Posts posted by Gili
Thank you for your response.
I don't think anyone is expecting frequent audits. Once a year or every 3 years should be enough. As to the cost... that's the cost of doing business. The primary reason I skipped over this product was because it was both close-sourced and unaudited. Otherwise, I would have purchased a copy.
I understand that you do not wish to open-source your product, but I am reluctant to use it because of the fact it is closed-source, the company is based in India (yes, this matters) and there is no information about the development team.
Have you considered having an independent 3rd-party audit your source-code on a regular basis as a way to gain credibility without open-sourcing your product?
in Data Security
It has now been over a year and a half since I requested a security audit. Enpass staff has replied multiple times, making promises that they did not keep.
Enpass has already given us an answer through their actions: there will be no security audit. You need to ask yourself why that is, and whether you are willing to use this security product without it. Based on what we've seen, posting on this forum will not change anything.
I have unsubscribed from this post.