Google's Project Zero Team Adds Disclosure Grace Period
David Curry | | Feb 15, 2015 04:16 AM EST |
Google's Project Zero is loosening its rules regarding vulnerability disclosure.
Following both Microsoft and Apple's vulnerability outings, Google's Project Zero team is offering a new "grace period" to hold off vulnerability disclosure if the technology company has confirmed a patch is incoming.
Project Zero looks into various online platforms, to make sure technology is safer for everyone. When the team spots an issue, it sends the owner a warning about the issue, and if not patched in 90 days discloses the vulnerability.
Like Us on Facebook
This is a way for Google to push all technology firms to take vulnerabilities seriously, even if no attacker has created a way to exploit the vulnerability.
Google recently got into trouble when Microsoft revealed a Windows 8 vulnerability would have been patched in the next week, but Google outed the issue anyway, potentially opening the gates to attackers.
To make sure this doesn't happen again, Google will offer a 14-day grace period, holding off from spilling the beans for a fortnight.
This should be enough time for a patch to rollout and if it's not, Google will disclose the vulnerability. It does seem like a good way for responsive companies to make sure they stay in line with Project Zero's efforts.
Google normally sends the vulnerability data in packages, sending lots of small issues that need to be amended. If some are left unchanged, Google will detail what issues were addressed and what ones still need addressing.
It seems to have worked with some of the bigger companies. Some security experts want Google to fight against more technology companies that regularly drop the ball when it comes to security and bugs.
©2015 Chinatopix All rights reserved. Do not reproduce without permission
EDITOR'S PICKS
-
Did the Trump administration just announce plans for a trade war with ‘hostile’ China and Russia?
-
US Senate passes Taiwan travel bill slammed by China
-
As Yan Sihong’s family grieves, here are other Chinese students who went missing abroad. Some have never been found
-
Beijing blasts Western critics who ‘smear China’ with the term sharp power
-
China Envoy Seeks to Defuse Tensions With U.S. as a Trade War Brews
-
Singapore's Deputy PM Provides Bitcoin Vote of Confidence Amid China's Blanket Bans
-
China warns investors over risks in overseas virtual currency trading
-
Chinese government most trustworthy: survey
-
Kashima Antlers On Course For Back-To-Back Titles
MOST POPULAR
LATEST NEWS
Zhou Yongkang: China's Former Security Chief Sentenced to Life in Prison
China's former Chief of the Ministry of Public Security, Zhou Yongkang, has been given a life sentence after he was found guilty of abusing his office, bribery and deliberately ... Full Article
TRENDING STORY
-
China Pork Prices Expected to Stabilize As The Supplies Recover
-
Elephone P9000 Smartphone is now on Sale on Amazon India
-
There's a Big Chance Cliffhangers Won't Still Be Resolved When Grey's Anatomy Season 13 Returns
-
Supreme Court Ruled on Samsung vs Apple Dispute for Patent Infringement
-
Microsoft Surface Pro 5 Rumors and Release Date: What is the Latest?