Security
Determine security ramifications to protect personal data and information
103 Discussions

IPAS: Intel 2020 Product Security Report

IPAS_Security
Employee
0 0 3,172
Hello!

Today we are excited to announce the availability of the Intel 2020 Product Security Report. With a global pandemic, 2020 certainly was a challenging year, but how do you say our thoughts are with those who have been impacted when literally everyone has been impacted? Yet, as we have seen time and again, bad actors are willing to take advantage of pain and suffering through a myriad of new scams targeting those seeking relief. It is in times like these that we must be vigilant and unrelenting in our commitment to security and transparency.

The 2020 product security report provides the level of transparency our customers demand, and with 92% of the vulnerabilities we addressed being discovered as the direct result of our investment in security assurance, it demonstrates the capability and maturity of process they expect. Of the 231 vulnerabilities we published, 109, or 47%, were found by Intel employees through our ongoing security research.

2020overview.png

 

Last year, we saw a 33% increase in submissions to our Bug Bounty program from lots of new researchers. The 105 bounty submissions represent 45% of the total CVEs addressed in 2020 and 86% of the reports from external research. Since we established our public Bug Bounty program in 2018, we have paid out an average of $800,000.00 per year! To all the security researchers out there, thank you for participating!

Read the full report HERE.

Regards,

Jerry Bryant
Sr. Director of Communications
Intel Product Assurance and Security
About the Author
Intel Product Assurance and Security (IPAS) is designed to serve as a security center of excellence – a sort of mission control – that looks across all of Intel. Beyond addressing the security issues of today, we are looking longer-term at the evolving threat landscape and continuously improving product security in the years ahead.