BSidesLV 2015: Don’t hate the Disclosure, Hate the Vuln...

Back To Schedule

Don’t hate the Disclosure, Hate the Vulnerability: How the government is bringing researchers and vendors together to talk vulnerability disclosure.

Good information security policy requires addressing a myriad of complicated, inter-related issues, while still adhering to the Hippocratic principle of "First, Do No Harm." Rather than new regulation, one approach is to bring those that understand the issues and have a stake in the game together to find common ground.

This talk will present the US Department of Commerce's new initiative on vulnerability research disclosure, and explain the multistakeholder process that builds on community experience to build trust between security researchers and software and system vendors. The goals are to identify and promote common principles and best practices that all parties agree will promote We'll translate DC buzzwords, and ask for your feedback on how we can make this process better.

Speakers

Allan Friedman

Director of Cyber Security Initiatives, NTIA

Wearing the hats of both a technologist and a policy maker, Allan has over 15 years of experience in international cybersecurity and technology policy. His experience and research focuses on economic and market analyses of information security. On the practical side, he has designed... Read More →

Tuesday August 4, 2015 15:00 - 15:55 PDT
Common Ground Florentine G

Common Ground

BSidesLV 2015

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Allan Friedman

Attendees (1)