The Congressional Budget Office said the Department of Homeland Security’s potential bug bounty program would require $44M to implement, Fedscoop reported Monday.
A proposed bill, known as the Cybersecurity Vulnerability Remediation Act, would task DHS to gather bug information via a bounty program. The program would call for researchers to provide the government with cyber vulnerability reports in exchange for financial compensation. CBO said the projected cost will be larger if DHS includes support for nonfederal systems under the bounty program.
