@tqbf Well, Chrysler was made to. I raise GM bc only backed CISA when they realized hackers wouldn't sit on disclosures @holmesworcester
-
-
Replying to @emptywheel
@emptywheel@holmesworcester … can you take me from “Charlie Miller discovers vuln” to “GM is immunized under CISA and can avoid recall”?1 reply 0 retweets 0 likes -
Replying to @tqbf
@tqbf Miller tells GM. That's not just vuln, but DMCA violation. GM tells DHS, not NHTSA. NTHSA can't force recall.@holmesworcester1 reply 0 retweets 0 likes -
Replying to @emptywheel
@emptywheel@holmesworcester How about “Miller tells GM, then tells CNN”, which is what will actually happen?3 replies 0 retweets 1 like -
Replying to @tqbf
@tqbf@holmesworcester If that happens--if he goes to CNN & NHTSA can show they learned there, before GM goes to CISA--no reg immunity.2 replies 0 retweets 0 likes -
Replying to @emptywheel
@emptywheel@holmesworcester Also: DMCA has an exception for security research, which I’m sure you know, so how is it relevant?2 replies 0 retweets 0 likes -
Replying to @tqbf
@tqbf Right--as Matt said--not until October. Plus GM could still report a defensive measure.@holmesworcester1 reply 0 retweets 0 likes -
Replying to @emptywheel
@emptywheel@holmesworcester How is GM helped in avoiding recall by reporting a defensive measure under CISA?1 reply 0 retweets 0 likes -
Replying to @tqbf
@tqbf You mean what value does GM get from setting own terms of fixing vuln, not having to do full recall? $$$$@holmesworcester1 reply 0 retweets 0 likes -
Replying to @emptywheel
@emptywheel@holmesworcester I’m sorry but I still don’t see how you’ve established that CISA allows GM to set timetable.1 reply 0 retweets 0 likes
@tqbf I didn't say that. I said GM issued new security research guidelines and I THINK they've reserved a window of time @holmesworcester
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.