banner

EFF questions US government’s software flaw disclosure policy

Written by Cio
2000px-EFF_Logo.svg
  • Cio
  • 2 years ago

2000px-EFF_Logo.svg

It’s not clear if the U.S. government is living up to its promise to disclose serious software flaws to technology companies, a policy it put in place five years ago, according to the Electronic Frontier Foundation.

The digital watchdog said on Monday it received a handful of heavily redacted documents from the Office of the Director of National Intelligence (ODNI), which it sued last July after it and the National Security Agency moved too slowly on a Freedom of Information Act (FOIA) request.

Last year, the EFF sought documents related to the U.S. government’s efforts to beef up its Vulnerability Equities Process (VEP), a framework for notifying companies about zero-day vulnerabilities.

Read More

0 0
Article Tags:
· · · · ·
Article Categories:
Security

Leave a Comment

Your email address will not be published. Required fields are marked *