Security

OpenCause Compute uses signed work packets, worker enrollment codes, node tokens, protected operations pages, and audit events to help keep the volunteer network accountable.

• Workers verify OpenCause-signed packets with a public key.
• The private signing key is not distributed to volunteers.
• Suspended or revoked nodes cannot heartbeat, claim, or submit work.
• Operations dashboards and protected APIs require admin access.
• Worker activity should remain visible to the volunteer.

Security hardening is ongoing. Public worker releases require installer signing, compatibility testing, and continued review of worker resource controls.