From the course: IoT Product Security
Unlock this course with a free trial
Join today to access over 23,100 courses taught by industry experts.
Vulnerability Disclosure Program: Part 1
From the course: IoT Product Security
Vulnerability Disclosure Program: Part 1
Hi, I'm Matthew Clark. And this is Lesson 6.4: Vulnerability Disclosure Programs, Part 1. You've designed a popular product and there's a steady demand for it. And what's more, you're pretty sure that it's secure. Congratulations. Then the unthinkable happens. One afternoon after returning from lunch, you receive an email. A customer informs you that they've discovered an undocumented port open on your device. They crafted some special packets and were able to make the product behave in an abnormal way. Maybe the device crashed or maybe the device gave them root access. Or maybe the device displayed an error code that gave them a little too much information. Or maybe they were able to access customer data in the cloud. Now that you're aware of the incident, what is your team going to do to address it? In this lesson, we'll take a look at vulnerability disclosures and discuss what happens next and why we need a vulnerability disclosure program. We'll identify different points of view…
Contents
-
-
-
-
-
-
-
Manufacturing and provisioning9m 30s
-
(Locked)
Vulnerability management and patching: Part 19m 41s
-
(Locked)
Vulnerability management and patching: Part 211m 51s
-
(Locked)
Vulnerability Disclosure Program: Part 17m 26s
-
(Locked)
Vulnerability Disclosure Program: Part 27m 49s
-
(Locked)
Vulnerability Disclosure Program: Part 38m 26s
-
(Locked)
Device ownership8m 3s
-
(Locked)
IOTSF Secure Design Best Practice Guides7m 4s
-
-