NTIA Announces Vulnerability Disclosure Meeting – 4-8-16

The Commerce Department’s National Telecommunications and Information Administration (NTIA) published a meeting notice in today’s Federal Register (81 FR 17146) concerning a multi-stakeholder process concerning the collaboration between security researchers and software and system developers and owners to address security vulnerability disclosure. The meeting will be held in Chicago, IL on April 8^th, 2016.

This will be the third in a series of meetings. The first two were held last year in September and December. The meeting in April will build on the previous work in an open, transparent, consensus-driven process to develop voluntary principles guiding the collaboration between vendors and researchers about vulnerability information.

The meeting will be open to the public, both in person and via the web. Information on access to the meeting will be posted on the Multi-Stakeholder Process web site.