Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · STATUTE-COMPILATIONS · National Defense Authorization Act for Fiscal Year 2020 · Sec. 6743

Sec. 6743. BUG BOUNTY PROGRAMS

292 words·~1 min read·/statute-compilations/comps-15772/sec-6743

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

## SEC. 6743 BUG BOUNTY PROGRAMS ###
(a)Definitions In this section: ####
(1)Appropriate committees of congress The term “appropriate committees of Congress” means— #####
(A)the congressional intelligence committees; #####
(B)the Committee on Armed Services and the Committee on Homeland Security and Governmental Affairs of the Senate; and #####
(C)the Committee on Armed Services and the Committee on Homeland Security of the House of Representatives. ####
(2)Bug bounty program The term “bug bounty program” means a program under which an approved computer security specialist or security researcher is temporarily authorized to identify and report vulnerabilities within the information system of an agency or department of the United States in exchange for compensation. ####
(3)Information system The term “information system” has the meaning given that term in section 3502 of title 44, United States Code. ###
(b)Bug Bounty Program Plan ####
(1)Requirement Not later than 180 days after the date of the enactment of this Act, the Secretary of Homeland Security, in consultation with the Secretary of Defense, shall submit to appropriate committees of Congress a strategic plan for appropriate agencies and departments of the United States to implement bug bounty programs. ####
(2)Contents The plan required by paragraph
(1)shall include— #####
(A)an assessment of— ######
(i)the “Hack the Pentagon” pilot program carried out by the Department of Defense in 2016 and subsequent bug bounty programs in identifying and reporting vulnerabilities within the information systems of the Department of Defense; and ######
(ii)private sector bug bounty programs, including such programs implemented by leading technology companies in the United States; and #####
(B)recommendations on the feasibility of initiating bug bounty programs at appropriate agencies and departments of the United States.
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.