Security Congress Abstract
With an increasing number of security researchers finding vulnerabilities in public systems, it's often very difficult to find a proper channel for responsibly disclosing these findings to the owners of the information systems. A new RFC currently in draft will assist in standardizing and creating a viable process for researchers to report findings to information security teams. Giants such as Facebook and Google have already gotten behind this RFC's implementation. We will explore why everyone else in the industry should, too. We also look at how easy this RFC is to adopt.