Improving International Vulnerability Disclosure: Why the US and Allies Have to Get Serious

Presented at DEF CON 30 (2022), Aug. 14, 2022, 10 a.m. (105 minutes)

Join the Atlantic Council's Cyber Statecraft Initiative and DefCon Policy Track Initiative for a discussion on the strategic urgency behind better vulnerability disclosure. The session will focus on why the US and allied states need to take steps to make vulnerability disclosure easier, motivating the discussion with results from a study of the effects of a recently passed Chinese law on vulnerability disclosure.

Presenters:

• Christopher Robinson - Intel
• Stewart Scott - Assistant Director
  Stewart Scott is an assistant director with the Cyber Statecraft Initiative under the Scowcroft Center for Strategy and Security at the Atlantic Council. His work there focuses on systems security policy, including software supply chain risk management, federal acquisitions processes, and open source software security. He holds a BA in Public Policy and a minor in Applications of Computing from Princeton University.

Links:

• https://forum.defcon.org/node/242803

Similar Presentations:

• Diana Initiative 2023 / Managing Coordinated Vulnerability Disclosure - The Art Of Wrangling Cats
• Still Hacking Anyway (SHA2017) / Developments in Coordinated Vulnerability Disclosure: The government is here to help
• DEF CON 10 (2002) / Disclosure: The Mother of All Vulnerabilities