2002/03/01 : Michael Morgenstern, Tom Parker and Scott Hardy write about vulnerability disclosure debate occuring since one year. They assume "it's time to be responsible".
"Over the last 12 months various computer-using groups have been intensely debating the ethics involved in disclosure of software vulnerability information, with little cross communication." (p.1)
"Software vendors and security communities need to rethink their current interactions and develop a new mindset toward cooperation." (p.4)
Source
Michael Morgenstern, Tom Parker and Scott Hardy. March 1, 2002. "It's Time to be Responsible". SecurityFocus
Critical Commentary
2002/03/01 : Michael Morgenstern, Tom Parker and Scott Hardy write about vulnerability disclosure debate occuring since one year. They assume "it's time to be responsible".
"Over the last 12 months various computer-using groups have been intensely debating the ethics involved in disclosure of software vulnerability information, with little cross communication." (p.1)
"Software vendors and security communities need to rethink their current interactions and develop a new mindset toward cooperation." (p.4)