From ThreatPost:
U.S. Government Wades Into Vulnerability Disclosure
Security researchers and software vendors have spent decades trying to work out the process of vulnerability disclosure, with limited success. Now the federal government is joining the fray in hopes of getting the two sides to play nice.
The National Telecommunications and Information Administration, a unit of the Department of Commerce, is launching what it calls a “multistakeholder process” to address the issue of vulnerability disclosure. The effort will begin in September with an open meeting in the San Francisco area and will continue from there. The process doesn’t have any defined goals or specific parameters yet, and NTIA officials say there could be any number of different outcomes.
No comments:
Post a Comment