Vulnerability disclosure has long been a hot-button security issue, and Katie Moussouris is always at the front lines of the talk for Microsoft in her role as senior security strategist lead for the Microsoft Security Response Center.
Moussouris often works directly with security researchers who find vulnerabilities and convey them to Microsoft's attention. She's become a critical figure for Microsoft, not just in outreach and establishing working relationships with white hat and grey hat hackers, but internally helping execute at the Trustworthy Computing initiative with the event of Microsoft's Exploitability Index and the Microsoft Active Protections Program (MAPP).
In this interview with TechTarget Security Media Group Editorial Director Mike Mimoso, Moussouris talks about her work at Microsoft, the company's philosophy of coordinated vulnerability disclosure and the way it views offensive security research.
They also speak about Microsoft's vocal support of defensive security research and the BlueHat Prize, to be announced at this year's Black Hat Briefings. Finally, Moussouris provides an update at the progress being made by the International Standards Organization (ISO) at the development of a vulnerability disclosure standard.
Nessun commento:
Posta un commento
Comments links could be nofollow free