Sun, 11 Nov 2007 13:34:00 +0000
ScienceDaily — As this year's holiday season approaches, your credit card transactions may be a little more secure thanks to standards adopted by the payment card industry. The latest incarnation of these standards include the Common Vulnerability Scoring System (CVSS) Version 2 that was coauthored this year by researchers at the National Institute of Standards and Technology and Carnegie Mellon University in collaboration with 23 other organizations
Fri, 31 Aug 2007 16:41:00 +0000
NIST IR 7435 is published as final. CVSS provides an open framework for communicating the characteristics and impacts of IT vulnerabilities.
Thu, 19 Jul 2007 15:22:00 +0000
On Wednesday, August 15th, 2007, Tenable Network Security will begin converting CVSS base scores for Nessus and the Passive Vulnerability Scanner (PVS) plugins from version 1 to version 2. This blog entry discusses how some of the plugin severity...
Thu, 19 Jul 2007 15:22:00 +0000
On Wednesday, August 15th, 2007, Tenable Network Security will begin converting CVSS base scores for Nessus and the Passive Vulnerability Scanner (PVS) plugins from version 1 to version 2. This blog entry discusses how some of the plugin severity...
Mon, 09 Jul 2007 21:00:00 +0000
A standardized system to rank computer system vulnerabilities has been revised to help IT managers make better decisions more quickly about potential threats [SearchWinIt.com]
Mon, 09 Jul 2007 21:00:00 +0000
A standardized system to rank computer system vulnerabilities has been revised to help IT managers make better decisions more quickly about potential threats [SearchWinIt.com]
Tue, 26 Jun 2007 17:00:00 +0000
Standards-based system to rate vulnerabilities [Computerworld]
Tue, 26 Jun 2007 17:00:00 +0000
Standards-based system to rate vulnerabilities [Computerworld]
Thu, 21 Jun 2007 05:24:00 +0000
The National Institute of Standards and Technology has released a suite of tools to help automate vulnerability management and evaluate compliance with federal IT security requirements.
Thu, 21 Jun 2007 05:24:00 +0000
The National Institute of Standards and Technology has released a suite of tools to help automate vulnerability management and evaluate compliance with federal IT security requirements.
Wed, 20 Jun 2007 22:00:00 +0000
NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance.
Wed, 20 Jun 2007 22:00:00 +0000
NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance.
Wed, 20 Jun 2007 20:00:00 +0000
The Forum of Incident Response and Security Teams (FIRST) announced on Wednesday a revised version of the Common Vulnerability Scoring System (CVSS), which modifies the ranking system's recipe for judging the severity of software flaws.
Wed, 20 Jun 2007 20:00:00 +0000
The Forum of Incident Response and Security Teams (FIRST) announced on Wednesday a revised version of the Common Vulnerability Scoring System (CVSS), which modifies the ranking system's recipe for judging the severity of software flaws.
Wed, 20 Jun 2007 02:00:00 +0000
Seville Spain – June 20, 2007: Millions of computer users worldwide will enjoy more secure virtual experiences and transactions with the advent today of CVSSv2 – the latest version of the Common Vulnerability Scoring System.
Wed, 30 May 2007 15:15:00 +0000
Can a single number sum up the full significance of a security vulnerability? The CVSS attempts to prove that it can, but it has its weak points.
Wed, 30 May 2007 15:15:00 +0000
Can a single number sum up the full significance of a security vulnerability? The CVSS attempts to prove that it can, but it has its weak points.
