election security Iowa launches vulnerability disclosure program for election-related sites The State of Iowa has partnered with Bugcrowd to launch a vulnerability disclosure program on election infrastructure.
history Information Asymmetry and the 1950s Nuclear Bounty Props to Matt Ploessel for calling out this one... I'd not heard of a bounty around nuclear weapons until today.
policy NIST SP 800-53 R5 adds Vulnerability Disclosure Programs NIST SP 800-53 Revision 5 is yet another step towards the legitimization of the Internet’s Immune System. Everyone who has worked on legitimizing the work of good-faith hackers for the past 30 years or more can feel encouraged by this release.
policy Disclose.io, VDP, Hackers, and voting About 18 months ago, I sat in Capitol Hill with a bunch of other badasses including Matt Blaze, Kimber Dowsett, Jack Cable, Alexander Romero, Leonard Bailey, and others, and talked to voting machine manufacturers and US states.
