Tags VEP

Senators question vulnerability disclosure process after Spectre and Meltdown stumbles

by Sean Lyngaas • 5 months ago

U.S. senators expressed concern that shortcomings in the industry-led process for disclosing software and hardware bugs could rear their head again.

EU needs one set of vulnerability disclosure rules, says expert task force

by Shaun Waterman • 9 months ago

The fractured ecosystem is having a chilling effect on vulnerability research.

Experts ask: Why does the VEP cut out health care agencies?

by Shaun Waterman • 1 year ago

"I totally get that you have to draw the line somewhere...they are drawing it in the wrong place."

White House unveils process behind disclosing software vulnerabilities

by Greg Otto • 1 year ago

The White House released a charter Wednesday that will give more clarity and bring more transparency to how the government disseminates information on software flaws.

Trump administration will shine light on VEP with public charter

by Chris Bing • 1 year ago

Beyond providing a quantitative baseline for the VEP, the public charter will name the full roster of interagency leaders who weigh in on the process.

Responsible vulnerability disclosure is becoming an international norm

by Shaun Waterman • 1 year ago

More and more democracies are adopting a policy of disclosing vulnerabilities as opposed sitting on them for their own intelligence gains.

TwitterFacebookLinkedInRedditGoogle Gmail