DC3 Mission

DIB Vulnerability Disclosure Program

The Defense Industrial Base Vulnerability Disclosure Program helps participating defense contractors identify and mitigate software vulnerabilities in internet-facing systems before adversaries can exploit them.

 

Helping DIB companies identify and mitigate vulnerabilities

The Defense Industrial Base Vulnerability Disclosure Program is a voluntary program established collaboratively by the Department of Defense Cyber Crime Center's DoD Defense Industrial Base Collaborative Information Sharing Environment, the Department of War Vulnerability Disclosure Program, and the Defense Counterintelligence and Security Agency.

The program assists defense contractors in identifying and mitigating software vulnerabilities within internet-facing systems, reducing the DIB and Department of War attack surface before adversaries can exploit it.

DIB Vulnerability Disclosure Program graphic

Start the Onboarding Process

We are pleased to welcome interested Defense Industrial Base companies to the program. To begin onboarding, follow the link below.

If you experience difficulties or require assistance, contact AFOSI.DC3.DIB-VDP@us.af.mil. The team is committed to supporting a smooth onboarding experience.

Why DIB-VDP

DIB-VDP is designed to provide a supportive, streamlined approach for identifying and responsibly addressing vulnerabilities before they become operational risk.

Safe Harbor

Supports responsible vulnerability reporting with a focus on assistance, coordination, and mitigation.

Streamlined Participation

Designed to make participation easier for eligible Defense Industrial Base companies.

Attack Surface Reduction

Helps identify and mitigate internet-facing software vulnerabilities before adversaries can exploit them.

Resources

DIB-VDP Resources

Use these resources to learn more about the program, access public-facing products, and download program materials.

Press Release

Read the official announcement and program context.

View Press Release

DIB-VDP Myte Byte

Access DIB-VDP Myte Byte content and related program updates.

View Myte Byte

CY25 Infosheet

Download the DIB-VDP CY25 infosheet.

View Infosheet

Summit Slides

Download the DIB-VDP summit slide deck.

Download Slides

Submit a Report

Submit a DIB-VDP vulnerability report through the reporting portal.

Submit Report

Download Badge

Download the DIB-VDP badge for approved program use.

Download Badge
Frequently Asked Questions

Common Questions

Use the questions below for quick answers about DIB-VDP participation and program history.

Yes.

Yes.

Throughout a 12-month period, the DIB-VDP Pilot enrolled 41 companies, and 103 vulnerabilities were reported to DIB system owners.

Defense Industrial Base companies are welcome to contact the program for participation information.

Contact DIB-VDP

For general DIB-VDP questions, contact the program inbox.

Email: AFOSI.DC3.DIB-VDP@us.af.mil

DIB-VDP contact email QR code
Contact Us

General DIB-VDP Questions:
AFOSI.DC3.DIB-VDP@us.af.mil

Contact Us QR Code
 

Quick Link

MyteByte QR Code    |   Myte Byte