At Black Hat USA 2010, Microsoft said that “it’ll extend its Microsoft Active Protections Program to include vulnerability information sharing from Adobe Systems. With, this Adobe will become the first software company other than Microsoft to use MAPP, a unique collaborative effort that facilitates advanced information sharing on Microsoft product vulnerabilities with security software providers.
“Instead of spending the months or years it would take to recreate our own version of MAPP, we’re able to go from zero to 60 by working closely with Microsoft, and very rapidly getting to the point where we’re tapping into maturity of the active protection program that’s in place today,” said Brad Arkin, of Adobe.
Microsoft also discussed new policy of coordinated vulnerability disclosure, a reframing of responsible disclosure and introduced new tools and guidance that’ll improve online security for customers: MAPP, Microsoft Exploitability Index, Microsoft Vulnerability Research (MSVR), and Enhanced Mitigation Experience Toolkit (EMET)-were fueled by, and designed to address, customer needs. The detailed report about these programs is available here.