How to Report A Security Vulnerability

Verisign values the contributions of the independent security community to help report potential vulnerabilities in Verisign products and services. To report a vulnerability, send an email to responsible.disclosure@verisign.com and include:

  • A detailed description of your vulnerability and how it was discovered
  • Clear and concise steps to reproduce the vulnerability
  • Working proof of concept, if possible
  • An email address that the Verisign Security Team can use to request more information

The Verisign Security Team will acknowledge receipt of the vulnerability report within 72 hours and, if warranted, investigate the issue and provide an update on any actions taken. Please use the public key provided below to encrypt your email submission.