Show Posts
|
Pages: [1] 2 3 »
|
Dear Secure Planet supporters, To strengthen our community and better spread our message, Secure Planet is launching the Creative Planet Campaign – a bounty program that rewards creators (you!) with SPX for for designing content that represents, reviews, or promotes Secure Planet. Written Content (Bitcointalk/Reddit/blog posts/websites)- 1st Prize (1 winner): 150,000 SPX (Total: 150,000 SPX)
- 2nd Prize (2 winners): 75,000 SPX (Total: 150,000 SPX)
- 3rd Prize (3 winners): 50,000 SPX (Total: 150,000 SPX)
- Participation Prize (First 50 users): 1,000 SPX (Total: 50,000 SPX)
Video (YouTube/Podcast)- 1st Prize (1 winner): 150,000 SPX (Total: 150,000 SPX)
- 2nd Prize (2 winners): 75,000 SPX (Total: 150,000 SPX)
- 3rd Prize (3 winners): 50,000 SPX (Total: 150,000 SPX)
- Participation Prize (First 50 users): 1,000 SPX (Total: 50,000 SPX)
Application Formhttps://docs.google.com/forms/d/e/1FAIpQLSetX6qZrukSrHGz8emvPcgfNAk13dk9i92sQY7uxrcO7181dQ/viewform?usp=sf_linkOur passionate Creative Planet Campaign Managers will manually review ALL submissions. The winners will be selected based on content quality, total views, and influence generated by submission. We have also left room for “Participation Prize”, so you can earn SPX simply by joining the contest! High-quality, original, and accurate content will serve as significant factors in this selection process. Creative Planet Campaign participants must also share their submission across social media channels. Afterwards, please upload the link(s) to your social media channels on the Google Form as proof that you have shared your submitted content. Please note that the videos and written content must be available for public viewing until the end of the Creative Planet Campaign. If they have been removed or made private before the date of termination, you will be disqualified. All SPX will be distributed at the discretion of the Secure Planet team. Secure Planet selections are final. If you have any further questions and/or concerns regarding the Creative Planet Campaign, please contact our Community Managers on Telegram ( https://t.me/secureplanetio). If you want to find out more about the Secure Planet initiative, check out our white paper and keep up with our blog! Thank you and good luck! LEGAL NOTICE: Whether a particular action qualifies for a bounty allocation shall be decided at Secure Planet’s sole discretion (e.g., whether a Content contains appropriate content or not). Bounty distributions may be withheld at the discretion of the “SECURE PLANET PTE. LTD.”. By submitting content through Secure Planet’s Google Form, users agree to give SECURE PLANET PTE. LTD. permission to use the content (e.g., article/video/podcast/image) at Secure Planet’s discretion. The most common circumstance for bounty withholding would likely be due to failure to meet all bounty receipt requirements. If any SPX remains in the bounty pool, additional bounties can be rewarded to users who are particularly active during the Pay Protocol campaign. Any disputes that may arise from the Secure Planet Bounty Program will be exclusively dealt with by the ordinary courts of the city of Singapore according to Singaporean law.
|
|
|
Will the incentive for new vulnerability discoveries, the award, or the amount of tokens to be gained, be consistent with the complexity of the vulnerability encountered?
The amount of tokens Secure Planet awards to contributors will vary depending on each individual case. Two major factors will determine the amount of awarded tokens. They are as follows: - Popularity of the open source software containing the vulnerability - the higher the usage and/or adoption rate of the open source project, the higher the token amount
- Vulnerability severity ranking - the more critical the vulnerability, the higher the token amount
The code being opened, whoever finds bugs or some vulnerability in the code, the reward will also be high? For example, I find a vulnerability in popular open source software developed by Secure, so the award will be high? The bounty price is determined by the usage level of the open source project that contains the reported vulnerability. The more widely the open source project is used, the higher the bounty price of the associated vulnerability. In addition to the bounty, reporters may also receive a severity bonus. This additional remuneration will be awarded based on the severity and impact levels of the submitted vulnerability, determined by Secure Planet’s verifying community.
|
|
|
Will the incentive for new vulnerability discoveries, the award, or the amount of tokens to be gained, be consistent with the complexity of the vulnerability encountered?
The amount of tokens Secure Planet awards to contributors will vary depending on each individual case. Two major factors will determine the amount of awarded tokens. They are as follows: - Popularity of the open source software containing the vulnerability - the higher the usage and/or adoption rate of the open source project, the higher the token amount
- Vulnerability severity ranking - the more critical the vulnerability, the higher the token amount
Who decides whether a discovered vulnerability is severe or not? That's a process that can hardly be judged highly objectively. What does the scale for the ranking look like? The severity of the security vulnerabilities, like the reporting of vulnerabilities themselves, will be determined through a crowdsourced voting process. Voting will take place for ten days and contributors must vote for one of two outcomes: 1) yes, the vulnerability is accurate and should be included in the database, or 2) no, the vulnerability not accurate and should be rejected from the database. The “Yes” voters must also assign the “Vulnerability Score” using the CVSS calculator at https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Their submissions will be averaged out to derive the official Vulnerability Score. Once Secure Planet reveals the majority vote, the verifiers who voted on the winning outcome will be rewarded with SPX and Rep Tokens. Verifiers who chose the losing vote will lose Rep Tokens and receive no SPX. Does anyone hold a majority in the network in the beginning or is the network more or less evenly distributed? For the on-chain network, we are building our DApp on an existing platform. As a result, the network distribution will reflect the platform’s policies. As for the off-chain server, we are leveraging our partnerships to host it. The network will be evenly distributed among partners, and we plan to increase our partnerships.
|
|
|
Will the incentive for new vulnerability discoveries, the award, or the amount of tokens to be gained, be consistent with the complexity of the vulnerability encountered?
The amount of tokens Secure Planet awards to contributors will vary depending on each individual case. Two major factors will determine the amount of awarded tokens. They are as follows: - Popularity of the open source software containing the vulnerability - the higher the usage and/or adoption rate of the open source project, the higher the token amount
- Vulnerability severity ranking - the more critical the vulnerability, the higher the token amount
Who decides whether a discovered vulnerability is severe or not? That's a process that can hardly be judged highly objectively. What does the scale for the ranking look like? The severity of the security vulnerabilities, like the reporting of vulnerabilities themselves, will be determined through a crowdsourced voting process. Voting will take place for ten days and contributors must vote for one of two outcomes: 1) yes, the vulnerability is accurate and should be included in the database, or 2) no, the vulnerability not accurate and should be rejected from the database. The “Yes” voters must also assign the “Vulnerability Score” using the CVSS calculator at https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Their submissions will be averaged out to derive the official Vulnerability Score. Once Secure Planet reveals the majority vote, the verifiers who voted on the winning outcome will be rewarded with SPX and Rep Tokens. Verifiers who chose the losing vote will lose Rep Tokens and receive no SPX.
|
|
|
Secure Planet Releases White Paper – Available on Our Website!https://secureplanet.io/1568/secure-planet-releases-white-paper-available-on-our-websiteThe Secure Planet white paper delves into the inherent issues of Open Source Software (OSS). In particular, the lack of incentive to fix publicly known security flaws. It explains, in depth, how the SPX tokenomics has been designed to incentivize the active reporting and remediation of vulnerabilities. The white paper will act as the primary manifesto for the next generation of IoT device security.
|
|
|
Meet Andrew Jang – CSO of Secure Planethttps://secureplanet.io/1550/meet-andrew-jang-cso-of-secure-planetThe Secure Planet team consists of entrepreneurs and industry professionals with expertise in the areas of technology, open source software, security, and venture capital. Andrew Jang handles the communication for and execution of all our strategic initiatives.
|
|
|
|