() and Steffen Juranek
Carsten Bienz: Dept. of Finance, Norwegian School of Economics, Postal: NHH , Department of Finance, Helleveien 30, N-5045 Bergen, Norway
Steffen Juranek: Dept. of Business and Management Science, Norwegian School of Economics, Postal: NHH , Department of Business and Management Science, Helleveien 30, N-5045 Bergen, Norway
Abstract: Many software developers employ bug bounty programs that award a prize for the detection of bugs in their software. We analyze, in a model with asymmetric information, under which conditions a bug bounty program is beneficial for a software developer. In our model, a bug bounty program allows developers to perfectly discriminate between different types of bugs, and help to avoid reputation costs of exploited bugs. We find that the benefits of bounty program do not only depend on the characteristics of the underlying software but also that a bounty program crucially interacts with other elements of the security strategy.
22 pages, May 12, 2020
Full text files
2654088 Full text
Questions (including download problems) about the papers in this series should be directed to Stein Fossen ()
Report other problems with accessing this service to Sune Karlsson ().
This page generated on 2020-05-19 12:49:33.