Security
is a top priority for Google. They have invested a lot in making our products
secure, including strong SSL encryption by default for Search, Gmail and Drive,
as well as encrypting data moving between our data centers. Beyond securing
their own products, interested Googlers also spend some of their time on research that
makes the Internet safer, leading to the discovery of bugs like
Heartbleed.
The
success of that part-time research has led us to create a new, well-staffed
team called Project Zero.
You
should be able to use the web without fear that a criminal or state-sponsored
actor is exploiting software bugs to infect your computer, steal secrets or
monitor your communications. Yet in sophisticated attacks, we see the use of "zero-day" vulnerabilities
to target, for example, human rights
activists or to conduct industrial
espionage. This needs to stop. We think more can be done to tackle
this problem.
Project
Zero is our contribution, to start the ball rolling. Our objective is to
significantly reduce the number of people harmed by targeted attacks. They are
hiring the best practically-minded security researchers and contributing 100%
of their time toward improving security across the Internet.
Link: http://googleonlinesecurity.blogspot.in/2014/07/announcing-project-zero.html
