This email newsletter is designed to bring recent news about CVE,
such as new versions, upcoming conferences, new Web site features,
etc. right to your emailbox. Common Vulnerabilities and Exposures
(CVE) is the standard for information security vulnerability
names. CVE content results from the collaborative efforts of the
CVE Editorial Board, which is comprised of leading representatives
from the information security community. Details on subscribing
(and unsubscribing) to the email newsletter are at the end. Please
feel free to pass this newsletter on to interested colleagues.
Comments: cve@mitre.org
-------------------------------------------------------
CVE-Announce e-newsletter/September 24, 2009
-------------------------------------------------------
Contents:
1. Feature Story
2. Compatible Product Updates
3. UPCOMING EVENT
4. Also in this Issue
5. Details/Credits + Subscribing and Unsubscribing
FEATURE STORY:
CVE Editorial Board Updates
The following new members have been added to the CVE Editorial
Board:
* Art Manion, CERT/CC (Software Engineering Institute, Carnegie
Mellon University)
* Brian Martin, Open Source Vulnerability Database (OSVDB)
* Tim Keanini, nCircle Network Security, Inc.
* Carsten Eiram, Secunia
LINKS:
CERT/CC - http://www.cert.org
OSVDB - http://www.osvdb.org
nCircle - http://www.ncircle.com
Secunia - http://www.secunia.com
CVE Editorial Board -
http://cve.mitre.org/community/board/index.html
---------------------------------------------------------------
COMPATIBLE PRODUCTS UPDATE:
Information-technology Promotion Agency, Japan (IPA) has achieved
the second phase of the CVE Compatibility Process for three
products by submitting a CVE Compatibility Questionnaire for JVN
Vulnerability Countermeasure Information Database (JVN iPedia),
and a CVE Compatibility Questionnaire for Filtered Vulnerability
Countermeasure Information Tool (MyJVN). In addition, Japan
Computer Emergency Response Team Coordination Center (JPCERT/CC)
has achieved the second phase of the CVE Compatibility Process by
submitting a CVE Compatibility Questionnaire for Japan
Vulnerability Notes (JVN).
In Phase 2 of the compatibility process the organization's
completed compatibility requirements evaluation questionnaire is
posted on the CVE Web site while it is evaluated by MITRE as the
final step towards the product or service being registered as
"Officially CVE-Compatible."
For additional information and to review the complete list of all
products and services participating in the compatibility program,
visit the CVE-Compatible Products and Services section.
LINKS:
CVE Compatibility Questionnaire for JVN iPedia -
http://cve.mitre.org/compatible/questionnaires/106.html
CVE Compatibility Questionnaire for MyJVN -
http://cve.mitre.org/compatible/questionnaires/105.html
CVE Compatibility Questionnaire for JVN -
http://cve.mitre.org/compatible/questionnaires/104.html
CVE-Compatible Products and Services section -
http://cve.mitre.org/compatible/
---------------------------------------------------------------
UPCOMING EVENT:
Making Security Measurable Briefing and Booth at "IT Security
Automation Conference 2009," October 26-29
MITRE is scheduled to present a briefing about Making Security
Measurable (MSM) and host an MSM booth at the U.S. National
Institute of Standards and Technology's (NIST) "5th Annual IT
Security Automation Conference" on October 26-29, 2009 in
Baltimore, Maryland, USA. The CVE Team is also scheduled to
contribute to the CVE-related workshops.
Visit the CVE Calendar for information on this and other events.
LINKS:
IT Security Automation Conference 2009 -
http://www.nist.gov/public_affairs/confpage/091026.htm
SCAP - http://nvd.nist.gov/scap.cfm
Making Security Measurable - http://measurablesecurity.mitre.org
CVE Calendar - http://cve.mitre.org/news/calendar.html
---------------------------------------------------------------
ALSO IN THIS ISSUE:
* Making Security Measurable Main Topic of Article in "CrossTalk,
The Journal of Defense Engineering"
Read these stories and more news at http://cve.mitre.org/news
---------------------------------------------------------------
Details/Credits + Subscribing and Unsubscribing
Managing Editor: David Mann, Information Security Technical
Center. Writer: Bob Roberge. The MITRE Corporation (www.mitre.org)
maintains CVE and provides impartial technical guidance to the CVE
Editorial Board on all matters related to ongoing development of
CVE.
To unsubscribe from the CVE-Announce e-newsletter, open a new
email message and copy the following text to the BODY of the
message "SIGNOFF CVE-Announce-list", then send the message to:
listserv@lists.mitre.org. To subscribe, send an email message to
listserv@lists.mitre.org with the following text in the BODY of
the message: "SUBSCRIBE CVE-Announce-List".
Copyright 2009, The MITRE Corporation. CVE and the CVE logo are
registered trademarks of The MITRE Corporation.
For more information about CVE, visit the CVE Web site at
http://cve.mitre.org or send an email to cve@mitre.org. Learn more
about Making Security Measurable at
http://measurablesecurity.mitre.org.
No comments:
Post a Comment