Week 12 – Journal Entry 13

From what read I think the article shows that bug bounty programs have their roots in economics which is the cost benefit analysis of paying ethical hackers who find vulnerabilities before malicious people do. The literature study highlights how businesses can retain cost effectiveness while gaining from outside expertise. Results show that bug bounty programs attract educated participants who are motivated by the idea of fame and money. But problems like unclear scope and inconsistent rewards might lessen efficacy. I think bug bounty programs give proactive cybersecurity advantages but their effectiveness mostly rests on well defined rules, fair payment, and appropriate integration with an organizations current security framework.