FAQ

Bug bounty program

Known as: Bug Bounty Programs, Bug bounty, Internet Bug Bounty 
A bug bounty program is a deal offered by many websites and software developers by which individuals can receive recognition and compensation for… (More)
Wikipedia

Topic mentions per year

Topic mentions per year

2010-2016
02420102016

Related topics

Related topics

18 relations
Adobe FlashCNETDjangoExploit
(More)

Broader (3)

Computer securityCyberwarfareInternet security

Related mentions per year

Related mentions per year

1936-2019
19401960198020002020
Bug bounty program
Software bug
Operating system
Library
Vulnerability
Computer security

Papers overview

Semantic Scholar uses AI to extract papers important to this topic.
Review
2017
Review
2017
Understanding the Heterogeneity of Contributors in Bug Bounty Programs
Background: While bug bounty programs are not new in software development, an increasing number of companies, as well as open… (More)
  • table I
  • table II
  • figure 1
  • figure 2
  • table III
Is this relevant?
2017
2017
Given enough eyeballs, all bugs are shallow? Revisiting Eric Raymond with bug bounty programs
Bug bounty programs offer a modern platform for organizations to crowdsource their software security and for security researchers… (More)
  • figure 1
  • figure 2
  • figure 3
  • table 1
Is this relevant?
2017
2017
Diversity or Concentration? Hackers’ Strategy for Working Across Multiple Bug Bounty Programs
Bug bounty programs have been proved effective in attracting external hackers to find and disclose potential flaws in a… (More)
  • table I
  • figure 1
  • figure 2
Is this relevant?
2017
2017
Web Science Challenges in Researching Bug Bounties
The act of searching for security flaws (vulnerabilities) in a piece of software was previously considered to be the preserve of… (More)
Is this relevant?
2016
2016
Crowdsourced Security Vulnerability Discovery: Modeling and Organizing Bug-Bounty Programs
Despite significant progress in software-engineering practices, software utilized for desktop and mobile computing remains… (More)
  • figure 1
  • figure 2
Is this relevant?
2016
2016
Banishing Misaligned Incentives for Validating Reports in Bug-Bounty Platforms
Bug-bounty programs have the potential to harvest the efforts and diverse knowledge of thousands of white hat hackers. As a… (More)
  • table 1
  • figure 1
  • figure 2
  • figure 3
Is this relevant?
2016
2016
An automated approach for testing the security of web applications against chained attacks
We present the Chained Attacks approach, an automated model-based approach to test the security of web applications that does not… (More)
  • figure 1
Is this relevant?
2016
2016
Sealed-Glass Proofs: Using Transparent Enclaves to Prove and Sell Knowledge
Trusted hardware systems, such as Intel's new SGX instruction set architecture extension, aim to provide strong confidentiality… (More)
  • figure 1
  • figure 2
  • figure 4
  • figure 3
  • figure 5
Is this relevant?
2015
2015
Silver Bullet Talks with Katie Moussouris
 
Is this relevant?
2015
2015
An Empirical Study of Web Vulnerability Discovery Ecosystems
In recent years, many organizations have established bounty programs that attract white hat hackers who contribute vulnerability… (More)
  • table 1
  • figure 1
  • figure 3
  • figure 4
  • figure 5
Is this relevant?