Google decided to take a teaspoon for companies and will give a period slightly higher before publicly expose security holes in the software of others in the Project Zero program. After hearing complaints from Microsoft, the company will expand the search term if necessary.
So far, Google notifying the responsible company and promised to disclose the information within 90 days, something considered sufficient. Now, after complaints, will give an additional time of 14 days for the company responsible release the necessary update.
Also, if the deadline coincides with weekends or national holidays (US), Google will also move the deadline for the next business day. The company also promises that, in extreme cases, the period may be extended or reduced, but very special circumstances apply.
So far, Microsoft has been the most harmed by the new Google bug exposure policy, and is probably also responsible for the shift in thinking competitor. This is because in one case, a failure in the “Windows 8.1″ was released two days before the release of correction package, which responsible for the operating system considered “less a matter of principle and one more ‘gotcha!’”.
Via The Verge
No comments:
Post a Comment