From: Forbes
Alex Bekker
The federal government is rarely seen as innovative these days, but in the area of cybersecurity, it has been further ahead of the curve than most people give it credit for. By adopting vulnerability disclosure and bug bounty programs, the U.S. government is acting on its belief that engaging with independent security researchers is an effective way of improving its cybersecurity posture.
In 2016, the Department of Defense launched “Hack the Pentagon,” an initiative that encouraged private citizens to find and submit security vulnerabilities found in DOD’s systems via a responsible disclosure process in return for a monetary reward. This was the first incentivized vulnerability disclosure, or “bug bounty” program, by any U.S. federal agency, and its success led to the Army and Air Force launching similar programs in subsequent months.
Leave a Reply