top | item 43768507

(no title)

> Why does chrome demand $400m in input spend ongoing, if it no longer has to deliver Google specific changes?

I don't know if it needs $400m but I wouldn't be surprised if it's $20m+ just to keep the browser secure.

Google paid out $12m last year in bug bounties and I assume they spend that much or more for in-house security researchers/developers (headcount is expensive) and periodic independent audits of the codebase.

discuss

No comments yet.