DARPA FETT Bug Bounty

DARPA is hosting its first ever bug bounty program called the Finding Exploits to Thwart Tampering (FETT) Bug Bounty. Held in partnership with the Department of Defense‚Äôs Defense Digital Service (DDS) and Synack, a trusted crowdsourced security company, FETT aims to utilize hundreds of ethical hackers, researchers, and reverse engineers to deep dive into secure hardware architectures in development on DARPA’s System Security Integration Through Hardware and Firmware (SSITH) program. Those participating in FETT will work to uncover potential vulnerabilities or flaws that could weaken the SSITH defenses, and disclose their findings to DARPA and Synack for a cash bounty. DARPA will then work to address the disclosed vulnerabilities to further strengthen the SSITH architectures, and ultimately improve electronic system security for all.