NOW READ THIS
("Security Advisory")

Go Back

Submitted by: Bill Hickey
NCVA Listmaster

NRT-0623 NIST national vulnerability database update:


Facilitating efforts to automate important computer security tasks, the National Institute of Standards and Technology (NIST) has upgraded the National Vulnerability Database (NVD), a comprehensive repository of public information on potential vulnerabilities in computer systems. The upgrade centers on the NVD's dictionary, which identifies names of products such as operating systems and applications. The new version, known as NVD 2.2, conforms to a product‑naming scheme known as the Common Platform Enumeration (CPE, http://cpe.mitre.org). With NVD 2.2, the official CPE dictionary of 15,500 products is now incorporated into the NVD data. More than 80,000 updates to the NVD vulnerability data were made in preparation for this upgrade. The CPE standard enables the NVD product dictionary to achieve a new level of rigor and quality ‑ and enables advances in security automation. This update enables security tools and databases to correlate information with each other based on standardized product identifiers.

[NIST Tech Beat 16Sep08]


Valid XHTML 1.0! Valid CSS! Counter Image
Last Modified: Friday, 10-Oct-2008 12:50:33 EDT