Google is known for having regular competitions to learn from security researchers. One of the contests is called Pwnium. The goal of Pwnium is to make Chromium even more secure. Pwnium 4 will be focused on Chrome OS and will be hosted this March at the CanSecWest security conference in Vancouver, British Columbia in western Canada. Google is offering $2.71828 million USD in the pot. That number is the mathematical constant e.
Google is offering:
– $110,000 USD: browser or system-level compromise in guest mode or as a logged-in user, delivered via a web page.
– $150,000 USD: compromise with device persistence: guest to guest with interim reboot, delivered via a web page.
Google is going to offer significant bonuses for impressive or surprising exploits. One example is defeating kASLR, which exploits memory corruption in the 64-bit browser process or exploiting the kernel directly from a renderer process.
Participants will be required to register in advance for a timeslot to demonstrate what they found. You can register by e-mailing firstname.lastname@example.org. The registration will be closing at 5PM PST on Monday March 10, 2014.
[Source: Chromium Blog]