The cr.yp.to microblog: 2018.08.19 20:46:47

2018.08.19 20:46:47 (1031251144801042434) from Daniel J. Bernstein:

"Responsible disclosure" as defined by recalcitrant company where security is not job #1: you (1) find security problem, (2) write an exploit, (3) spend time discussing with company, (4) publish exploit. A better alternative, "accelerated responsible disclosure": do #4 before #3.