• Kusimulkku@lemm.ee
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Notifying vendors first about security flaws is a cybersecurity industry norm, but a new law encourages Chinese companies to first notify the government

    That’s a bit… worrying

  • TheAnonymouseJoker@lemmy.ml
    link
    fedilink
    arrow-up
    0
    arrow-down
    1
    ·
    3 years ago

    I think this is a wrong gesture on China’s part. The government should be a secondary entity to the developer entity of software code affected. Apache software’s bug should be known to Apache first, and then anyone else, considering Apache server is used everywhere in the world.