Blog

You are currently viewing Google Project Zero Announces $50,000 Fuzzing Research Grant On JavaScript Engines

Google Project Zero Announces $50,000 Fuzzing Research Grant On JavaScript Engines

Project Zero, a team of security analysts under Google, have announced a $50,000 research grant into JavaScript engine fuzzing. The grant is under Google Compute Engine (GCE) credit grants.

 

This will widen the scope of Google research grants from just academics and those affiliated with universities, to many other talented individuals. The research will further Project Zero’s mission, which is; to make 0-day hard in order to improve end-user security.

 

To apply for the grant, you can send a proposal about fuzzing JavaScript engines by filling this form. If your proposal is accepted after review, you get about $5,000 in GCE credits per submission. Each submission will be used for fuzzing. Additionally, it is mandatory that researchers report all bugs to the affected vendors.

Also read:
– Motorola Razr Goes On Sale With Competitive Discounts For Early Birds
– This Huawei Noise Cancellation Earphone, FreeLace Pro, Is Your All-Purpose Hearing Gadget
– Full Specifications And Prices Of Xiaomi Mi 10T And Mi 10T Lite

Fuzzing is a bug-identifying technique that people also call fuzz testing. Usually, analyst(s) input(s) invalid, random or unexpected data at a computer. Then, they monitor the program for such outcomes as crashes, failing built-in code assertions or memory leaks.

 

A Project Zero analyst, Samuel Groß explained that the aim of the project is to find new approaches for JavaScript engine fuzzing. Groß writes that they encourage, “New, possibly domain-specific feedback metrics to guide JavaScript/JIT engine fuzzers. Different high-level fuzzing approaches such as differential fuzzing. New code mutation or generation approaches that outperform existing ones. Targeted approaches to fuzz for variants of previously reported bugs.”

 

This Project Zero pilot program will run from 1st October 2020 until 1st October 2021. Researchers should focus on fuzzing the following: JavaScriptCore (Safari), v8 (Chrome, Edge), or Spidermonkey (Firefox).

 

Also, while it is open for people living in different locations of the world; it does not accept applicants in Cuba, Iran, North Korea, Sudan and Syria because they are on the US sanctions list.

 

For your daily dose of tech, lifestyle, and trending content, make sure to follow Plat4om on Twitter @Plat4omLive, on Instagram @Plat4om, on LinkedIn at Plat4om, and on Facebook at Plat4om. You can also email us at info@plat4om.com and join our channel on Telegram at Plat4om. Finally, don’t forget to subscribe to our YouTube channel HERE.

Tags: ,

Onwuasoanya Obinna

A reader of books and stringer of words. Passionate about Science and Tech. When not writing or reading he is surfing the web and Tweeting.

Leave a Reply