Given Enough Eyeballs, All Bugs Are Shallow? Revisiting Eric Raymond with Bug Bounty Programs

Abstract

Bug bounty programs offer a modern platform for organizations to crowdsource their software security and for security researchers to be fairly rewarded for the vulnerabilities they find. Little is known however on the incentives set by bug bounty programs: How they drive new bug discoveries, and how they supposedly improve security through the progressive… (More)
DOI: 10.1093/cybsec/tyx008

Topics

4 Figures and Tables

Statistics

05020162017
Citations per Year

Citation Velocity: 18

Averaging 18 citations per year over the last 2 years.

Learn more about how we calculate this metric in our FAQ.

Cite this paper

@article{Maillart2016GivenEE, title={Given Enough Eyeballs, All Bugs Are Shallow? Revisiting Eric Raymond with Bug Bounty Programs}, author={Thomas Maillart and Mingyi Zhao and Jens Grossklags and John C.-I. Chuang}, journal={CoRR}, year={2016}, volume={abs/1608.03445} }