Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Amis blog has an entry all about OpenVPN"] [Next entry: "Sarbanes Oxley and Oracle"]

Security ethics in vulnerability disclosure

I was browsing the net and found a very interesting news article on zdnet UK this evening titled "Court case shines light on security ethics" written by Dan Ilett.

The paper concentrates on the fact that some leading security researchers believe that more responsible actions need to be taken by security researchers in revealing bugs in software. The item is sparked by a legal action taken by a French company Tegam taken against a researcher called Guillaume Tena.

Quite an interesting read and also a controversial topic both for security researchers and for software companies.