Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Security Microsoft

Microsoft Launches Bounty Program For Speculative Execution Side Channel Vulnerabilities (betanews.com) 21

An anonymous reader shares a report: Microsoft has launched a bug bounty program that will reward anyone who finds the next Meltdown or Spectre vulnerability. Known as speculative execution side channel vulnerabilities, Microsoft is willing to reward anyone who reports bugs that could cause problems like earlier in the year. The rewards on offer range from $5,000 up to $250,000 depending on the severity of the vulnerability, and the bounty program runs until the end of 2018. Microsoft says that it will operate under the principles of coordinated vulnerability disclosure.
This discussion has been archived. No new comments can be posted.

Microsoft Launches Bounty Program For Speculative Execution Side Channel Vulnerabilities

Comments Filter:
  • "Microsoft is willing to reward anyone who reports bugs that could cause problems like earlier in the year"

    Like, earlier in the year, like, January? February? How early in the year are we talking?

    • "Microsoft is willing to reward anyone who reports bugs that could cause problems like earlier in the year"

      Like, earlier in the year, like, January? February? How early in the year are we talking?

      I'm in a cynical mood today, but given the forces involved, Microsoft and Intel, and the money involved, some little guy researching and reporting is as likely to be thrown in jail as catch the bounty.

      I woudn't touch this unless there was a contract indemnifying me from any and all prosecution during the length of my research. Otherwise TCGFT's.

  • "the principles of coordinated vulnerability disclosure".
    Coordinated with whom, the gov?
  • Many eyes make all bugs shallow!
    Oh wait, Eveil M$ wants people to file bugz? And reward them for doing so? EEIVL!!!111

"Facts are stupid things." -- President Ronald Reagan (a blooper from his speeach at the '88 GOP convention)

Working...