The Laws of Full Disclosure

The Laws of Full Disclosure
Federico Biancuzzi, 2008-02-26

Full disclosure has a long tradition in the security community worldwide, yet different European countries have different views on the legality of vulnerability research. SecurityFocus contributor Federico Biancuzzi investigates the subject of full disclosure and the law by interviewing lawyers from twelve EU countries: Belgium, Denmark, Finland, France, Germany,Greece, Hungary, Ireland, Italy, Poland, Romania, and the UK.

Expand all | Post comment

Request for clarification of answer from UK contributor 2008-02-28
Anonymous (1 replies)

Re: Request for clarification of answer from UK contributor 2008-03-06
Anonymous

Steps to Minimize Risk 2008-03-17
Benjamin Wright

Computer crime laws are relatively new and untested. The question whether a researcher's actions constitute hacking, infringement or the endangerment of others is often complex. I argue responsible researchers can take a series of steps to build the case that are good guys and not bad guys. Those steps can include, for example, giving technology owners public, advance notice before inspecting it for vulnerabilities. My argument is not legal advice for anyone, just something to think about. http://hack-igations.blogspot.com/2007/08/dispel-criminal-in
tent-with-open.html

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/466/34993#34993