@csoghoian Many SecCos are indy or boutique and intl law is most expensive. I've had trouble with even intl employment law let alone this.
Access is hardly a disinterested party but their Wassenaar analysis is the most detailed I've seen. Req'd reading! https://s3.amazonaws.com/access.3cdn.net/f3e3f15691a3cc156a_e1m6b9vib.pdf …
-
-
-
@csoghoian getting this kind of clarity is what I'd expect EFF to do for the industry but I don't see them representing my interests anymore
End of conversation
New conversation -
-
-
@csoghoian@CDA Great paper, but standard consulting workflow not discussed. Ie, If I do intl appsec work and report comes with PoCs. -
@csoghoian@CDA Noted in paper that few in sec have access to legal asstnce. IMHO considerable chilling effect due to this uncertainty. :-/ - 1 more reply
New conversation -
-
-
@csoghoian It's in their mission to provide that kind of guidance, and they used to https://www.eff.org/issues/coders/vulnerability-reporting-faq …Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@csoghoian yep! This has been coming up a lot lately. There is certainly a gap.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.