Welcome to the latest issue of the CVE-Announce e-newsletter. This email
newsletter is designed to bring recent news about CVE, such as new versions,
upcoming conferences, new Web site features, etc. right to your email box.
Common Vulnerabilities and Exposures (CVE) is the standard for information
security vulnerability names. CVE content results from the collaborative
efforts of the CVE Editorial Board, which is comprised of leading
representatives from the information security community. Details on
subscribing (and unsubscribing) to the email newsletter are at the end.
Please feel free to pass this newsletter on to interested colleagues.
Comments: cve@mitre.org
-------------------------------------------------------
CVE-Announce e-newsletter/September 25, 2012
-------------------------------------------------------
Contents:
1. Feature Story
2. Upcoming Event
3. Also in this Issue
4. Details/Credits + Subscribing and Unsubscribing
FEATURE STORY:
"IT Security Automation Conference 2012," October 3-5 in Baltimore,
Maryland, USA
"ITSAC 2012" is a 3-day event that includes tutorials, conference
proceedings, workshops, opportunities to network and exchange ideas with
your peers in the federal government and private industry sectors, and an
exhibit hall that will offer a chance for the vendors of SCAP and other
tools to demonstrate how their technology meets the standards for
developers, integrators and end-users.
Topics include: strategies for implementing continuous monitoring; using
security automation tools and technologies to ease the technical burdens of
policy compliance; and innovative uses of automation across the enterprise
in both federal government and industry applications. Security automation
leverages standards and specifications to reduce the complexity and time
necessary to manage vulnerabilities, measure security, and ensure
compliance, freeing resources to focus on other areas of the IT
infrastructure.
"ITSAC 2012" will provide public and private sector executives, security
managers and staff, IT professionals, and developers of products and
services with a common understanding for using specific open standards and
new security technologies across various domains of interest including:
* Enabling interoperability across tools
* Automation of risk mitigation measures
* Defining continuous monitoring
* Cloud, virtualization, and continuous monitoring
* New and proven assessment capabilities
* Automating integration of network security systems
* Getting network security basics right
* Future landscape of IT security threats
* Using processes and tools to make practical risk-based decisions
* Impact of mobile devices
* Situational awareness with continuous compliance
"ITSAC 2012" is a forward-looking event focused on innovative and emerging
technologies. Sessions throughout "ITSAC 2012", across multiple tracks, will
incorporate a discussion of these technologies and an analysis of how they
will help security.
ITSAC Registration - https://itsac.g2planet.com/itsac2012
ITSAC Agenda - https://itsac.g2planet.com/itsac2012/2012_ITSAC_Agenda.pdf
ITSAC Flyer - http://scap.nist.gov/events/8thAnnualSAC.PDF
CVE Calendar - http://cve.mitre.org/news/calendar.html
---------------------------------------------------------------
UPCOMING EVENT:
MITRE to Host CVE/Making Security Measurable Booth at "IT Security
Automation Conference 2012," October 3-5
MITRE will host a CVE/Making Security Measurable booth at "IT Security
Automation Conference 2012" on October 3-5, 2012 at the Baltimore Convention
Center in Baltimore Inner Harbor, Maryland, USA.
Please visit us at Booth 23 and say hello!
Visit the CVE Calendar for information on this and other events.
LINKS:
ITSAC 2012 - http://scap.nist.gov/events/
Making Security Measurable - http://measurablesecurity.mitre.org
CVE Calendar - http://cve.mitre.org/news/calendar.html
---------------------------------------------------------------
ALSO IN THIS ISSUE:
* CVE, CWE, and CWE/SANS Top 25 Mentioned in Article about Supply Chain Risk
Management in "CrossTalk Magazine"
Read these stories and more news at http://cve.mitre.org/news
---------------------------------------------------------------
Details/Credits + Subscribing and Unsubscribing
Managing Editor: Steve Boyle, Information Security Technical Center. Writer:
Bob Roberge. The MITRE Corporation (www.mitre.org) maintains CVE and
provides impartial technical guidance to the CVE Editorial Board on all
matters related to ongoing development of CVE.
To unsubscribe from the CVE-Announce e-newsletter, open a new email message
and copy the following text to the BODY of the message "SIGNOFF
CVE-Announce-list", then send the message to: listserv@lists.mitre.org. To
subscribe, send an email message to listserv@lists.mitre.org with the
following text in the BODY of the message: "SUBSCRIBE CVE-Announce-List".
Copyright 2012, The MITRE Corporation. CVE and the CVE logo are registered
trademarks of The MITRE Corporation.
For more information about CVE, visit the CVE Web site at
http://cve.mitre.org or send an email to cve@mitre.org. Learn more about
Making Security Measurable at http://measurablesecurity.mitre.org.
Tuesday, September 25, 2012
Monday, September 10, 2012
Summer Dev Days Minutes are Available
We have just posted the minutes from Security Automation Developer Days 2012 that was held at MITRE, Bedford last July. To access the minutes, please jump to http://measurablesecurity.mitre.org/participation/devdays.html#summer2012
And then click on the link to the minutes.
Steve
______________________________________________
The MITRE Corporation
Office: (781) 271-7682
Cell: (978) 302-3849
Subscribe to:
Comments (Atom)
