Jump to content


Google Project Zero aims to stop the Heartbleed Bug from happening again

  • Please log in to reply
No replies to this topic

OFFLINE   sincity


    Advanced Member

  • Members
  • PipPipPipPip
  • 2980 posts
Getting Better
Google Project Zero aims to stop the Heartbleed Bug from happening again

Google has a number of going pet projects from internet-providing hot air balloons to driverless cars, and now the next thing on its agenda is net security.

The search company announced it has put together a crack team of security engineers to help secure the web in a mission it has called Project Zero.

On the company's online security blog, Google explained the team will crackdown on "zero day" vulnerabilities, otherwise known as security loopholes inside services and software that hackers can easily exploit.

One the of the world's most famous and relatively recent zero day vulnerabilities was the Heartbleed bug. Ultimately Google does not want another leave another widespread vulnerability unchecked to affect the entire web world.

Worldwide web watchdogs

Project Zero won't just look out for flaws in Google's websites, services, or Android but the entire web. If the Project Zero crew discovers a vulnerability it promises to contact outside companies and organizations as well as working with them to get fixes to users quickly.

"We're not placing any particular bounds on this project and will work to improve the security of any software depended upon by large numbers of people," Chris Evans, head of Chrome security at Google, said in a release.

For an extra element of transparency, Google also plans to document every bug it discovers in a public database once it's fixed. Concerned web browsers can view this bug report to see how long it took programmers to correct the exploit, discussions on the problem, and other information making it essentially the Wikipedia of web vulnerabilities.

Google is also looking to hire security researchers who want to join the fight.

It's a headstrong effort by Google to take on the role of web security watchdog that should benefit everyone in the end. Now the question is how many companies will be comfortable working with internet giant prodding around with their security protocols.

Also tagged with one or more of these keywords: google

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users