Back to homepage
| Bacolod | Baguio | Cagayan de Oro | Cebu | Davao | Dumaguete | General Santos | Iloilo | Manila | Pampanga | Pangasinan | Zamboanga |
 
 
 
 

Google
Web
www.sunstar.com.ph

  Business
OFW remittances, RVAT increase value of peso
Multinational investors unfazed by RP crisis
Microsoft launches new strategy to counter edge of Google, Yahoo
Globequest obtains worm protection
Software answers small firms’ needs
Technology company introduces program against software security vulnerabilities
Toral: From broadcasting to podcasting


Thursday, November 03, 2005
Technology company introduces program against software security vulnerabilities

To protect technology users, 3Com launched its Zero Day Initiative (ZDI), which aims to ensure responsible disclosure of security flaws or vulnerabilities.

Under the program, 3Com will reward security researchers who responsibly reveal information on newly discovered vulnerabilities —instead of publicly posting the potentially harmful information—catching businesses and vendors off-guard and unprotected.

GET INVOLVED
Be a citizen journalist


3Com will notify affected vendors of security flaws so they can immediately begin working on a solution, most often in the form of a patch. The vulnerabilities will only be disclosed publicly by 3Com once the affected vendor is able to offer a solution to end-users, mitigating the threat.

3Com will also use the information to provide preemptive protection to customers through its TippingPoint Digital Vaccine service.

Disclosure

“Through this program, we seek to ensure that newly discovered vulnerabilities are managed, disclosed and remediated responsibly, so they don’t pose a threat to businesses,” said 3Com Chief Technology Officer Marc Willebeek-LeMair.

“The sooner we have information about a vulnerability, the sooner we can deliver protection to our customers. Ultimately, this benefits everyone: security and technology vendors, security researchers, end-users, as well as 3Com and its TippingPoint division customers.”

Vulnerabilities enable attackers to gain control of a system for malicious purposes. They can also result in worms or “denial of service” attacks, which can bring down entire networks.

Zero day disclosure occurs when the discoverer of the vulnerability discloses the flaw to the public without notifying the vendor, putting businesses at risk from the time of disclosure until the affected vendor issues a patch. It can take vendors weeks or months to supply a patch.

Proactive

Intrusion Prevention Systems (IPS), like TippingPoint, are one of the few methods of proactive protection.

Aside from reducing industry-wide security risks, obtaining advanced information on vulnerabilities enables 3Com to offer its TippingPoint IPS customers more protection than currently provided through the TippingPoint Digital Vaccine update service.

“Prior to the availability of a vendor-supplied solution or patch, our customers will be protected against threats they aren’t even aware of through our Digital Vaccine service,” said David Endler, Director of Security Research for 3Com’s TippingPoint division.

In-Stat Research Analyst Victoria Fodale said vendors and customers can benefit from the program as there are viruses or worms that take advantage of vulnerabilities that vendors are not yet aware of. (PR)

(November 3, 2005 issue)
Write letter to the editor. Click here.
Join the Sun.Star message board. Click here.


ENETWORK HEADLINE
Value-added tax effects can prove 'ruinous'

ENETWORK NEWS
Moro rebels open to dismantling camp to allay fears
Palace insists 'people's court' is illegal
Mine rescue on hold sans equipment: civil defense


[return to top] [home] [network page]


Sun.Star Network Online

LOCAL NEWS
BUSINESS
OPINION
SPORTS
LIFESTYLE
FEATURE

SUPERBALITA
WEEKEND

Classified Power Ads

Past Issues
I © Copyright 2002 - 2005 Sun.Star Publishing, Inc. I Contact the website at onlinedeskatsunstardotcomdotph I