Top Voting Machine Vendor ES&S Has a New Vulnerability Disclosure Policy That Gives Ethical Hackers More Latitude to Find Bugs

The country’s largest voting machine vendor ES&S announced a new vulnerability disclosure policy that will allow it to work more closely with security researchers to find software bugs in the company’s IT networks and websites. The new policy, which gives the company 90 days to fix problems before the researchers go public, allows researchers to probe ES&S’s corporate systems and public-facing websites, but not the election systems in place at jurisdictions around the country, which are subject to different testing regimes.


Post a Comment

Note: Only a member of this blog may post a comment.

Twitter Delicious Facebook Digg Stumbleupon Favorites More