Motion to Dismiss for Failure to State a Vulnerability
Read OriginalThis article draws an analogy between legal procedures for dismissing a lawsuit and evaluating software vulnerability reports. It argues that projects should first ask if a reported vulnerability violates their documented threat model, and that researchers should clearly articulate this violation, similar to how a legal complaint must state a valid claim.
Comments
No comments yet
Be the first to share your thoughts!
Browser Extension
Get instant access to AllDevBlogs from your browser
Top of the Week
No top articles yet