Full disclosure requires that full details of a security vulnerability are disclosed to the public, including details of the vulnerability and how to detect and exploit it. The theory behind full disclosure is that releasing vulnerability information immediately results in quicker fixes and better security. Fixes are produced faster because vendors and authors are forced to respond in order to protect their system from potential attacks as well as to protect their own image. Security is improved because the window of exposure, the amount of time the vulnerability is open to attack is reduced.
In the realm of computer vulnerabilities, disclosure is often achieved via mailing lists such as a full disclosure mailing list and by other means.
Read more about Full Disclosure: History, Controversy
Famous quotes containing the word full:
“Language was not powerful enough to describe the infant phenomenon. “I’ll tell you what, sir,” he said; “the talent of this child is not to be imagined. She must be seen, sir—seen—to be ever so faintly appreciated.”... The infant phenomenon, though of short stature, had a comparatively aged countenance, and had moreover been precisely the same age—not perhaps to the full extent of the memory of the oldest inhabitant, but certainly for five good years.”
—Charles Dickens (1812–1870)