|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [VulnDiscuss] Cybersecurity, Research & Disclosure Conference
From: Chris Wysopal (weld
vulnwatch.org)
Date: Wed Nov 26 2003 - 16:59:45 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, 26 Nov 2003, Dave Aitel wrote:
> Of course the main goal of the conference from Microsoft's position was
> to get headlines into the press saying things like "Exploit code on
> trial!" Of course, looking at SecurityFocus makes it obvious they
> succeeded. In reality, there is no case for exploit code to ever be on
> trial. Any potential liability is theoretical at best.
>
I am going to leave the liability question up to the lawyers. They
certainly know much more about the subject than security professionals.
There were some interesting points made. You can read a psuedo transcript
in the Cyberlaw blog:
http://cyberlaw.stanford.edu/blogs/
The organizers told me an audio of the conference will be made available
online.
-Chris
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]