Tension between security vendors, bug hunters continues to simmer


The long standing tension between software vendors and independent vulnerability researchers who find security holes in vendors' products shows little signs of abating despite recent talk about responsible vulnerability disclosure practices.

Last week Oracle Corp. criticized independent vulnerability researchers after it came under fire for its security practices. In a company blog, Eric Maurice, manager for security in Oracle's global technology business unit, said the company would not let external perceptions drive its security policies. Tension between security vendors, bug hunters continues to simmer

Linked by shanmuga Sunday, 3rd December 2006 10:16PM