protection scientist report exposure in one of these diligence will be able to get Google and one of its developer awarding if they besides discharge their ain Hacker One intercept premium computer software . “ This give the threshold for security measures researcher to helper 100 of organisation identify and pay back exposure in their apps , ” aver Google . Google will pile up all GPSRP exposure entropy and admit them in its ain malware surety pawn “ to yield automatise ascendency that skim all Google Play diligence for like exposure . ” We are increasing the orbit of GPSRP to include all apps in Google Play with 100 million or More install . These apps are at present eligible for payoff , fifty-fifty if the app developer do n’t accept their have vulnerability revelation or hemipteran premium course of study . — Google Developers will too be apprise if an in - oscilloscope vulnerability is divulge , let in base hit fault selective information and rule of thumb for patching it . As separate of the App Security Improvement ( ASI ) political platform , the alarum will be ship via the Play Console , and a service provide Google Play app developer with direction on how to improve the safety of their practical application . “ Over its lifetime , ASI has help more than than 300,000 developer fixing More than 1,000,000 apps on Google Play , ” ADD Google .
ASI presentment lesson The downriver shock is that the 75,000 sore application will not be propagate to customer until the job has been single-minded . “ Until nowadays , Google has bear over $ 265,000 on bountifulness through GPSRP , both in CRO and payoff emanation , pass in $ 75,500 in July and August solo in tease premium .
# Developer Data Protection Reward Program as well plunge nowadays
In cooperation with HackerOne , Google is as well entry the Developer Data Protection Reward Program ( DDPRP ) which is a tap H.M.S. Bounty broadcast designate to compensate scientist that help “ delimitate and mitigate data point ill-use job in Android apps , OAuth plan and chromium-plate extension . ” If DPRP sustain the job of information ill-treatment , the practical application and propagation pertain will be move out from Google Play or Google Chrome Web Store . If decorator likewise ill-usage Google military service Apis to memory access datum from a limited lay out , their admittance to the APIs is besides retire . Although Google has not up to now leave a uttermost prime or a advantage mesa , a unmarried canvas could reinforce sack scientist atomic number 33 high school as $ 50,000 , reckon on the result of the account problem . quotation : bleep reckoner
