In a post for the National Telecommunications & Information Administration, Deputy Assistant Secretary for Communications and Information Angela Simpson announced the release of initial findings, recommendations and resources for vulnerability research disclosures. Part of a new cybersecurity multistakeholder process, the effort hopes to "enhance cooperation and lead to a more secure digital ecosystem," Simpson writes. "Vulnerability disclosure has long been an ... important issue in cybersecurity," she writes, adding, "Companies need a strategy to deal with flawed software, systems, and configurations — especially when the issues are first discovered by a third party. Without a strategy, for example, companies sometimes choose to threaten the third party with legal action rather than working together to fix the vulnerability. This need is heightened as more and more organizations become part of the digital economy."
Full Story
Comments
If you want to comment on this post, you need to login.