VDRs are a secure and reliable location for sharing and reviewing data in an easy-to use, collaborative environment. They also aid companies in compliance with privacy laws such as GDPR or CCPA.
The suggestion that software users receive a VDR is gaining momentum. The latest SPDX SBOM standard, version 2.3 which is available, contains provisions (K.1.9) that permit a software vendor to associate a NIST VDR attestation for their product with the associated SBOM, thus making the VDR a “living” part of the SBOM. The NIST VDR attestation may be linked through a URL or https://www.femtoptech.net/driver-reviver-review the OWASP CycloneDX specification (which includes VDR and VEX) or through direct links to other sites for information on vulnerability management, like GitHub repositories as well as public feeds.
For instance airlines have been using Flight Data Recorders (FDR) for many years to reduce the risk of accidents on aircrafts and save lives. VDRs provide similar benefits, and the analysis of resulting data can improve security.
VDRs can be used in many different ways by companies however, they are most often used in M&A transactions where both parties are able to conduct due diligence as negotiations are taking place. They can also be used to share sensitive data during a project, like results of clinical trials or research and development. The security of a VDR can be increased by using AES encryption. This is the highest degree of encryption currently available and is widely used by banks, government agencies and online banking.