Established in 2016 by the Secretary of Defense, the Vulnerability Disclosure Program (VDP) operates to strengthen the security of the DoD Information Network (DoDIN) by providing an additional layer to the defense-indepth cybersecurity strategy.
Our mission is to act as the single DoD focal point for receiving crowdsourced cybersecurity vulnerabilities on the DoDIN to improve network defenses and enhance mission assurance, by embracing a previously overlooked yet indispensable resource; private-sector white hat researchers. The success of the program relies solely on expertise and support from the security researcher community which contributes to the overall security of the DoD.
DoDIN information technologies, services, and systems provide critical capabilities to all military service members, their families, veterans, DoD civilians and contractors. Ultimately, VDP will drive an increase in the DoDIN’s cyber hygiene with the objective of ensuring DoD can accomplish its mission to defend the United States of America.
VDP Fact Sheet VDP Annual Reports VDP Bug Bytes VDP News
The VDP provides an independent assessment of DoDIN security and defensive measures by identifying: