FTC Staff Suggests NTIA-Driven Template to Disclose Security Flaws Be Broadened
FTC staff recommended that a draft template to help security researchers disclose cybersecurity vulnerabilities to industries, particularly for automobile and medical device manufacturers, can be "useful tool for any company providing software-based products and services to consumers," said the agency…
Sign up for a free preview to unlock the rest of this article
Export Compliance Daily combines U.S. export control news, foreign border import regulation and policy developments into a single daily information service that reliably informs its trade professional readers about important current issues affecting their operations.
in a Thursday news release. Commissioners voted 2-0 to authorize staff to comment on the draft template that was produced by an NTIA-driven multistakeholder process (see 1612150074). The FTC said its staff suggested "the draft template be revised to make clear that the recommendations could apply to more than just safety-critical industries. In its comment, the staff noted that companies that provide Internet-connected products or collect sensitive consumer information should consider implementing a vulnerability disclosure policy and related processes."