A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

#
# SIDN Labs RFC 9116 security.txt
#
# PLEASE BE ADVISED:
# Do *not* use this security.txt unmodified on your own website!
# 
Canonical: https://example.nl/.well-known/security.txt
Canonical: https://www.example.nl/.well-known/security.txt

Expires: 2024-07-01T22:00:01+00:00

# If you would like to report a security issue please first read our
# responsible disclosure policy:
Policy: https://www.sidn.nl/en/cybersecurity/reporting-a-security-breach
Policy: https://www.sidn.nl/cybersecurity/beveiligingslek-melden

# Please always try to contact us through our responsible disclosure form
# to speed up things. Should that not be an option, then in order of
# preference the ways to contact us are:
Contact: https://www.sidn.nl/en/cybersecurity/reporting-a-security-breach
Contact: https://www.sidn.nl/cybersecurity/beveiligingslek-melden
Contact: mailto:csirt@sidn.nl
Contact: tel:+31263525500

# We do *not* use OpenPGP, so do *not* use the key that was used to sign this
# security.txt file for sending us messages. Use the S/MIME public key
# below instead:
Encryption: https://www.sidn.nl/.well-known/csirt_sidn_nl.crt

# We can offer you a swift and proper response in the following languages:
Preferred-Languages: nl, en

# If you think you'd like to join our team, please visit our job vacancy page:
Hiring: https://www.sidn.nl/en/work-at-sidn
Hiring: https://www.sidn.nl/werken-bij-sidn

#       _____                               _        
#      |  __ \                             | |       
#      | |__) _____      _____ _ __ ___  __| |       
#      |  ___/ _ \ \ /\ / / _ | '__/ _ \/ _` |       
#      | |  | (_) \ V  V |  __| | |  __| (_| |       
#      |_|   \___/ \_/\_/ \___|_|  \___|\__,_|       
#                  | |                               
#                  | |__  _   _                      
#                  | '_ \| | | |                     
#                  | |_) | |_| |                     
#                  |_.__/ \__, |                     
#                          __/ |                     
#   _____ _____ _____  _  |___/_           _         
#  / ____|_   _|  __ \| \ | | | |         | |        
# | (___   | | | |  | |  \| | | |     __ _| |__  ___ 
#  \___ \  | | | |  | | . ` | | |    / _` | '_ \/ __|
#  ____) |_| |_| |__| | |\  | | |___| (_| | |_) \__ \
# |_____/|_____|_____/|_| \_| |______\__,_|_.__/|___/
#                                                    
 
-----BEGIN PGP SIGNATURE-----
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=oovY
-----END PGP SIGNATURE-----