Manage Vulnerability Reports Webinar

Without mechanisms to report, manage and resolve vulnerabilities, the security of consumer IoT products will diminish over time – and the likelihood of attack or abuse will increase. New standards and regulatory requirements will mean organisations need to prepare to receive and manage vulnerability reports and follow coordinated vulnerability disclosure best practices.

These webinars are delivered by security experts from the IoTSF membership and split into easy-to-digest segments.

Vulnerability Disclosure Basics

16 Minutes

The Importance of Security Researchers and Types of Disclosure

12 Minutes

Establishing a Vulnerability Disclosure Scheme

15 Minutes

Operating a Coordinated Vulnerability Disclosure Scheme

24 Minutes

Each webinar has a complementary Quick Guide that demystifies specialist terminology, signposts to additional information and suggests additional ways in which to approach consumer IoT cybersecurity.

View Manage Vulnerability Reports Quick Guide

The Quick Guides and On-Demand Webinars build upon the ETSI EN 303 645 v2.1.1 (2020-06) specification on consumer IoT cybersecurity published in 2020. It is the first international standard of its kind and there is already evidence of governments publishing guidance and preparing legislation based on it. This will impact the IoT producer community – designers, developers, manufacturers and other vendors. These materials focus on the top 3 cyber security provisions for consumer IoT: No Universal Default Passwords, A Means to Manage Vulnerability Reports, and Keeping Software Updated.

IoTSF also publishes annual analysis of Vulnerability Disclosure Practices in the Consumer IoT Vendor Sector. You can view the latest reports here: Consumer IoT Security Reports