HackerOne's Mårten Mickos

Hacker-Powered Security

Article from Issue 216/2018
Author(s):

Mårten Mickos is one of the most respected members of the open source world. The former CEO of MySQL AB during its prime now serves as the CEO of HackerOne, a vulnerability coordination and bug bounty platform. I sat down with Mickos to understand HackerOne's purpose and his perspective on the security of open source software.

Mårten Mickos is one of the most respected members of the open source world. The former CEO of MySQL AB during its prime now serves as the CEO of HackerOne, a vulnerability coordination and bug bounty platform. I sat down with Mickos to understand HackerOne's purpose and his perspective on the security of open source software.

HackerOne's Role

In layman's terms, HackerOne brings the hacker community to an organization to hack into their code in search of vulnerabilities. As Mickos said, "Sometimes we joke that if you are going to be hacked anyway, it's better to get hacked by someone you can trust." HackerOne has built a platform for secure intelligence report sharing and payment, along with a reputation system for hackers.

When an organization announces a bug bounty program through HackerOne, the hacker community starts looking at the organization's code and filing their reports. The platform enables the bug bounty program's organizer to vet these vulnerabilities. The hacker who filed the report gets rewarded.

[...]

Use Express-Checkout link below to read the full article (PDF).

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy Linux Magazine

SINGLE ISSUES
 
SUBSCRIPTIONS
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • Insecure Candidates: Chrome Wins Hacking Contest

    At the CanSecWest Vancouver 2009 conference's PWN2OWN hacker's competition the Safari, Internet Explorer 8 and Firefox browsers were successfully hacked to run code on their systems. The Chrome browser was recognized as being the least impacted by the hackers.

  • Chaos Communication Congress

    Chaos Communication Congress visitors were probably more interested in their digital civil rights, as reflected in the congress motto "Nothing to hide," but first they had to cope with closed ticket counters and overflowing rooms.

  • Hacker Group to Release OpenSSH Exploit and Worm: "Give us 48 Hours"

    After rumors of an OpenSSH exploit vulnerability got out, an anonymous hacker group intends to release the exploit code and an accompanying worm "within 48 hours."

  • Sun to Acquire MySQL

    Sun Microsystems is to acquire database manufacturer MySQL at a purchasing price of around US$ 1 billion according to Sun.

  • Chaos Communication Congress

    The 23rd annual Chaos Computer Club Congress offered a fresh perspective on topics such as RFID technology and cyber-crime laws.

comments powered by Disqus

Direct Download

Read full article as PDF:

Price $2.95

News