Buglab : Cybersecurity Penetration Testing on the Ethereum Blockchain.

muhammadomy (31)in #cryptocurrency • 6 years ago

Buglab will offer a unique, competitive, incentivized, and easy-to-use platform to address this widespread and growing business need. Buglab will assist companies, whether in IT, financial services, or in retail, to identify and mitigate cybersecurity gaps they may not (but should) know about.

Background!

The Buglab platform detects and remedies vulnerabilities on various business applications, websites, mobile applications, Internet of Things (IoT) devices , and smart contracts by transforming penetration test services into challenges, referred to as contests, for a community of independent information security consultants with certified qualifications.

Solution.
The solution makes cybersecurity services accessible to even the very smallest enterprises that typically lack both the resources and budget to tackle cybersecurity vulnerabilities using traditional means.

The Cybersecurity Market.

Impacts on Return on Investment (ROI) are difficult to quantify, so it takes time for companies to recognize the need for cybersecurity services:

For all-too-many enterprises, as well as individuals with any digital assets on their websites (content included), it often takes a breach into their system before they take action to shore up security.
Corporations are often aware that their levels of computer security fall short. However, finding and placing qualified cybersecurity professionals is time intensive and costly. Regulation requirements to protect personal data add another layer of complexity for cybersecurity solutions.
According to a ETH Zurich conference workshop, by the year 2025, there will be more than 50 billion online devices.
A significant portion of the information stored across all of these ecosystems will need protection. The cybersecurity market is likely to grow non-linearly to address needs in this space.
Meanwhile, the victims of cyber attacks rarely advertise that they have been targets, unless they must, and data vulnerabilities are rarely first priority as product gets rushed to market, so it is difficult, if not impossible, to get exhaustive statistics about cyberattacks details, including their frequency or their impact on ROI. However, one aspect is absolutely certain: the trend is decidedly on the rise, with some widely-known geopolitical impacts.

Features:

The Buglab platform enables customers to either use the mass of pentesters or choose a validated team from a known company. Teams must include no fewer than five pentesters.

A variety of customizations are available, specific to your organizational needs. Some of the features envisioned are highlighted next.

Public Contest: Once a company has provided basic information and launched the contest, the community receives a public invitation to participate.
Private Contest: Clients also have the option to choose a select number of pentesters from the community or choose a validated team from a known cybersecurity firm to complete the challenge.
Selection Filters: Clients have the option during a private challenge of selecting pentesters using different filters. These include country, score, skillset, etc.
Triage System: Vulnerabilities reported go through our sorting system to identify duplicates before landing on the customer’s dashboard. The customer is guaranteed to only get notified about relevant submissions.
Reports: The company receives reporting on it’s security contests. This feature summarizes each contest’s performance and allows the client to graphically compare the security status and progress of its assets.
Client-Managed: The company can choose from three types of contest management (Basic, Pro, and Enterprise). In the case of the latter, the client is responsible for sorting, classifying and grading reports.
Mediation: When a customer opts to manage their challenge themselves, a pentester from the community can ask for mediation from Buglab. This mediation may be required in the event that a pentester deems the score or validation to be inaccurate. A Buglab team can obtain details regarding the cause of the disagreement and evaluate it impartially.
Leaderboard: A dashboard offers ranking of pentesters from the community according to experience and results on the platform. This provides greater visibility for the best pentesters and makes it easier to select participants for a private challenge.
Chat: Every vulnerability report is a chance to engage in conversation with pentesters and to obtain their help fixing it.
Fix Companion: At the Enterprise level, Buglab will verify that the fix has been implemented.

Token Distribution Event (TDE)

Buglab will be the creator and issuer of BGL. The platform will deploy a smart contract system to receive contributions and to create and issue BGL to contributors during a TDE.

Team.