Get started

Security Incidents and Responsible Disclosure

Handling of critical security incidents

In order to be able to handle security-critical incidents quickly and effectively, DRACOON has set up the e-mail address Incidents reported to this address are automatically forwarded to DRACOON's CERT team, which evaluates and prioritizes them based on their impact on information security.

All customers are therefore required to immediately send critical security incidents to the e-mail address The information transmitted is subject to confidentiality.


Responsible Vulnerability Disclosure

If you found a vulnerability in any DRACOON products, please report it to Our PGP key is available here. Our security team will analyze the submission and treat the vulnerability accordingly. All researchers are encouraged to submit vulnerabilities responsibly. All communication between DRACOON and security researchers are confidential.