WisdomInterface
WisdomInterface

Vulnerability Disclosure: Considerations, Risks, And Costs

May 24, 2021
1 min read

Vulnerability Disclosure Programs (VDPs) are, at the most basic level, mechanisms for security researchers to report vulnerabilities they find to an organization. VDPs are not only a security best practice but they are also becoming increasingly prevalent in security frameworks like NIST SP 800-53 Rev. 5 and mandates like the Cybersecurity and Infrastructure Security Agency’s Binding Operational Directive 20-01, which requires that all United States civilian agencies develop and publish a vulnerability disclosure policy.

According to Melissa Vice, COO for the Department of Defence vulnerability disclosure program on the Wiley Connected Podcast, “DoD Cyber: A Conversation with Melissa Vice, COO for DoD’s Vulnerability Disclosure Program,” a good Vulnerability Disclosure Program should have a policy, channel, and process for responsible disclosure.

Does a security email alias or a web form check the box for vulnerability disclosure? What constitutes good responsible disclosure or a VDP? Can it be built in-house or are vendors a more effective route?

SecurityGuide

    Download the Complete Resource:











    By supplying your contact information, you agree to receive communications from Hackerone regarding products and services. Your data will be handled in accordance with our privacy policy. You may opt-out at any time.

    SUBSCRIBE
    Image Processing

    Who We Are

    Xcellent Insights is a futuristic market intelligence firm, headquartered in New York, US that focuses on providing strategic market insights. We offer a plethora of data-centric research reports and consulting services to help customers expand and explore their business strategies, obtain clarity about current business trends and future development, and attain substantial growth. Our portfolio of services includes syndicated and custom research reports driven by end-to-end market research and market intelligence studies.

    What We Do

    We strive to offer the best market research and consulting services to our customers that will benefit them in making informed business decisions. We provide an extensive list of market research titles falling under various industry categories such as consumer goods, food, and beverages, automotive, healthcare, and chemicals, covering latest and trending market insights. Through our services, we aim to connect an organization’s goal with lucrative outcomes globally.

      Subscribe for more insights



      By completing and submitting this form, you understand and agree to WisdomInterface processing your acquired contact information as described in our privacy policy.

      No spam, we promise. You can update your email preference or unsubscribe at any time and we'll never share your details without your permission.

        Subscribe for more insights



        By completing and submitting this form, you understand and agree to WisdomInterface processing your acquired contact information as described in our privacy policy.

        No spam, we promise. You can update your email preference or unsubscribe at any time and we'll never share your details without your permission.