Copying the Mozilla’s way of finding serious security bugs in web browser, Google also increased the bounty it offers for finding security vulnerabilities in its well-known Google Chrome browser.
Google Chrome
The Google bounty program launched in January 2010, serves the reason of making the browser secure by offering rewards to users who could report potential & big vulnerabilities. As posted on the official post made in January this year, company is:
rewarding select interesting & original vulnerabilities reported to us by the security research community.” And had noted that it “may be seen as a token of appreciation.
Slashdot also agrees that this increase in “token of appreciation” is due to Mozilla increasing their maximum bounty amount to $3,000 last week. The developers also said that “the increased reward reflects the fact that the sandbox architecture of browser makes it harder to find bugs of higher strictness in the browser”.
The blog post also stresses that the panel can consider rewarding less serious bugs with more money if the bug reports are of high quality. High quality bug reporting includes “careful test case reduction, an exact analysis of root cause, or productive discussion towards resolution.”
You can read more about bug reporting for Google Chrome here.
Source Neowin
0 comments: on "Google Boost Bug Bounty Going Mozilla’s Way"
Post a Comment