About a month ago the USA’s Department of Homeland Security made moves to ban Kaspersky Lab products from being used at federal agencies.
To avoid that ban Kaspersky Lab was tasked with proving that its products were secure and ultimately that it wasn’t passing information along to the Russian government.
Now Kaspersky Lab appears to be doing that, only on a much larger scale. That is to say, the firm is proving to the world its products are secure.
“Cybersecurity has no borders, but attempts to introduce national boundaries in cyberspace is counterproductive and must be stopped. We need to reestablish trust in relationships between companies, governments and citizens,” said chief executive officer at Kaspersky Lab Eugene Kaspersky
The Global Transparency Initiative will see Kaspersky Lab opening its products, internal processes and business operations to the information security community and other stakeholders to to prove everything is above board.
“We’ve nothing to hide,” said the CEO.
The firm says it will start an independent review of its source code by Q1 2018 and similar reviews of software updates and threat detection rules will follow.
In addition to this the firm will open three Transparency Centres in Asia, Europe and the US by 2020. “The centres will serve as a facility for trusted partners to access reviews on the company’s code, software updates, and threat detection rules, along with other activities,” said Kaspersky Lab.
Bug bounty rewards will be increased up to $100 000 for severe vulnerabilities in a bid to get more security researchers to verify the integrity of Kaspersky Lab products.
We think Kaspersky Lab has the right idea here. Rather than just show the US government its products are secure share that information with the world.
Of course this is assuming that Kaspersky Lab isn’t actually hiding a nasty backdoor in its code but we’ll know if that is the case sooner rather than later.[Source – Kaspersky Lab][Image – CC BY 2.0 David Orban]