Invitation to the 2018 CERT Vendor Meeting [INFO#384036] - alpine
——BEGIN PGP SIGNED MESSAGE——
Hash: SHA256
The CERT Coordination Center invites you to attend the 2018 CERT Vendor Meeting. The meeting will be held on Monday April 16, 2018, at the Westin St. Francis in San Francisco, CA, US.
<http://www.westinstfrancis.com/>
Meeting time will be 9 AM to 5 PM, lunch and snacks will be provided. There is no cost to attend.
This year we will be holding a morning-only introductory vulnerability response capability building course. Anyone attending the morning course is welcome to attend the meeting in the afternoon. Both the course and meeting will run concurrently in the morning.
This year we are focusing the meeting on two not-unrelated topics:
- Supply chain transparency and component relationships
How to vendors identify and track upstream components, and vulnerabilities in those components? How do vendors inform downstream users? How do defenders maintain accurate inventories of components and vulnerabilities?
- Radically new ways to do multi-party coordinated vulnerability disclosure
How does the hub-and-spoke coordination model perform at increasing scale (both frequency and number of parties)? What alternatives exist? What trade-offs are vendors and other stakeholders willing to make?
The CERT/CC plans to introduce and frame both topics. We welcome questions and discussion on this list, and also offers to speak on either topic.
We ask that teams initially limit attendance at two people; we’ll raise this limit depending on the response and available seating. Seats are first come first served.
To register, please visit:
<https://www.eventbrite.com/e/2018-cert-vendor-meeting-registration-39956032569>
Questions and discussion topics can be sent to <vul-event-rsvp@cert.org>.
Regards,
- Art
Art Manion — CERT Coordination Center
<http://www.cert.org/><cert@cert.org>+1 412-268-5800
2E68 45E0 1437 9689 FA89 4C4A E3DD DC38 7B50 2ECF
——BEGIN PGP SIGNATURE——
Version: GnuPG v2.0.22 (GNU/Linux)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=BRw7
——END PGP SIGNATURE——
(from redmine: issue id 8632, created on 2018-03-08)