To get notices of new blogs via email, click here:

Tuesday, January 29, 2013

Java could out-Google Google

On August 17, 2012, I congratulated Google on being the only company that's really "doing it right" in uncovering bugs (see story here). Today, they just raised the ante from $2 million to $3.14 million. Which brings me to the almost-daily headlines about holes in Java and the animosity generated by the piggybacking Ask toolbar "crapware" foisted during Java updates. The one way that Oracle could "out-Google Google" would be to (wink, wink) encourage a similar competition to identify and cripple cyber thieves who use Java exploits. The rewards could be paid anonymously from a country without an extradition treaties with the U.S.…like Taiwan. How about a $10-million bounty pool? Somehow Oracle needs to turn around this PR tailspin before Java becomes the next Flash (pun intended) in the pan.

No comments:

Post a Comment

Implementation suggestions for THE MORGAN DOCTRINE are most welcome. What are the "Got'chas!"? What questions would some future Cyber Privateering Czar have to answer about this in a Senate confirmation hearing?