Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog - Common Vulnerability Reporting Framework (CVRF) InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Common Vulnerability Reporting Framework (CVRF)

Published: 2011-05-20
Last Updated: 2011-05-20 02:04:45 UTC
by Guy Bruneau (Version: 1)
2 comment(s)

A new vulnerability reporting framework was announced this week to standardize security vulnerability reporting. "The Common Vulnerability Reporting Framework (CVRF) is an XML-based language that will enable different stakeholders across different organizations to share critical security-related information in a single format, speeding up information exchange and digestion." [1]

A 12-page whitepaper is available on this new standard that can be freely downloaded here and a list of FAQ is available here.


[1] http://www.icasi.org/cvrf

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu

Keywords: CVRF
2 comment(s)
Diary Archives