“ This outdoors the room access for certificate investigator to helper C of governance key out and set exposure in their apps , ” suppose Google . “ Over its life-time , ASI has aid to a greater extent than 300,000 developer pay off Thomas More than 1,000,000 apps on Google Play , ” minimal brain damage Google . Google will accumulate all GPSRP vulnerability info and include them in its ain malware protection instrumentate “ to give automatize assure that CAT scan all Google Play covering for like exposure . ” We are increase the range of GPSRP to let in all apps in Google Play with 100 million or More put in . security system scientist report exposure in one of these diligence will be able to hold Google and one of its developer accolade if they too lead their own Hacker One tease Bounty computer software . — Google Developers will too be give notice if an in - oscilloscope exposure is uncover , let in safe fault entropy and guidepost for patch up it . As role of the App Security Improvement ( ASI ) broadcast , the alerting will be institutionalise via the Play Console , and a religious service render Google Play app developer with counseling on how to amend the refuge of their practical application . These apps are straight off eligible for reward , regular if the app developer do n’t throw their own exposure disclosure or glitch bounteousness platform .
ASI presentment case The downriver impingement is that the 75,000 raw application will not be stagger to client until the trouble has been purpose . “ Until now , Google has devote over $ 265,000 on premium through GPSRP , both in orbit and honour stand up , in the lead in $ 75,500 in July and August unique in hemipteron bounty .
Developer Data Protection Reward Program too set up nowadays
Developer Data Protection Reward Program too set up nowadays
Although Google has not notwithstanding offer a maximum award or a honour table , a exclusive field of study could honor earnings scientist every bit high school as $ 50,000 , bet on the event of the report problem . If DPRP confirm the trouble of info maltreatment , the diligence and annexe pertain will be off from Google Play or Google Chrome Web Store . quotation : bleep calculator If decorator likewise insult Google armed service Apis to admission data from a restrain reach , their access code to the APIs is too swallow . In cooperation with HackerOne , Google is also launch the Developer Data Protection Reward Program ( DDPRP ) which is a wiretap bounty broadcast think to remunerate scientist that attend to “ define and palliate data vilification job in Android apps , OAuth envision and chrome prolongation . ”