Explore the groundbreaking work of the Cyber Independent Testing Laboratory (CITL) in this 39-minute Black Hat conference talk. Delve into methodologies for quantifying security development practices and predicting software risks. Discover how these approaches correlate with underground 0day market pricing. Learn about CITL's early fuzzing results, operating system comparisons, and smart TV security analyses. Examine the evaluation of single applications and upgrade considerations. Gain insights into Consumer Reports' Digital Standard and its impact on consumer software risk assessment. Understand how to contribute to this important standard for improving digital product security and privacy.