How To Report Security Holes



Software companies, security vendors, and researchers last week launched the Organization for Internet Safety to develop a standard process for reporting software flaws. A draft plan due early next year will propose that researchers report flaws to vendors before going public and that vendors take all reports seriously. Details about vulnerabilities wouldn't be released for 30 days after a patch is published. Vendors such as @stake, Bindview, and Microsoft began this effort a year ago.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Email This  | 
Print  | 
RSS
More Insights
Copyright © 2020 UBM Electronics, A UBM company, All rights reserved. Privacy Policy | Terms of Service