Work Programme - Work Item Detailed Report

	Work Item Reference	ETSI Doc. Number	STF	Technical Body in Charge	Download Standard
	DTR/CYBER-0062	TR 103 838		CYBER
	Current Status (Click to View Full Schedule)	Latest Version	Cover Date	Standstill	Creation Date
	Publication (2022-01-27)	1.1.1	2022-01-27	View Standstill Information	2020-10-21
	Rapporteur	Technical Officer		Harmonised Standard
	Colin Whorlow	Sonia Compans		No

Title	Cyber Security; Guide to Coordinated Vulnerability Disclosure Guide to Coordinated Vulnerability Disclosure
Scope and Field of Application	This technical report is for companies and organisations of all sizes who want to implement a vulnerability disclosure process. It is not intended to be a comprehensive guide to creating and implementing a vulnerability disclosure process, but instead focuses on an essential offering. The report will contain examples of vulnerability disclosure policy, action plans and generic advice on how to respond to a vulnerability disclosure. This work is complementary to ISO/IEC 29147:2018 Information technology — Security techniques — Vulnerability disclosure, ETSI's own CVD process and can be used to support EN 303 645.
Supporting Organizations	Cadzow Communications, NCSC, BT plc, CIS, DCMS, umlaut

Keywords

Projects

Clusters

Frequencies

Mandates

Directives

Cyber Security
Vulnerabilities

Security

Official Journal

Remarks

2021-12-07 compans TB approval proposal in contribution CYBER(21)027036r1 was Accepted by CYBER (see RC CYBER(21)DEC091)

2021-11-19 compans Draft contributed - V 0.0.10 contributed for Decision in CYBER(21)027036r1 as Final draft for approval

2021-11-19 compans Final draft for approval proposal in contribution CYBER(21)027036 was Revised by CYBER

2021-11-19 compans A new draft is uploaded - V 0.0.10 with status: Final draft for approval

2021-11-19 whorlowc Draft contributed - V 0.0.9 contributed for Decision in CYBER(21)027036 as Final draft for approval

2021-11-19 WHORLOWC A new draft is uploaded - V 0.0.9 with status: Final draft for approval

2021-11-18 whorlowc Draft contributed - V 0.0.8 contributed for Decision in CYBER(21)027033 as Final draft for approval

2021-11-18 WHORLOWC A new draft is uploaded - V 0.0.8 with status: Final draft for approval

2021-11-16 whorlowc Draft contributed - V 0.0.7 contributed for Discussion in CYBER(21)027027 as Stable draft

2021-11-16 WHORLOWC A new draft is uploaded - V 0.0.7 with status: Stable draft

2021-11-16 WHORLOWC A new draft is uploaded - V 0.0.6 with status: Stable draft

2021-08-20 whorlowc Draft contributed - V 0.0.5 contributed for Discussion in CYBER(21)25c016 as Stable draft

2021-08-20 WHORLOWC A new draft is uploaded - V 0.0.5 with status: Stable draft

2021-08-18 paine Draft contributed - V 0.0.4 contributed for Discussion in CYBER(21)25c009 as Stable draft

2021-08-18 paine A new draft is uploaded - V 0.0.4 with status: Stable draft

2021-05-21 paine Draft contributed - V 0.0.3 contributed for Discussion in CYBER(21)025013 as Early draft

2021-05-21 paine A new draft is uploaded - V 0.0.3 with status: Early draft

2021-03-18 paine Draft contributed - V 0.0.2 contributed for Discussion in CYBER(21)000028 as Early draft

2021-03-18 paine A new draft is uploaded - V 0.0.2 with status: Early draft

2021-01-05 paine Draft contributed - V 0.0.1 contributed for Discussion in CYBER(21)023011 as Early draft

2021-01-05 paine A new draft is uploaded - V 0.0.1 with status: Early draft

2020-11-16 COMPANS TB adoption of WI CYBER, see contribution CYBER(20)022009r1

2020-11-04 COMPANS WI proposed to TB CYBER, see contribution CYBER(20)022009r1

2020-10-21 PAINE WI proposed to TB CYBER, see contribution CYBER(20)022009

Specific aspects
	Security/Privacy aspects