Original title: Apple launches a new security research website to speed up the response to vulnerability reports
IT House reported on October 28 that Apple launched a new website today, called Apple Security Research, which is dedicated to improving the way security researchers report problems to Apple. The website provides tools for sending Apple security reports, obtaining real-time status updates, and communicating with Apple engineers.
In addition to the information of Apple Security Bounty program, the website is also a blog, which will allow Apple engineering teams to share the latest progress in Apple security. The first article of the blog deeply discusses XNU memory security.
Apple also shared the progress made in Apple's security reward program today. In the past two and a half years, Apple has paid nearly 20 million dollars (about 144 million yuan) to researchers 。 The average reward for products is about $40000. Apple has paid 20 rewards for major vulnerabilities that exceed $100000.
Apple said, Its response to vulnerability reports is now faster than before , and through the launch of a new website, it is easier to report problems and communicate with Apple's team. All error report status changes are reflected in a new tracker provided on the website, which also makes it easier for Apple to collect more error information.
Transparency has also been improved. The website provides detailed information about Apple's security rewards and evaluation criteria, so researchers have a better understanding of how to obtain rewards.
IT House learned that from today to November 30, 2022, Apple is accepting the application for the 2023 Apple Security Research Equipment Plan, which provides qualified individuals with an iPhone specially designed to find loopholes. Go back to Sohu to see more
Editor in charge:
