Support for Vulnerability Reporting

in #utopian-io6 years ago (edited)

There are many bug bounty projects being run by different companies and projects. In those projects people are paid to do security testing and find vulnerabilities. The issue there is you need to keep the bugs found secret. My suggestion here is to support that in utopian.io by putting the sensitive data into the blockchain but encrypting it with PGP to the company being disclosed to.

Related work

This is related to https://utopian.io/utopian-io/@kslo/adding-responsible-disclosure-vulnerabilities-to-utopian but my suggestion includes the ability to encypt the disclosure for the delegate so it is different.

Components

Bug Reporting of software Vulnerabilites

Proposal

The bug reporting section needs to have the ability to securely report disclosures for Software Vulnerabilities. This includes being able to encrypt the bug report for submission, the reviewing of it by qualified individuals.

Mockups / Examples

image3753.png

Benefits

This will improve the value of utopian.io for other projects providing a secure bug bounty program.



Posted on Utopian.io - Rewarding Open Source Contributors

Sort:  

Your contribution cannot be approved because it does not follow the Utopian Rules.

your contribution consist of minimal amount of text and the benefits were not detailed enough.

example of nice contributions can be found here, here, here and here
You can contact us on Discord.
[utopian-moderator]

I messaged you on discord as you asked and also made edits but got no feedback from you.

Coin Marketplace

STEEM 0.17
TRX 0.12
JST 0.027
BTC 55173.73
ETH 2879.85
USDT 1.00
SBD 2.30