Ethical Midlife Crisis
Ethics are defined as:
Ethics (from the Ancient Greek ethikos, the adjective of ethos “custom, habit”), a major branch of philosophy, is the study of values and customs of a person or group. It covers the analysis and employment of concepts such as right and wrong, good and evil, and responsibility.
- What is acceptable vulnerability disclosure? Is vulnerability disclosure good at all?
- Is releasing security research publicly really beneficial to the security at large?
- Who benefits the most from the security tools, research and discussions?
- How do governments view public disclosure of vulnerabilities and research?
- How do corporate bodies view public disclosure of vulnerabilities and research?
Hmm oddly enough I was going to post something about what is an ethical hacker and what is an ethical pen-tester? There is a number of perceptions that the media has for security people. Either geeks with a social eptitude of a slug or a man with a black trench-coat hiding in a dark alleyway.
Well you must know, security pentesters and ethical hackers are far more than the perceived stereotypes given by media. In fact, there are a number of different characters in the industry, I met a few in my short career so far. ;)
It’s very much like sport! Pick any sport. Different techniques, different attitudes, different emotions all in one sport. Whatever it takes to get the job done. Exactly like the security industry!