proconX maintains a documented cyber security policy covering both business operations and product security. It sets out the controls we maintain over our own systems and infrastructure, and the processes we follow for monitoring, assessing, and responding to vulnerabilities affecting our products, including how we handle security incidents should one arise. The policy is reviewed regularly as part of our management review process.
FieldTalk is developed entirely in-house — it is proconX's own intellectual property and does not depend on third-party libraries or protocol stacks. Because of this, potential issues are identified through our own code review and testing during ongoing development, and through reports and test results from customers using the library in the field, rather than by tracking third-party vulnerability databases.
Where a defect with security implications is confirmed, it is assessed for severity and risk in typical deployment scenarios, fixed, and — where warranted — published here as a security advisory, together with the recommended mitigation or update. We recommend checking this page periodically, or after upgrading, to see whether an advisory applies to the version you are running.
If you believe you have found a security vulnerability in a FieldTalk product, please contact us with details so we can investigate.
See our published security advisories.