The European Broadcasting Union (EBU) has updated its procedures for managing vulnerabilities in the media industry.
The latest version of EBU R 160 covers pre and post-purchase stages for both buyers and vendors, and includes security and testing guidelines.
In its latest iteration, EBU Recommendation 160 – Vulnerability Management for Media Companies and Media System Vendors provides a framework for organisations both prior to and after the procurement of a media product, and throughout its entire lifecycle, said the EBU. The organisation is urging vendors to adhere to the procedure before and after the release of a product.
The framework harmonises with established best practices in vulnerability management within the realm of Information Technology, added the EBU, such as adhering to the CVE process, ensuring the distinctive identification and assessment of vulnerabilities.
The recommendation also encompasses a set of security and testing guidelines that media organisations and vendors can follow to test their media systems’ security.