To have a better understanding about the whole European Blockchain Services Infrastructure, we recommend looking at the following:
It will give you a better overview on the purpose and use cases of the EBSI project. For questions related to the architecture and specifications you can find most of the answers by navigating through the webpage or the EBSI developers hub.
Security is essential to EBSI's mission. We appreciate the contributions of ethical hackers who help us uphold high privacy and security standards for our users and technology. This scope outlines our definition of good faith regarding the discovery and reporting of vulnerabilities, and clarifies what you can expect from us in return.
The initial priority for most findings will be the current API's endpoints that are offered to externals researchers. However, vulnerability priority, scope and reward may be modified based on likelihood or impact at EBSI's sole discretion. We don't expect cases of downgraded scope, but rather increments in the amount of API's included in scope.
Expectations
As part of the policy, we commit to:
- Cooperate with you in understanding and validating your report, ensuring a prompt initial response to your submission.
- We will handle your report with strict confidentiality.
- Remediate validated vulnerabilities in a timely manner.
- Where possible, we will inform you when the vulnerability has been remedied.
- We will process the personal data that you provide (such as your e-mail address and name) in accordance with the applicable data protection legislation and will not pass on your personal details to third parties without your permission.
- Acknowledge and credit your contribution to improving our security, if you are the first to report a unique vulnerability that leads to a code or configuration change.
Toolkit
Are you finding it challenging to understand the European Blockchain Service Infrastructure (EBSI) Core Services, or seeking a tool to streamline your initial interactions with the product?
We recommend visiting our demonstrator page. On this page, you'll have access to the latest version of the Test-Script tool and detailed guidelines on its usage.
The Test-Script tool is a user-friendly Command Line Interface, purpose-built to connect and test certain EBSI Core Services. With this tool and the accompanying guidelines, you'll gain a practical understanding of our product, paving the way for more successful and beneficial interactions with the EBSI Core Services.