With a view to prevent exploitation of zero-day vulnerabilities, Google has announced a new research program called Project Zero.
Google announced in a post on its Online Security Blog that the company is taking the security of users seriously, and aims to prevent threats to data over the internet. For this purpose, it has launched Project Zero, which would develop flawless security mechanisms to protect not just Google users, but any software and the internet from widespread exploits.
The Project Zero team will consist of full time security researchers who will have complete autonomy over the project. This team will analyze not just the software, but also analyze techniques, targets and the purpose behind attacks. Vulnerabilities discovered by the team will then be reported to the concerned software vendors. Google is still in the process of hiring such security researchers.
Google has mentioned that it would maintain transparency throughout the process, and would only reveal security bugs to the public once a patch has been released by the original vendor. The company will be working hard to get the bug reports to the related parties as soon as possible.
Online security is a major concern in recent times, and with vulnerabilities such as "Heartbleed" which can affect millions of users, discovering the exploit before the hackers becomes important. If Project Zero can manage to do that, it will prove beneficial for the entire online community.
Source: Google | Password Security For Safety From Mobile Phone image via Shutterstock