CVD Series: What is Coordinated Vulnerability Disclosure? (Part 1 of 9)
This is the first post in a series about Coordinated Vulnerability Disclosure (CVD). In this series, we will discuss why CVD is an important part of the modern software development lifecycle, and how individuals and organizations can establish a CVD process for their software projects and participate in the established CVD community.
The material in this series represents a collective effort within the CERT/CC Vulnerability Analysis team. As such, it's difficult even for us to pin down who wrote which parts. However, to give credit where it's due, we'd like to acknowledge the content contributed by the following individuals over the past few years (listed alphabetically): Jared Allar, Allen Householder, Chris King, Joel Land, Todd Lewellen, Art Manion, Michael Orlando, and Garret Wassermann.