|
@halvarflake | |||||
|
In multiple recent disclosure discussions on Twitter, I had said I will write a longer blog post about my views. I finally found the time to jot them down. I expect almost every reader to disagree with something vehemently. Enjoy "Disclosure Rashomon": addxorrol.blogspot.com/2019/08/rashom…
|
||||||
|
||||||
|
Shahar Tal
@jifa
|
17. kol |
|
Well written. I particularly agree with the ‘hero of their own story’ concept which applies to other fields. People will justify their opinions once they picked a side (or one was picked for them), and acknowledging alternatives have valid reasoning require uncommon levels of EQ.
|
||
|
|
||
|
Shahar Tal
@jifa
|
17. kol |
|
I will offer one perspective that I found untouched by your post: the underlying assumption that 0day exploitation is malicious by nature and results in "mild discomfort to death". 0days can be and are exploited against evil, and do result in saving lives and averting disasters.
|
||
|
|
||
|
Matt Linton 🐦👨💻⚕️⚒️🥋🎻
@0xMatt
|
17. kol |
|
This is an exceptionally well-written and insightful piece, undercut only by the fact that it assumes and requires end users to rational actors :)
|
||
|
|
||
|
halvarflake
@halvarflake
|
17. kol |
|
You don't have to assume that they are rational to decide that giving them the option to be rational is the right thing to do.
|
||
|
|
||
|
halvarflake
@halvarflake
|
17. kol |
|
I wish I could retweet this :-)
|
||
|
|
||
|
halvarflake
@halvarflake
|
17. kol |
|
My view is that people's ethical judgement is often strongly influenced by what they can buy by slightly adjusting it, and few people reflect on this enough.
|
||
|
|
||
|
http
@SwissHttp
|
17. kol |
|
Actually I fully agree with your post.
One comment though:
If you mention Microsoft as an example, you might also want to mention their TwC initiative 17 years ago, stopping all development for a while. But yes, there was a business need for this change.
en.wikipedia.org/wiki/Trustwort…
|
||
|
|
||
|
halvarflake
@halvarflake
|
17. kol |
|
Microsoft *has* made the TwC investments and at least partially foregone taking some of the excess profit, and that is good. At the same, I guess it wasn't nearly enough, as net societal risk has gone up since then.
|
||
|
|
||