-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
fc0c5e6
commit 3d56ee8
Showing
1 changed file
with
11 additions
and
29 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,38 +1,20 @@ | ||
| # Acknowledgements | ||
|
|
||
| ## THIS WORK IS FUNDED IN PART BY: | ||
| This work builds upon the following prior works: | ||
|
|
||
| | Work | Authors | URL | | ||
| |-------------------------------------------------------------------------------------------------| ------- |-----------------------------------------------------------------------------------------------------------| | ||
| | The CERT Guide to Coordinated Vulnerability Disclosure | Allen D. Householder, Garret Wassermann, Art Manion, Christopher King | <https://doi.org/10.1184/R1/12367340.v1><br/>2019 Update: <https://vuls.cert.org/confluence/display/CVD> | | ||
| | A State-Based Model for Multi-Party Coordinated Vulnerability Disclosure (MPCVD) | Allen D. Householder and Jonathan Spring | <https://doi.org/10.1184/R1/16416771> | | ||
| | Are We Skillful or Just Lucky? Interpreting the Possible Histories of Vulnerability Disclosures | Allen D. Householder and Jonathan Spring | <https://doi.org/10.1145/3477431> | | ||
| | Designing Vultron: A Protocol for Multi-Party Coordinated Vulnerability Disclosure (MPCVD) | Allen D. Householder | <https://doi.org/10.1184/R1/19852798> | | ||
| | Coordinated Vulnerability Disclosure User Stories | Brad Runyon, Eric Hatleback, Allen D. Householder, Art Manion, Vijay S. Sarvepalli, Timur D. Snoke, Jonathan Spring, Laurie Tyzenhaus, Charles G. Yarbrough | <https://resources.sei.cmu.edu/library/asset-view.cfm?assetid=886543> | | ||
|
|
||
| This work is funded in part by | ||
| [DHS/CISA](https://www.cisa.gov/) under Contract No. FA8702-15-D-0002 with Carnegie Mellon University for the operation | ||
| of the Software Engineering Institute, a federally funded research and development center sponsored by the United States | ||
| Department of Defense. | ||
|
|
||
| ## THIS WORK BUILDS UPON THE FOLLOWING PRIOR WORKS | ||
|
|
||
| ### The CERT Guide to Coordinated Vulnerability Disclosure | ||
|
|
||
| - Allen D. Householder, Garret Wassermann, Art Manion, Christopher King | ||
| - Original 2017 publication: <https://doi.org/10.1184/R1/12367340.v1> | ||
| - 2019 Update: <https://vuls.cert.org/confluence/display/CVD> | ||
|
|
||
| ### A State-Based Model for Multi-Party Coordinated Vulnerability Disclosure (MPCVD) | ||
|
|
||
| - Allen D. Householder and Jonathan Spring | ||
| - <https://doi.org/10.1184/R1/16416771> | ||
|
|
||
| ### Are We Skillful or Just Lucky? Interpreting the Possible Histories of Vulnerability Disclosures | ||
|
|
||
| - Allen D. Householder and Jonathan Spring | ||
| - <https://doi.org/10.1145/3477431> | ||
|
|
||
| ### Designing Vultron: A Protocol for Multi-Party Coordinated Vulnerability Disclosure (MPCVD) | ||
|
|
||
| - Allen D. Householder | ||
| - <https://doi.org/10.1184/R1/19852798> | ||
|
|
||
| ### Coordinated Vulnerability Disclosure User Stories | ||
|
|
||
| - Brad Runyon, Eric Hatleback, Allen D. Householder, Art Manion, Vijay S. Sarvepalli, Timur D. Snoke, Jonathan Spring, | ||
| Laurie Tyzenhaus, Charles G. Yarbrough | ||
| - <https://resources.sei.cmu.edu/library/asset-view.cfm?assetid=886543> | ||
|
|
||
| DM23-0698 | ||
|
|