{"id":5938,"date":"2021-12-28T10:29:33","date_gmt":"2021-12-28T18:29:33","guid":{"rendered":"https:\/\/csa-iot.org\/?page_id=5938"},"modified":"2024-03-01T08:50:56","modified_gmt":"2024-03-01T16:50:56","slug":"vulnerability-reporting","status":"publish","type":"page","link":"https:\/\/csa-iot.org\/vulnerability-reporting\/","title":{"rendered":"Report a Vulnerability"},"content":{"rendered":"\n
\n
\n

Reporting a Vulnerability<\/h1>\n\n\n\n

A clear venue to report potential security vulnerabilities.<\/p>\n<\/div><\/div><\/div><\/div>\n\n\n\n

\n
\"\"<\/figure>\n<\/div><\/div><\/div><\/div>\n<\/div><\/div><\/div><\/div>\n\n\n\n
<\/div>\n\n\n\n
<\/div>
\n

Why report?<\/h2>\n\n\n\n

Vulnerabilities pose a potential risk to users and to the stability and reliability of devices and networks worldwide. Input from both internal and external resources plays a critical role in ensuring the security and overall quality of open standards continually evolves. We welcome vulnerability reporting and feedback from institutes, universities, and security professionals. The Alliance and its members are grateful for public checks on technology which allow our experts to investigate and address appropriately.<\/p>\n<\/div><\/div><\/div><\/div>\n\n\n\n

<\/div>
\n

What to Include<\/h2>\n\n\n\n
<\/div>\n\n\n\n
\n
<\/div>
\n

Summary title of the issue<\/p>\n<\/div><\/div><\/div>\n\n\n\n

<\/div>
\n

Description of the issue<\/p>\n<\/div><\/div><\/div>\n\n\n\n

<\/div>
\n

Instructions on how to reproduce the issue<\/p>\n<\/div><\/div><\/div>\n\n\n\n

<\/div>
\n

Alliance specification and version<\/p>\n<\/div><\/div><\/div>\n\n\n\n

<\/div>
\n

Specific device model(s) involved<\/p>\n<\/div><\/div><\/div>\n<\/div><\/div><\/div><\/div>\n\n\n\n

<\/p>\n<\/div><\/div><\/div><\/div>\n\n\n\n

<\/div>
\n

How to Report<\/h2>\n\n\n\n
<\/div>\n\n\n\n

The most effective way to report a vulnerability is by sending the relevant information via email to: security_reporting@csa-iot.org<\/strong><\/a><\/span>. Our security experts will review and determine next steps.<\/p>\n\n\n\n

To help ensure privacy in our communications, please use the following public PGP encryption key:<\/p>\n\n\n\n

\n-----BEGIN PGP PUBLIC KEY BLOCK-----\n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\niUQAO9rNNSLsQyF1y5m3rSCrL6RYPXBLixl5Lzvq\/BI1FA==\n=YG9f\n-----END PGP PUBLIC KEY BLOCK-----\n<\/pre>\n<\/div><\/div><\/div><\/div>\n\n\n\n
<\/div><\/div>
<\/div>
\n\n
An Empowered & Engaged Developer Community<\/h3>\n\n\n
Join the thousands of individuals contributing to the ongoing development of specifications that help bring great products to market. With our Members\u2019 deep and diverse expertise, robust certification programs, a full suite of open IoT solutions, and a community working together to grow and improve the IoT, the Alliance is leading the movement toward a more intuitive, connected, secure, and useful world. <\/p>\n\n\n
Become A Member<\/span><\/a><\/p>\n\n<\/div><\/div><\/div><\/div>\n\n\n\n
\n
<\/div>
<\/div><\/div>
\n
Certification Creates Confidence<\/h2>\n\n\n\n
Certification validates compliance  with a Connectivity Standards Alliance specification. It also allows for the use of Certified Product logos on packaging and products, building trust and confidence with customers and consumers.<\/p>\n\n\n\n
Get Certified Today<\/span><\/a><\/p>\n<\/div><\/div><\/div><\/div>\n\n\n\n
<\/div>
<\/div><\/div>
\n

Let\u2019s Connect<\/h2>\n\n\n\n
Have a question? We’re here to help. <\/p>\n\n\n\n
Contact Us<\/span><\/span><\/a><\/p>\n<\/div><\/div><\/div><\/div>\n<\/div><\/div><\/div><\/div>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"content-type":"","_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"","footnotes":""},"folder":[],"class_list":["post-5938","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/pages\/5938","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/comments?post=5938"}],"version-history":[{"count":0,"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/pages\/5938\/revisions"}],"wp:attachment":[{"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/media?parent=5938"}],"wp:term":[{"taxonomy":"folder","embeddable":true,"href":"https:\/\/csa-iot.org\/wp-json\/wp\/v2\/folder?post=5938"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}