Tag Archives: Bruce Schneier

reply: Full Disclosure of Security Vulnerabilities a ‘Damned Good Idea’

Full Disclosure of Security Vulnerabilities a ‘Damned Good Idea’
By Bruce Schneier

Full disclosure – the practice of making the details of security vulnerabilities public – is a damned good idea. Public scrutiny is the only reliable way to improve security, while secrecy only makes us less secure.

I don’t want to live in a world where companies can sell me software they know is full of holes or where the government can implement security measures without accountability. I much prefer a world where I have all the information I need to assess and protect my own security.

No reply needed.