The article critiques the EU's misunderstanding of Coordinated Vulnerability Disclosure (CVD) policies, arguing that the current definitions and frameworks treat vulnerability reporters as potential criminals rather than essential...
About:
Piet De Vaere is a Product Cybersecurity Consultant offering consulting and architecture services.
Website:
Specializations:
Outgoing Links:
Subscribe to RSS:
The author recounts their experience discovering a vulnerability in the online banking platform of KBC, Belgium's second-largest bank, and the challenges faced while attempting to report it through the proper channels. Despite fol...
The CRA challenges traditional views on substantial modification in EU product law, necessitating a reevaluation of manufacturer obligations and compliance during product lifecycles.
The blog post outlines various projects undertaken by a product cybersecurity consultant, focusing on compliance with EU regulations such as the Cyber Resilience Act (CRA) and the Radio Equipment Directive (RED DA). Key projects i...
The EU's Cyber Resilience Act (CRA), effective from December 2027, aims to enhance the security of digital products sold in the EU. This course provides an overview of the CRA, compliance criteria, and organizational processes req...
The blog post discusses the importance of certificates in establishing digital trust on the web, covering topics such as PKI (Public Key Infrastructure), certificate revocation mechanisms, trust levels, and emerging technologies l...
The article explains the upcoming CRA requirements for manufacturers to report actively exploited vulnerabilities and severe incidents affecting product security. It defines actively exploited vulnerabilities as those with evidenc...
The blog post discusses a master-level Network Security course taught at ETH Zürich, covering various topics such as TLS, WebPKI, VPNs, BGP security, anonymous communication, firewalls, botnets, DNS security, DDoS, and next-genera...