, 2009-03-20
Research is the backbone of the security industry but the legal climate has become so adverse that researchers have had to worry about injunctions, FBI visits, and even arrest.
Expand all |
Post comment
|
Time to Shield Researchers
, 2009-03-20 Research is the backbone of the security industry but the legal climate has become so adverse that researchers have had to worry about injunctions, FBI visits, and even arrest.
Expand all |
Post comment
|
|
|
Privacy Statement |
I work at PayPal and both we and Microsoft have public policies that encourage researchers to responsibly disclose security vulnerabilities and inform the researcher that legal action won't be pursued against them if they do. The intent of these types of policies is to remove any possible chilling effect on researchers who would hesitate to report a vulnerability for fear of company-directed prosecution.
The PayPal policy is here:
https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/cps/securit
ycenter/general/ReportingSecurityIssues-outside
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/495/35415#35415