anytime — the whole crowd, not one paid firm.
- Recompute the live chain yourself in your own browser.
- Nothing is hidden — the proof is public and continuously open.
- Continuous — the challenge never closes, scrutiny never stops.
- We reward people for finding real flaws — incentives point at the truth.
The logic is simple: the more eyes paid to attack a proof that survives, the more credible the proof. We don't position around being audited by someone — we set the standard, and we let the world try to break it.
How the program works
Recompute it. Find a real flaw. Get rewarded.
No special access, no toolchain, no NDA. The same verifier the public uses is the one you attack — and a genuine, verified integrity flaw is rewarded.
Recompute the proof
Open the live verifier and recompute the chain, a page, or a record hash yourself — entirely in your own browser.
Find a genuine flaw
Look for a real integrity flaw — a record that doesn't recompute, a chain that doesn't reconcile, a verification that can be made to lie.
Submit it
Report it through responsible disclosure with the steps to reproduce. We confirm against the same public record anyone can check.
Verified findings are rewarded
Confirmed, in-scope integrity findings earn a reward and are remediated in the open. The fix strengthens the proof for everyone.
Reward levels scale with the severity and impact of a confirmed finding. Program details and current reward bands are available on request while terms are finalized — see below.
Scope & good-faith rules
Aim at the proof. Disclose responsibly. We respond in good faith.
This is a high-level summary so you know where to aim. It is not the contract — full program terms are available on request and are being finalized with counsel.
In scope
- Integrity flaws in the public chain and its recomputation.
- Cases where the verifier can be made to show a false result.
- Tamper-evidence failures — a record altered without detection.
- Cryptographic or protocol weaknesses in the published proof path.
Good-faith rules
- Test only against public, designated surfaces — never others' data.
- Use responsible disclosure: report privately before going public.
- No service disruption, no privacy violations, no data exfiltration.
- Good-faith research under these rules is welcomed, not pursued.
Out of scope: social engineering, physical access, denial-of-service, and anything touching real personal or protected data. Full program terms, eligibility, and reward bands are provided on request and govern any submission. Engineered for the standard we set; not certified by any third party. "Integrity In All We Do℠."
Ready to put it to the test?
Don't take our word for it. Recompute it.
Start in the live verifier — recompute the chain in your own browser right now. When you're ready to participate, reach out and we'll share the full program details.