引用本文
  • 刘小虎,张玉臣,张恒巍,程相然.美国国防部网络安全众测的做法、成果及启示[J].国防科技,2019,40(3):    [点击复制]
  • .[cn_title][J].2019,40(3):   [点击复制]
【打印本页】 【在线阅读全文】【下载PDF全文】 查看/发表评论下载PDF阅读器关闭

←前一篇|后一篇→

过刊浏览    高级检索

本文已被:浏览 103次   下载 9  
美国国防部网络安全众测的做法、成果及启示
刘小虎,张玉臣,张恒巍,程相然
0
()
摘要:
网络安全众测是检测和发掘漏洞的新模式。美国国防部率先开展了政府级网络安全众测活动。研究分析美国网络国防部安全众测的主要做法,梳理总结其成果收益,探索给出我国发展网络安全众测的启示建议。
关键词:  漏洞  网络安全众测  美国国防部
DOI:10.13943/j.issn 1671-4547.2019.03.07
基金项目:
The Practice, achievements and enlightenment of bug bounty programs of the U.S.Department of Defense
Abstract:
Bug bounty programs is a new mode of detecting and exploring vulnerabilities. The U.S. Department of Defense took the lead in conducting government level network security activities of bug bounty programs. This paper studies and analyses the main practices of bug bounty programs in the U.S. Department of Network Defense, combs and summarizes its results and benefits, and gives some suggestions for the development of bug bounty programs in China. 
Key words:  vulnerability  bug bounty programs  the U.S. department of defense