The 5G Standard

Launch of the 3GPP CVD process

Apr 18, 2018

April 18, 2018

Under the guidance of our security group (SA3) and partner organization’s experts, we are able to announce that the 3GPP Coordinated Vulnerability Disclosure (CVD) process is now up-and-running.

The CVD will allow suspected or proven vulnerability caused by errors, omissions or ambiguities in our Technical Specifications to be reported and quickly forwarded to the appropriate 3GPP Group, to analyse and resolve the problem.

This is the first time that we have put a process in place for this activity, formalizing how individuals or organizations can provide information on vulnerabilities related to our deliverables.

Further details of the Coordinated Vulnerability Disclosure process are on-line …here

Note: ETSI has a separate process for their specifications - See the ETSI CVD Process