The General Service Administration‘s Technology Transformation Service has launched a bug bounty program that will offer incentives for independent researchers who can identify security vulnerabilities in TTS-operated software.
GSA’s 18F organization said Thursday the agency awarded HackerOne a contract to provide a software-as-a-service bug reporting platform and help set up bug bounties for various TTS public-facing web applications.
HackerOne will assess the validity and severity of bugs that will be identified through the program, then forward valid submissions to TTS to address the vulnerability.
The TTS Bug Bounty program is inspired by the Defense Department‘s Hack the Pentagon and Hack the Army bug bounty programs, 18F noted.
Winners will receive financial rewards from GSA ranging from $300 to $5,000.
TTS aims to establish a permanent program that will involve most TTS-owned websites and web apps based on the results of the initial bug bounties.