Security.txt across the industry
This talk explores the adoption of `security.txt`, as defined in [RFC 9116](https://www.rfc-editor.org/rfc/rfc9116), that enables websites to publish security contact information in a consistent and accessible way. We begin with a brief introduction to the RFC and the motivation behind standardized vulnerability disclosure.
But is this even important to the network industry? To find out, we conclude with a focused analysis of security.txt adoption among organizations represented by this conference’s attendees, highlighting real-world trends, blind spots, and where we go from here.
Licensed to the public under http://creativecommons.org/licenses/by/4.0