The attention being given to vulnerability disclosure policies (VDP) in the past year has increased dramatically. It might be the latest high-profile breach that sparks a comment, but more and more, it’s the attitude that VDPs aren’t just nice-to-haves, they’re critical for every company.
From governments to technologists, General Electric to General Motors, and US senators to EU regulators, people are recommending all companies embrace vulnerability disclosure policies.
Here's a few quotes:
We’ve compiled a total of 16 recent quotes and highlighted the important points. If you need more incentive to kickstart or formalize your own VDP, this will help.
And if you think you’re not going to be asked by someone inside or outside your company to explain your lack of a VDP, skim through these quotes and then think again.