(so governments making use of 0day might even be a net security positive vs 0days staying dormant until criminals make use of them)
You're missing that governments create the incentive to make 0day by plowing millions of dollars into the market. If that dries up, the balance of resources shifts to those us trying to fix bugs.
-
-
I got into reverse engineering to break copy protection, into hacking to test my smarts and prove aptitude; I think 0 days would exist regardless of financial incentives.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
how does that incentive affect whether bad guys are or are not looking for 0days? i don't think they're going in with the intention of reporting to the government, then backtracking and deciding to start a life of cybercrime
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Is your argument that without the government being in the market, 0day prices will go down, thus making 0day authors less interested in writing 0days? I mean, since when the gov is in the 0day market, do we have data on the market before they entered?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.