How to report and handle security disclosures presented at PacificHackers 2019

by Aviv Sasson,

Summary : In a dynamic environment as the computing world, technology changes rapidly and new CVE's are disclosed everyday. In this presentation, Aviv will shed some light over the process of security disclosure from the perspectives of the researchers and the developers. He will talk about the implications of handling the process poorly and about scenarios that could have happened because of inadequate security disclosure.He will talk about some vulnerabilities he found and how he and the developers handled the situations.In the end, he will give some tips regarding how to improve the disclosure process from the researcher and developer perspectives while keeping maximum security.