Thursday, 25 September 2014

Blackphone and Silent Circle Officially Announce Bug Bounty Program


Blackphone and Silent Circle today jointly announced the launch of their bug bounty program. Both companies’ mission is to enable secure and private communications for individuals and enterprises. The use of bug bounties encourages skilled independent researchers to lend their knowledge to the user community around their products, by crowdsourcing penetration testing and application assessments, resulting in more secure and stable offerings.

“We have high expectations for security and privacy. In order to deliver on our expectations we must continually build a strong relationship with the security research community,” said Dr. Daniel Ford, CSO of Blackphone and Silent Circle.

The Silent Circle program encompasses the client apps, network services, cloud infrastructure, web sites, and web services. Silent Circle will pay a minimum of $128 per security related bug. The full program guidelines can be found at www.bugcrowd.com/silentcircle.

The Blackphone program encompasses PrivatOS, update servers, and associated web portals. Blackphone will pay a minimum of $128 per security related bug. The full program guidelines can be found atwww.bugcrowd.com/blackphone.

“Ensuring the privacy of its users is at the core of what do, making security of the utmost importance,” said Toby Weir-Jones, CEO of Blackphone. “By launching our Bugcrowd bug bounty program, both companies are assuring their customers that their smartphone and communication software is subjected to the latest testing and assessment techniques, while providing a form of compensation for successful contributors.”