The benefit to security of any disclosure policy tends to be inversely proportional to how loudly vendors cheer for it 
-
I think the new policies make a lot more sense for vendors of cloud software. The policies before were great for client software. maybe now it's worse for client software. I believe there should be two policies tbh
What difference does it make for cloud software? Patch adoption there is effectively perfect, so doesn't seem like an issue, perhaps I'm missing the point.
-
-
My point is under the old policy we could patch the issue and 1 hour later the entire world knows, before we've had time to investigate it. Maybe there is regulatory requirements we need to look in to, maybe we want to prepare our support team with info about the issue, etc
-
You can investigate as much as you like, don't see how this changes anything. I don't see how it benefits users to allow you to consider if you have regulatory obligations in private?
- Još 10 drugih odgovora
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.