• Grey Facebook Icon
  • Grey Twitter Icon
  • Grey YouTube Icon

Droidcon is a registered trademark of Mobile Seasons GmbH

Setting up a bug bounty program for your app

Sebastian Porst

Engineering Manager

Google Play Protect

Sebastian is an engineering manager on Google Play Protect, Google’s program for keeping Google Play free of malware and vulnerable apps. He has been working as a malware analyst, software engineer, and manager on the Google Play Protect team for 8 years.


In this presentation I will be giving an overview of how to plan and execute on a bug bounty program for your Android app. The information in this talk is based on my work on Google Play’s Security Rewards Program, a collaboration with HackerOne, in which we reward security researchers for security vulnerabilities they find in top applications on Google Play.

Introductory and overview