"“The entire process is confined to executive-branch agencies. It is not a creature of Congress. As to whether a company could proactively seek review of an exploit, I doubt that there is a provision for that,” said Riana Pfefferkorn, a fellow at The Center for Internet and Society at Stanford Law School."
The Center for Internet and Society at Stanford Law School is a leader in the study of the law and policy around the Internet and other emerging technologies.