Vulnerability Disclosure Policy

We at Aliter Technologies take security very seriously and we strive to provide secure products and services. We recognize the work of the extensive security community and we appreciate any reports of possible security issues in a coordinated, constructive and transparent approach.

How to report a security issue

If you discover a vulnerability in our system or product, please report it to us as quickly as possible by sending a message to vulnerability@aliter.comPlease encrypt your message and its attachments using our PGP public key

Please, include following information:
  • Detailed description of the vulnerability.
  • Time and method of its discovery.//Specification of system or product where the vulnerability has been discovered.
  • Steps needed to reproduce the issue.
  • Any other related information (code samples, logs, screenshots, etc…).

Resolution process

We will investigate any reported issues within 3 days and inform you of our status. We will keep you updated regarding the resolution process and estimated resolution timeframe.

Legal status

Aliter Technologies will not take legal action against individuals who report vulnerabilities to us in accordance with this policy:
  • vulnerability.sections.resolutionProcess.points
We will process all information submitted by you with confidentiality and we will not provide your personal details to third parties without your permission. We do not offer financial rewards for reported security issues, but as a token of our gratitude, we can publish your name on our web page and promote your contribution, if you agree with us publishing your personal data.

Security Vulnerability Disclosure Hall of Fame