In February, security vendor Comodo was publicly identified by Google Project Zero security researchers as having multiple vulnerabilities.
In a video interview with eWEEK, Melih Abdulhayoglu,CEO and chief security architect of Comodo, explained how he wants to work with security researchers like those at Google and why it’s a good thing, when done right.
“It’s important as an industry to follow responsible disclosure guidelines,” Abdulhayoglu said. “We at Comodo have always followed responsible disclosure guidelines.”
Responsible disclosure tends to vary across different companies, but the general idea is that a researcher gives a vendor a reasonable amount of time to fix a flaw before it is publicly disclosed.
“We should all work together to identify vulnerabilities,” Abdulhayoglu said. “The last thing we want is for a non-industry [person] to identify a vulnerability and use it against us.”
Watch the full video interview with Melih Abdulhayoglu,CEO and Chief Security Architect of Comodo below:
Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.