Project
FIRST: Guidelines and Practices for Multi-Party Vulnerability Coordination and Disclosure
About
Cybil code: G0036
Status: Finished
From: Jan 2017
To: Jul 2020
Partners
Themes & Topics
Region
Countries
Summary
This project defined a methodology and produced guidelines for coordination among the parties affected by a cyber vulnerability, from initial report to releasing information.
Details
Aims
The aim of the project was to meet the need for a more consistent approach to vulnerability disclosure to account for multiple stakeholders.
Outputs
A set of guidelines and norms for vulnerability disclosure that affects multiple parties.
Version 1.1. was released in Spring 2020
Contact details
FIRST, via the FIRST secretariat at first-sec@first.org or Kate Gagnon, Director, Forum of Incident Response and Security Teams (FIRST), kate@first.org
For more information see FIRST website
The Cybil project repository is being continuously updated, and the information it contains is either publicly available, or consent for publication was given by the owner. Please contact the portal manager with any additional information or corrections. Whilst every reasonable effort is made to keep the content of this inventory accurate and up to date, no warranty or representation of any kind, express or implied, is made in relation to the accuracy, completeness or adequacy of the information contained in these pages.
