Google revises Project Zero’s Disclosure Policy to help improve zero-day vulnerability fixes | Tech News
Home Tech Tech News Google revises Project Zero’s Disclosure Policy to help improve zero-day vulnerability fixes

Google revises Project Zero’s Disclosure Policy to help improve zero-day vulnerability fixes

The Project Zero team says the 90+30 policy will give vendors more time than its current policy.

By: HT TECH
| Updated on: Aug 21 2022, 16:30 IST
Icon
Google releases Policy and Disclosure: 2021 Edition
Google releases Policy and Disclosure: 2021 Edition (Google )
Google releases Policy and Disclosure: 2021 Edition
Google releases Policy and Disclosure: 2021 Edition (Google )

Project Zero, Google's dedicated team of security analysts, has made changes to its Disclosure Policy to help reduce the time it takes for vulnerabilities to get fixed. Henceforward the security group will not make the technical details of a vulnerability for 30 days if a vendor patches it before the 90-day or 7-day deadline. According to the group, the extra days aim at user patch adoption.

Google Project Zero's revised policy says that if an issue remains unpatched after 90 days, technical details are made public immediately. If the fix is plugged within the 90-day timeframe, it will publish the details 30 days after the fix is released. The team also gives a 14-day grace period. If both parties agree, vulnerabilities can be disclosed earlier as well.

ALSO READ: IBM uncovers more attacks against Covid-19 vaccine supply chain

In the case of zero-day vulnerability actively exploited in the wild, Project Zero will make the technical details public immediately if the issue remains unpatched after seven days. If the vendor has patched the issue within the stipulated time, technical details will be published 30 days after the fix. Vendors also have the option to request an additional 3-days grace period. Earlier, Google Project Zero did not give any grace period and made the details public after seven days of reporting regardless of when the bug is fixed.

The full list of changes for 2021
The full list of changes for 2021 (Google)
image caption
The full list of changes for 2021 (Google)

According to the revised Disclosure Policy, Google aims to reduce the time between reporting a bug and a fix rolled out to users. The policy aims to ensure comprehensive fixes. It also hopes it will reduce the time between a patch rollout and users adoption.

ALSO READ: 97% of organisations faced mobile malware attack in 2020: Checkpoint report

 

“This 90+30 policy gives vendors more time than our current policy, as jumping straight to a 60+30 policy (or similar) would likely be too abrupt and disruptive. Our preference is to choose a starting point that can be consistently met by most vendors, and then gradually lower both patch development and patch adoption timelines,” Google Project Zero further said.

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 18 Apr, 11:20 IST
Trending: bored of your instagram explore feed? here’s how you can change, reset it mrbeast vs t-series: popular youtuber on the verge of surpassing indian music label in subscribers whatsapp update: new ‘private mention’ feature for status updates coming soon- details how to hide your instagram online status from others solar storm alert: cme could hit earth and spark a geomagnetic storm today, says noaa how to change whatsapp font style and font size in chat window google wallet introduces 'linked passes' setting: what is it and how to use the new feature meta ai: mark zuckerberg unveils features of whatsapp and instagram’s ai chatbot google wallet to launch in india: what is it and how will it be different from google pay apple releases macos sonoma 14.5 public beta 2 update; check new features and know how to get it
NEXT ARTICLE BEGINS

Tips & Tricks

WhatsApp banned
WhatsApp banned my number. What’s the solution? Step-by-step guide to ‘unban’ your account
Consider Tonnage
Don't forget these 5 things while buying ACs online
Productivity
Otter AI: How to use this AI meeting assistant app to automatically take notes, transcripts, more
Pixel 8 Pro's Pro
Know how to master Pro Controls on the Google Pixel 8 Pro - check top 4 tips
ChatGPT Plus
How to edit images generated by DALL-E in ChatGPT: Step-by-step guide

Editor’s Pick

Digi Yatra
Digi Yatra users, delete the old app right now- Here’s how to download the new app and use it at airports
iPhone 15
iPhone 16 leaks summarised: Colours, A-series chip and what more to expect from Apple in 2024
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
HDFC Bank alerts about a few common ‘bad habits’ of smartphone users that make it easy for them to fall prey to hacking attempts and scams.
Online scams: 5 habits of smartphone users that make life easy for hackers, warns HDFC Bank
Moto Edge 50 Pro
Motorola Edge 50 Pro review: Should you buy this new AI smartphone under 35,000?

Trending Stories

Dbrand
MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
GTA_6
GTA 6 leaks: What we know so far about Grand Theft Auto 6
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
Google Vids
Google Vids- All details about this new AI video app and how to use it
iPhone 13
Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
keep up with tech

Gaming

GTA 6: From main protagonists to supporting figures, all the key characters in Grand Theft Auto 6
GTA 6: From main protagonists to supporting figures, all the key characters in Grand Theft Auto 6
Garena Free Fire MAX Redeem Codes for April 19
Garena Free Fire MAX Redeem Codes for April 19: SCAR Ring event bring menacing weapon skins!
Garena Free Fire Redeem Codes for April 19
Garena Free Fire Redeem Codes for April 19: OB44 update rolled out, know what’s new
GTA 6 trailer: Top 5 iconic cars spotted in the Grand Theft Auto 6’s Vice City
GTA 6: Top 5 iconic cars spotted in the trailer set to dominate vice city's streets
Garena Free Fire MAX redeem codes for April 18
Garena Free Fire MAX Redeem Codes for April 18: OB44 update brings exciting changes!

    Trending News

    MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
    Dbrand
    GTA 6 leaks: What we know so far about Grand Theft Auto 6
    GTA_6
    10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
    STScI-01HFQ5YXZ04PF608HQB0KRTF3S
    Google Vids- All details about this new AI video app and how to use it
    Google Vids
    Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
    iPhone 13

    Trending Gadgets

    Mobiles Laptops Tablets