{"id":84,"date":"2024-04-21T00:59:17","date_gmt":"2024-04-21T00:59:17","guid":{"rendered":"https:\/\/sites.wp.odu.edu\/agbenou04\/?p=84"},"modified":"2024-04-21T00:59:17","modified_gmt":"2024-04-21T00:59:17","slug":"week-12-journal-entry-13","status":"publish","type":"post","link":"https:\/\/sites.wp.odu.edu\/agbenou04\/2024\/04\/21\/week-12-journal-entry-13\/","title":{"rendered":"Week 12 &#8211; Journal Entry 13"},"content":{"rendered":"\n<p><strong>Summary Reaction:<\/strong><\/p>\n\n\n\n<p>Companies are increasingly adopting bug bounty policies to bolster their cybersecurity defenses by utilizing the expertise of freelance security researchers, sometimes known as ethical hackers. The paper titled &#8220;Hacking for good: Utilizing HackerOne data to construct an economic model of Bug Bounties&#8221; explores the economic aspects and operational dynamics of bug bounty programs by analyzing a huge dataset obtained from HackerOne.<\/p>\n\n\n\n<p>The article emphasizes the importance of bug reward programs, particularly in relation to tackling the distrust of numerous companies regarding vulnerability disclosure. Given that most firms do not have vulnerability disclosure policies, bug bounty programs provide a proactive method for detecting vulnerabilities and enhancing cybersecurity defenses. The results emphasize the significance of bug bounty programs for firms across various sizes and industries, refuting the belief that they are only viable for larger corporations.<\/p>\n\n\n\n<p>The study reveals that hackers are not sensitive to price, suggesting that monetary rewards are not the only factor that motivates ethical hackers to participate in bug bounty programs. However, other criteria such as expertise, standing, and selflessness have substantial influence. This implies that bug bounty programs provide smaller organizations, who have limited resources, with the ability to successfully include security professionals.<\/p>\n\n\n\n<p>Moreover, the study reveals industry-specific disparities in bug bounty engagement, with the banking, retail, and healthcare sectors experiencing lower numbers of bug reports in comparison to other areas. Hackers&#8217; targeting preferences are influenced by factors such as the potential worth of compromised data and the ease of monetization. The research also examines the influence of program age, indicating that as programs grow older, they tend to receive a reduced number of reports, potentially due to the broadening of their scope and the emergence of new vulnerabilities.<\/p>\n\n\n\n<p>In addition, the study&#8217;s research methodology, specifically the utilization of a two-stage least squares regression model, helps to tackle the problem of endogeneity that was common in earlier studies. Nevertheless, the study recognizes the intricate nature of bug bounty marketplaces and the difficulties in comprehensively grasping the elements that impact hacker supply.<\/p>\n\n\n\n<p>In conclusion, bug bounty policies offer a promising opportunity to strengthen cybersecurity resilience, particularly for firms facing limitations in resources. The results emphasize the necessity for additional investigation to enhance our comprehension of bug bounty marketplaces and optimize approaches for effectively utilizing the expertise of ethical hackers in safeguarding cyberinfrastructure.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Summary Reaction: Companies are increasingly adopting bug bounty policies to bolster their cybersecurity defenses by utilizing the expertise of freelance security researchers, sometimes known as ethical hackers. The paper titled &#8220;Hacking for good: Utilizing HackerOne data to construct an economic&#8230; <a class=\"more-link\" href=\"https:\/\/sites.wp.odu.edu\/agbenou04\/2024\/04\/21\/week-12-journal-entry-13\/\">Continue Reading &rarr;<\/a><\/p>\n","protected":false},"author":25812,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","wds_primary_category":0},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/posts\/84"}],"collection":[{"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/users\/25812"}],"replies":[{"embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/comments?post=84"}],"version-history":[{"count":1,"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/posts\/84\/revisions"}],"predecessor-version":[{"id":85,"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/posts\/84\/revisions\/85"}],"wp:attachment":[{"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/media?parent=84"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/categories?post=84"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/agbenou04\/wp-json\/wp\/v2\/tags?post=84"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}