In this bug bounty program, the Cloud Native Computing Foundation will pay for rewards that range from $100 to $10,000, while the security committee will use the bug bounty platform HackerOne, itself a hot cybersecurity startup, to help prioritize what bugs to fix. By starting this program, the committee also hopes to build up a community of security researchers around Kubernetes., and Tesla, open source projects may start these programs as well.
"It is fairly rare in that regard," Google product manager Maya Kaczorowski told Business Insider. "It's not as common. There are not as many researchers who are used to reporting bounties, but we want to track them and support them in the work they're doing, just like you can support open source developers by hiring developers to work on this code."
In so doing, however, the company hopes to attract top talent to making Kubernetes safer — which is vital, given how widely it's now being used. "With the launch of the bug bounty program, we're hoping to attract a wider security researcher community, get more eyes on the product and make the product more secure that way," Google staff software Tim Allclair, who is a member of the Kubernetes security committee, told Business Insider.
Business Business Latest News, Business Business Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Source: BusinessInsider - 🏆 729. / 51 Read more »
Source: Forbes - 🏆 394. / 53 Read more »
Source: BusinessInsider - 🏆 729. / 51 Read more »
Source: BusinessInsider - 🏆 729. / 51 Read more »