4ae65fc455
* Update is-bitwarden-audited.md to include the latest SOC2/3 certifications and pen tests.
1.5 KiB
layout, title, categories, featured, popular, tags
| layout | title | categories | featured | popular | tags | ||
|---|---|---|---|---|---|---|---|
| article | Is Bitwarden audited? |
|
true | false |
|
Yes.
By making 100% of our source code available under an open source GPLv3 license, our goal is to be as transparent as possible about how Bitwarden works and how it handles your sensitive data. Being open source also allows thousands of developers to quickly identify potential issues and to verify the quality of our solutions. However, we also understand the need for reputable, independent third-party experts to officially audit the Bitwarden codebase.
In October 2018, Bitwarden successfully completed a source code audit and cryptographic analysis by security firm Cure53. You can read more about this security audit here.
In July 2020, Bitarden successfully completed a thorough security assessment and penetration test by auditing firm Insight Risk Consulting. You can read more about this security audit here.
In August 2020, Bitwarden achieved SOC 2 Type 2 and SOC 3 certification. You can learn more about this here
Bitwarden also interacts with independent security researchers through our public bug bounty program on HackerOne.